last executing test programs:

5m6.739519498s ago: executing program 5 (id=37):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x4ab}, 0x18)
syz_read_part_table(0x5d4, &(0x7f0000000000)="$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")

5m6.01804068s ago: executing program 5 (id=41):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x17)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000000000)='./file1\x00', 0x2000, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x551083, 0x28)
rmdir(&(0x7f0000000000)='./file0\x00')

5m5.770570332s ago: executing program 5 (id=42):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000005e00010027bd7000ffdbdf2500000000", @ANYRES32=r1, @ANYBLOB="ffdf9a78"], 0x1c}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)

5m5.556912525s ago: executing program 5 (id=44):
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0xa96)
socket$unix(0x1, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
accept(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001000010700930000ffffffff0a000000060001001000000008000a00", @ANYRES32=r2], 0x24}}, 0x24008000)

5m4.525067295s ago: executing program 5 (id=53):
setreuid(0x0, 0xee00)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, 0x0, &(0x7f00000002c0))

5m4.187004995s ago: executing program 5 (id=57):
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x400201, 0x14)
mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, &(0x7f0000000180)={[{@hide}, {@dmode}, {@map_off}, {@check_relaxed}]}, 0x1, 0x511, &(0x7f0000000ac0)="$eJzs3M9u3MYZAHBSlhBBBYQCQWNH8YFxenAP2XBXtQwhJ5bLlZjsLhckFcinIqilQKiUFk0KNL754rZA+xC59gGKnvoYfYugj5CCy1Vq698mtqs13N8PsGeW/DjzDbGYwVIYBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAEKb9OO6GwTAf7+1Hl0v7ZTG64vxpe/94prii3yAIm3/B6mpwqz10683/nv5J89+d4Gb76Waw2hSrwaMfvfXjD99cXjq9/oqErsUXXz369afHxwe/O3ti4Zldj51snFdFPkp2siivimh7ayv+YHdQRYN8mFUPqjobRWmZJXVRRnfTn0Xd7e3NKOs8KPbGO/1kmJ0evP9+L463oo86kywpq2L8wUedKt3Nh8N8vDONaU43MfebL+LHeR3VWTKKosOj44PNeUk2Qd3vE9SbF9SLe71ut9frbt3bvnc/jpfPHYjPCM5FLP5Ly2K95Bkcnt+3s/UfAAAAeH2F02fsze//lelz+DAY5MMsXnRaAAAAwEs0/cv/zaZYaWq3gtDvfwAAAHjd/GnuHrtq8kb4z38HZbkSPp7s/zQ8SZq45ORGe92Nsy3Wg41wfdbItNhann1Ks9vh223Q26fR38yKw3l5hC8hgeAvwUYbs/GwLR+enml7WRvkw6yTFsMPu0GSrC/V2X79+8+P/hBMh//n8Wg9DA6Pjg86v/rN8cNpLo+bVh6fzDZQnNtHcUUuX3637/HiEa9MH8TM+l1r+42fHv9Se/nSD+jzSfBOG/POWluuPTv+1abPbuey0c+y6L7gyJ8Et9uY23ffa4r37l6QRW9eFr2ns3iue/E9sticl8XmC2YBsCiHc1ah8PzCf8UsV/29rZ6d5a5ndX8SvNvGvLsxnViXNy6Y0eN5M3r8gqvb34I7bcyd0+DL1tim37+eWVW/bi74+tJ+q2EvbG7hjS9Pfhu89cVXj94/Ovn0s4PPDj7v9Ta34p/H8b1esDIdxqyw9gBwgaz8Jlyr/xiWZT75ZXd7u5vUu1lUFunHUZn3d7IoH9dZme4m450smrxR1EVaDKNJWXyS97MqqvYmk6Kso0FRRpOiyvenb36JZq9+qbJRMq7ztJoMs6TKorQY10laR/28SqPJ3i+GebWbldOLq0mWfjvI06TOi3FUFXtlmnWiqMqypwLzfjau80HeVMfRpMxHSfkg+qQY7o2yqJ9VaZlP6qJt8LSvfDwoytG02c6ibzYAvCK+e4Pd/7Cy6DECAM+ySgMAAAAAAAAAAAAAwKvvOvb/qfyfV/61HgSvQBoqP6Sy6JkJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAM77TwAAAP//71GkXA==")
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x10, 0x803, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2f, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa1000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)
stat(&(0x7f00000004c0)='./file0\x00', 0x0)
lchown(0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x54, 0x2c, 0xe27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r7, {0xc, 0xc}, {}, {0x5, 0xf}}, [@TCA_RATE={0x6, 0x5, {0xb, 0x9}}, @filter_kind_options=@f_cgroup={{0xb}, {0x1c, 0x2, [@TCA_CGROUP_POLICE={0x18, 0x2, [@TCA_POLICE_RESULT={0x8, 0x5, 0x7}, @TCA_POLICE_RATE64={0xc, 0x8, 0xe}]}]}}]}, 0x54}}, 0x20040054)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="38000000031401002cbd7000ffdbdf250900020073797a32000000000800410072786500140033006c6f00000000000000000000000000009aee1c38"], 0x38}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000)
pipe2$9p(&(0x7f0000000240)={<r9=>0xffffffffffffffff}, 0x4000)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x200000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {'wfdno', 0x3d, r1}})
socket(0x10, 0x3, 0x0)

4m49.121839745s ago: executing program 32 (id=57):
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x400201, 0x14)
mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, &(0x7f0000000180)={[{@hide}, {@dmode}, {@map_off}, {@check_relaxed}]}, 0x1, 0x511, &(0x7f0000000ac0)="$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")
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x10, 0x803, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2f, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa1000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)
stat(&(0x7f00000004c0)='./file0\x00', 0x0)
lchown(0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x54, 0x2c, 0xe27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r7, {0xc, 0xc}, {}, {0x5, 0xf}}, [@TCA_RATE={0x6, 0x5, {0xb, 0x9}}, @filter_kind_options=@f_cgroup={{0xb}, {0x1c, 0x2, [@TCA_CGROUP_POLICE={0x18, 0x2, [@TCA_POLICE_RESULT={0x8, 0x5, 0x7}, @TCA_POLICE_RATE64={0xc, 0x8, 0xe}]}]}}]}, 0x54}}, 0x20040054)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket(0x2, 0x80805, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="38000000031401002cbd7000ffdbdf250900020073797a32000000000800410072786500140033006c6f00000000000000000000000000009aee1c38"], 0x38}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000)
pipe2$9p(&(0x7f0000000240)={<r9=>0xffffffffffffffff}, 0x4000)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x200000, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {'wfdno', 0x3d, r1}})
socket(0x10, 0x3, 0x0)

3m34.106079464s ago: executing program 3 (id=557):
sendmsg$xdp(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002240), 0x0, 0x0, 0x0, 0x10}, 0x40000)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="6e6f646973636172642c6261636b67726f756e645f67633d73796e632c6261636b67726f756e645f67633d6f6e2c6e6f757365725f78617474722c6e6f71756f74612c64697361626c655f726f6c6c5f666f72776172642c67635f6d657267652c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c646973636172645f756e69743d73656374696f6e2c636865636b706f696e743d64697361626c652c6e6f696e6c696e655f64656e7472792c00ec6da92d1c80a6c720380e3c2c55bf27596d2776ce408c4bb19b149757508e1c7e919c6c2047023baa412d14fa75c8cac6e5f103e13ea52708af0a7c5da8af4ecb6612"], 0x2, 0x5505, &(0x7f0000002480)="$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")
r0 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x1)
r3 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000300), 0x2)
r4 = memfd_create(&(0x7f00000009c0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x3)
ftruncate(r4, 0xffff)
fcntl$addseals(r4, 0x409, 0x7)
ioctl$UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000100)={r4, 0x0, 0x0, 0x1000})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)

3m30.363192216s ago: executing program 3 (id=565):
pipe(0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f00000001c0)=0x7f, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = syz_io_uring_setup(0x151, 0x0, 0x0, &(0x7f0000000000)=<r4=>0x0)
landlock_create_ruleset(&(0x7f00000000c0)={0x501b, 0x2, 0x1}, 0x18, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r4, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000000000000000000000000000850000002e00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r5}, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)

3m28.41835776s ago: executing program 3 (id=573):
r0 = syz_clone(0x2008400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080)='proc\x00', 0x189, 0x0)
r2 = syz_open_procfs(r0, 0x0)
fchdir(r2)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)

3m28.175431101s ago: executing program 3 (id=577):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f00000005c0)={{0x12, 0x1, 0x0, 0x3a, 0x37, 0x5, 0x20, 0x781, 0x5, 0x5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xe6, 0x2, 0x2, 0x5b, 0xbd, 0x97, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000006c0)={0x44, &(0x7f00000003c0)={0x0, 0x12, 0x1, 'T'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, &(0x7f0000000100)={0x40, 0x12, 0x1, "ec"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000e40)={0x34, &(0x7f0000000cc0)={0x20, 0x9, 0x1, "e6"}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000d00)={0x84, &(0x7f0000000600)={0x40, 0x6, 0x1, "15"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m24.759640186s ago: executing program 3 (id=591):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r3, 0x2000000, 0xfe7f, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x38}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_MCE_KILL(0x21, 0x1, 0x3)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x817, &(0x7f00000000c0), 0x0, 0x513b, &(0x7f000000a280)="$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")

3m23.645127923s ago: executing program 3 (id=596):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mount$9p_virtio(&(0x7f00000001c0), 0x0, &(0x7f00000004c0), 0x8c, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r3, 0x29, 0x6, 0x0, &(0x7f0000000240))

3m8.062389751s ago: executing program 33 (id=596):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mount$9p_virtio(&(0x7f00000001c0), 0x0, &(0x7f00000004c0), 0x8c, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r3, 0x29, 0x6, 0x0, &(0x7f0000000240))

23.648809229s ago: executing program 6 (id=1138):
socket(0xa, 0x5, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r0}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000000440)={[], [{@fsuuid={'fsuuid', 0x3d, {[0x62, 0x35, 0x64, 0x31, 0x31, 0x36, 0x62, 0x39], 0x2d, [0x32, 0x30, 0x63, 0x33], 0x2d, [0x36, 0x61, 0x62, 0x5b], 0x2d, [0x37, 0x63, 0x63, 0x64], 0x2d, [0x61, 0x32, 0x0, 0x64, 0x32, 0xb, 0x38, 0x34]}}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@fsmagic}, {@fsname={'fsname', 0x3d, '/dev/comedi3\x00'}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '-&!)'}}]}, 0xff, 0x49b, &(0x7f0000001040)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, &(0x7f0000000180)={'dt2815\x00', [0x4f27, 0x9, 0x2, 0x3, 0x5, 0xcc5, 0xf, 0x7, 0xa, 0xe8aa, 0x2, 0x1, 0xffffbffd, 0x1, 0x0, 0x0, 0x0, 0x1a44c, 0x3ff, 0x40000003, 0x99, 0xcaaa, 0x0, 0x20001e57, 0x7, 0xe6b, 0x2, 0xd0, 0x2, 0x1, 0xfcc]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000080)={0x1, 0x0, 0x7, 0x6})
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
syz_io_uring_setup(0x8cf, &(0x7f00000000c0)={0x0, 0x0, 0x20000, 0x3, 0x2039d}, &(0x7f0000000040), 0x0)
fcntl$lock(0xffffffffffffffff, 0x26, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000180)={0x1, 0x8}, 0x0)
syz_io_uring_setup(0x3b43, &(0x7f0000000300)={0x0, 0xc5f8, 0x0, 0x3, 0x3a4}, 0x0, 0x0)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)

16.091207641s ago: executing program 1 (id=1151):
fanotify_init(0xf00, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x2810000, &(0x7f00000000c0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

13.780700797s ago: executing program 6 (id=1155):
socket$nl_route(0x10, 0x3, 0x0)
eventfd(0x5)
r0 = fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='name', &(0x7f00000000c0)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000003c0)='name', &(0x7f0000000400)='})\x00', 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24004045)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1a, 0x4, 0x0, 0x1, 0x8000, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x50)
socket$inet_sctp(0x2, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
read(0xffffffffffffffff, &(0x7f00000000c0)=""/163, 0xa3)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
semget$private(0x0, 0x207, 0x0)

13.581859963s ago: executing program 1 (id=1156):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000440)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x0, 0x0})
signalfd(0xffffffffffffffff, 0x0, 0x0)
inotify_init1(0x800)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x1c, r5, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0xfffffffe}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f00000005c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe00}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xa031, 0xffffffffffffffff, 0x0)
memfd_secret(0x80000)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
socket$inet6_tcp(0xa, 0x1, 0x0)

10.712790065s ago: executing program 1 (id=1159):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r0 = dup(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r1 = gettid()
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4010)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = userfaultfd(0x801)
read$FUSE(r0, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
fstat(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x50d1, &(0x7f0000000000)={0x0, 0xfffffffa, 0x4000, 0x2, 0x37c}, &(0x7f0000000100), &(0x7f0000ff4000))
ioctl$SIOCAX25GETINFO(0xffffffffffffffff, 0x89ed, &(0x7f00000001c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)

10.596870304s ago: executing program 2 (id=1160):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x1000002, 0x0, 0xff, "d4e9002b2c000000ff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup(r1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
dup3(r0, r2, 0x0)
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x13)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r4, &(0x7f0000000300)=[{&(0x7f0000000600)="8414", 0x2}, {&(0x7f0000000640)='hQ', 0x2}], 0x2, 0xffffffff, 0x4)
r5 = socket$inet6(0xa, 0x80002, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00"/11], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000", @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg$inet6(r5, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
ioctl$TCFLSH(r0, 0x540b, 0x1)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)

10.451506783s ago: executing program 2 (id=1161):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="050000000a0000004200000040"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r0}, 0x38)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0x2004})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000))
r2 = gettid()
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000300)=0x4, 0x4)
r3 = socket(0x1, 0xa, 0x1000)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x138, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x108, 0x2, [@TCA_GRED_STAB={0x9f, 0x2, "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"}]}}]}, 0x138}, 0x1, 0x0, 0x0, 0x48841}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r6, &(0x7f0000000180)={0x1a, 0x0, 0xf9, 0x8, 0x0, 0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x10)
readv(r6, &(0x7f0000000240)=[{&(0x7f0000002240)=""/4090, 0xfcf6}, {&(0x7f0000000200)=""/11}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f000001b700)=""/102392, 0x18ff8)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x2}, 0x80, &(0x7f0000000500)=[{0x0}], 0x1}, 0x40048)
socket$alg(0x26, 0x5, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

9.858315144s ago: executing program 0 (id=1164):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x5e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x10, &(0x7f00000003c0)=ANY=[], 0x3, 0x1507, &(0x7f0000003040)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_START(r6, 0x4142, 0x0)

7.721430409s ago: executing program 0 (id=1166):
syz_mount_image$jfs(&(0x7f0000005dc0), &(0x7f0000005e00)='./file1\x00', 0x208000, &(0x7f0000001d40)=ANY=[@ANYBLOB="009c1b06223d15055c6d39aecad6836294e3e1fc38b80cd5eb20b39dc7dceb316fa1203f802b4368850fdef916202a989ea54a4e800c324c19bad386d9a72fc1de2fa7f100eae8a434158d0ed0d6a9061d60971bcf895342571bae0ea58240ebdd0f6f3dd42fa0f9754224a9c2045d2e098e01000000943549e2c2e191b7da91b8645dfdb324ceaf445cdc974884e2d5ac6dbf8b92da3a8a65176db66ca798dce71880c5e6837b5a99b6696d5003a06f62bbfb0b9ba0a6ffbfc2dd37662e060000009386d8e3abf802401b0e8382824a68cf51cde62ac99470edf8c757396164c8079d89017df3182005ec9fe433b122f1c02ca72eb68e41fc7ff69975649149ff4be64bd665e56a5fe9ef4d6ee02ff30ad838a9744100d520765c83c0178534e09d2f578bd10d3bfc68d1e75d6965613448d1045b6a0298d0804f82bc984e271c346d1e30886f81feb02b8320d47dc752b2dd23b4d8e20f2bda7ff84c57d63da96f044f8daaac7cb7132ef6"], 0x41, 0x5e62, &(0x7f0000011a80)="$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")
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=@md5={0x1, "5211eb8e5ce6935e9bbd76e32c4c956e"}, 0xfec2, 0x1)
open(&(0x7f0000000580)='./file1\x00', 0x80042, 0x43)

7.277606765s ago: executing program 6 (id=1169):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x4453, &(0x7f000000cd40)="$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")
creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
read$msr(r0, &(0x7f0000004c00)=""/102392, 0x18ff8)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x201001a, &(0x7f0000000080)=ANY=[], 0x1, 0x740, &(0x7f0000000140)="$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")
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pread64(r1, &(0x7f0000002280)=""/4096, 0x1000, 0xd33)
r2 = openat$vicodec1(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
preadv2(r2, &(0x7f0000000d00)=[{&(0x7f0000000bc0)=""/143, 0x8f}], 0x1, 0x9, 0x10000, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000024c80)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

7.168990886s ago: executing program 1 (id=1170):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000005080)={0x0, 0x0, &(0x7f0000005040)={0x0}, 0x1, 0x0, 0x0, 0xc014}, 0x80)

7.16798461s ago: executing program 7 (id=1171):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x4c840}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c40)=@delchain={0x74, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x44, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x40, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x3c, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x89da}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0xf}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x6}]}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x10}, 0x0)

6.940781727s ago: executing program 1 (id=1172):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x2)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f0000000380)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bind$netrom(0xffffffffffffffff, &(0x7f0000000000)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x21000, 0x0)
ioctl$TIOCMIWAIT(r3, 0x545c, 0x300fff2)
ioctl$TIOCMSET(r3, 0x5418, &(0x7f0000002200)=0xf1eb)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
getpid()
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000002c0)={0x2, 0x1, 0x4})
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000080)=<r5=>0xffffffffffffffff)
r6 = openat$audio1(0xffffffffffffff9c, &(0x7f00000000c0), 0x78480, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r6, 0x8010500d, &(0x7f0000000180))
ioctl$vim2m_VIDIOC_QUERYBUF(r4, 0xc0585609, &(0x7f0000000100)=@mmap={0x401, 0x3, 0x4, 0x2000, 0xfff, {0x77359400}, {0x3, 0x1, 0xff, 0x4, 0x20, 0x3, "0b64f0fd"}, 0x1, 0x1, {}, 0x3ff, 0x0, r5})

6.207231393s ago: executing program 7 (id=1174):
recvmsg(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e04015b0c"], 0x7)

5.950436432s ago: executing program 1 (id=1176):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), r2)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="31679b097098c3049d8506"], 0x14}, 0x1, 0x0, 0x0, 0x24004040}, 0x8824)

5.793466063s ago: executing program 7 (id=1177):
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x20081, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000001c0), 0x106, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_ACCEPT(r0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, 0x0, 0x0, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002940), 0x0)
ioctl$DRM_IOCTL_MODE_GETENCODER(r0, 0xc01464a6, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, &(0x7f00000035c0)={0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000003700)={0x400, 0x0, &(0x7f0000003600), 0x0, &(0x7f0000003680)=[0x0], &(0x7f00000036c0)=[0x4], 0x0, 0x2})

5.789722847s ago: executing program 0 (id=1178):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0xfff1, 0x1}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0xc, 0x2, [@TCA_FLOW_RSHIFT={0x8, 0x4, 0xbf7}]}}]}, 0x3c}}, 0x0)

5.372631838s ago: executing program 4 (id=1179):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x5e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x10, &(0x7f00000003c0)=ANY=[], 0x3, 0x1507, &(0x7f0000003040)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_START(r6, 0x4142, 0x0)

4.244625869s ago: executing program 7 (id=1180):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
chdir(0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002)
writev(r1, &(0x7f0000000c40)=[{0x0}, {&(0x7f00000005c0)="c21cfb", 0x3}, {&(0x7f00000007c0), 0x300}, {&(0x7f0000000900), 0x4000}], 0xe)

3.18937539s ago: executing program 4 (id=1181):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0xffb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
read(r0, &(0x7f0000000300)=""/74, 0x4a)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x0, 0x0, 0x80, 'syz0\x00', 0xff}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x8, 'syz0\x00', 0x0})

3.177380245s ago: executing program 2 (id=1182):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r0 = dup(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r1 = gettid()
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4010)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = userfaultfd(0x801)
read$FUSE(r0, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
fstat(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x50d1, &(0x7f0000000000)={0x0, 0xfffffffa, 0x4000, 0x2, 0x37c}, &(0x7f0000000100), &(0x7f0000ff4000))
ioctl$SIOCAX25GETINFO(0xffffffffffffffff, 0x89ed, &(0x7f00000001c0))
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)

2.990717673s ago: executing program 7 (id=1183):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000140)='./file1\x00', 0x8c0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cbec85bf8e749e04e"], 0x11, 0x445d, &(0x7f0000008900)="$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")
open(&(0x7f0000001340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14927e, 0x20)

2.743889943s ago: executing program 0 (id=1184):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001d80)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000c0], 0x11, 0x0, &(0x7f00000000c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0x108)

2.389883106s ago: executing program 6 (id=1185):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x4, 0xa}, {}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8858}, 0x20004804)

2.136811289s ago: executing program 4 (id=1186):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x4c840}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c40)=@delchain={0x74, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x44, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x40, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_GENEVE={0x3c, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x9}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA={0x5, 0x3, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x89da}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS={0x6, 0x1, 0xf}, @TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE={0x5, 0x2, 0x6}]}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.916936447s ago: executing program 4 (id=1187):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="351a0000100001"], 0x28}}, 0x20040881)
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB], 0xfd1)

1.848190125s ago: executing program 2 (id=1188):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000005c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x94}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1.672871033s ago: executing program 2 (id=1189):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000040)='./file2\x00', 0x3200400, &(0x7f0000000c00)=ANY=[], 0x1, 0xa77, &(0x7f0000000e80)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x42002, 0x113)
pwritev2(r2, &(0x7f0000000100)=[{&(0x7f0000000240)="12", 0x1}], 0x1, 0xcfbc, 0x3, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000240))

1.58887865s ago: executing program 4 (id=1190):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000001800010027bd7000fcdbdf251d01020015000100040000e002000000213e92146611cf5b0400000008000900", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYBLOB='\b'], 0x64}, 0x1, 0x0, 0x0, 0x88}, 0x80)

1.439463464s ago: executing program 6 (id=1191):
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xaf4, &(0x7f0000000e00)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000005c0)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x90e7d000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000340)=@file={0x0, './bus/file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x82b83, 0x0)
syz_open_dev$admmidi(0x0, 0x20, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x2)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00')
syz_mount_image$msdos(&(0x7f0000000940), &(0x7f0000001cc0)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
syz_open_dev$loop(&(0x7f0000000100), 0x5, 0x20000)

1.392932239s ago: executing program 0 (id=1192):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
socket$inet6_sctp(0xa, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x4, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0x5, 0x0, 0x8, 0x5}, {0x12, 0x1, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x3c, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfb, {0x60, 0x0, 0x0, r3, {}, {0xffe0, 0xa}, {0x1, 0x8}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x4950}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x55}, 0x8090)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0}, 0x0)

1.258724952s ago: executing program 2 (id=1193):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200000, &(0x7f0000000180)={[{@grpquota}, {@inode_readahead_blks}, {@quota}, {@oldalloc}]}, 0x1, 0x50d, &(0x7f0000001bc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000))
close(r0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x5005})
write$tun(r2, &(0x7f00000003c0)={@void, @val={0x3, 0x3, 0x8, 0x406, 0x19, 0xc}, @ipv4=@generic={{0x6, 0x4, 0x1, 0xb, 0x27, 0x64, 0x0, 0x9, 0x84, 0x0, @private=0xa010101, @local, {[@timestamp_prespec={0x44, 0x4, 0x7e, 0x3, 0x2}]}}, "8b04ba06175fe851a81e3308c20000"}}, 0x31)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)

1.258312776s ago: executing program 4 (id=1194):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xfd}}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000000c0)=@ccm_128={{0x304}, "000000009b993e68", "75df9881592b9fd38bcad042e286f2cd", ')\x00\x000', "578619a280c847dd"}, 0x28)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{0x0}], 0x1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e100000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000003c0)='sched_switch\x00', r2, 0x0, 0xffffffffffffffff}, 0xffffffffffffff1d)
r3 = socket$xdp(0x2c, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x400000000000004)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000005c0)='./file1/file0\x00', 0x1a3e40, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
getdents64(r4, &(0x7f0000020ac0)=""/4107, 0x100b)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f00000004c0)=0x1000000, 0x4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r5, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRESDEC=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
lsm_get_self_attr(0x67, 0x0, &(0x7f0000000280), 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
madvise(&(0x7f0000437000/0x2000)=nil, 0x2000, 0x1f)
cachestat(r5, 0x0, 0x0, 0x0)

111.318391ms ago: executing program 6 (id=1195):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x401, 0x4, 0xe, 0x8, 0x9, 0x800, 0x2, 0x6, 0x3}}}}]}, 0x58}}, 0x20040084)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001380)=@newqdisc={0x24, 0x29, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)

81.353844ms ago: executing program 0 (id=1196):
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x40844)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x78, 0x802)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000040)={0x7, 0x6576, 0x3})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r3, 0x100000000)

0s ago: executing program 7 (id=1197):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="050000000a0000004200000040"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r0}, 0x38)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0x2004})
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000))
r2 = gettid()
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000300)=0x4, 0x4)
r3 = socket(0x1, 0xa, 0x1000)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x138, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x108, 0x2, [@TCA_GRED_STAB={0x9f, 0x2, "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"}]}}]}, 0x138}, 0x1, 0x0, 0x0, 0x48841}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r6, &(0x7f0000000180)={0x1a, 0x0, 0xf9, 0x8, 0x0, 0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x10)
readv(r6, &(0x7f0000000240)=[{&(0x7f0000002240)=""/4090, 0xfcf6}, {&(0x7f0000000200)=""/11}], 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f000001b700)=""/102392, 0x18ff8)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x2}, 0x80, &(0x7f0000000500)=[{0x0}], 0x1}, 0x40048)
socket$alg(0x26, 0x5, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

kernel console output (not intermixed with test programs):

80480][ T5917] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  230.907189][ T5917] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  230.922930][ T5917] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.951618][ T5917] usb 3-1: Product: syz
[  230.961024][ T5917] usb 3-1: Manufacturer: syz
[  230.977117][ T5917] usb 3-1: SerialNumber: syz
[  231.164619][ T8121] loop1: detected capacity change from 0 to 256
[  231.195090][ T8121] exfat: Deprecated parameter 'namecase'
[  231.215938][ T8121] exfat: Deprecated parameter 'namecase'
[  231.261283][ T8092] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  231.275219][ T5838] Bluetooth: hci1: command tx timeout
[  231.427674][ T8121] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5417aa89, utbl_chksum : 0xe619d30d)
[  231.462631][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  231.599936][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  231.704445][   T36] bond0 (unregistering): Released all slaves
[  231.891297][ T8001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  231.978345][ T8001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  232.077657][ T5823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.103328][ T8092] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  233.138893][ T8130] loop6: detected capacity change from 0 to 512
[  233.146446][ T5917] cdc_ncm 3-1:1.0: MAC-Address: 42:42:42:42:42:42
[  233.153020][ T5917] cdc_ncm 3-1:1.0: setting rx_max = 16384
[  233.237833][ T8134] loop0: detected capacity change from 0 to 128
[  233.322444][ T8130] __quota_error: 10 callbacks suppressed
[  233.322466][ T8130] Quota error (device loop6): v2_read_file_info: Free block number 1 out of range (1, 6).
[  233.345196][ T8130] EXT4-fs warning (device loop6): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  233.395290][ T8001] team0: Port device team_slave_0 added
[  233.400482][ T5917] cdc_ncm 3-1:1.0: setting tx_max = 88
[  233.414464][ T8001] team0: Port device team_slave_1 added
[  233.473870][ T8130] EXT4-fs (loop6): mount failed
[  233.475178][   T30] audit: type=1326 audit(1760838003.032:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7efcad585e67 code=0x7ffc0000
[  233.569963][ T8145] loop1: detected capacity change from 0 to 128
[  233.592380][ T8145] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  233.600568][   T30] audit: type=1326 audit(1760838003.032:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7efcad52b099 code=0x7ffc0000
[  233.615716][ T8145] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  233.710525][ T8145] overlayfs: failed to resolve './bus': -2
[  233.743555][   T30] audit: type=1326 audit(1760838003.032:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7efcad585e67 code=0x7ffc0000
[  233.805668][   T30] audit: type=1326 audit(1760838003.032:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7efcad52b099 code=0x7ffc0000
[  233.866788][   T30] audit: type=1326 audit(1760838003.032:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  233.913138][ T5917] cdc_ncm 3-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.2-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  233.955655][   T30] audit: type=1326 audit(1760838003.032:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  234.003248][ T8151] netlink: 8 bytes leftover after parsing attributes in process `syz.4.671'.
[  234.022418][   T36] hsr_slave_0: left promiscuous mode
[  234.029024][ T5917] usb 3-1: USB disconnect, device number 3
[  234.032537][   T30] audit: type=1326 audit(1760838003.032:1347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  234.047055][ T5917] cdc_ncm 3-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.2-1, CDC NCM (NO ZLP)
[  234.143893][   T36] hsr_slave_1: left promiscuous mode
[  234.170197][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  234.187675][   T30] audit: type=1326 audit(1760838003.032:1348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  234.261025][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.296266][ T8157] loop1: detected capacity change from 0 to 64
[  234.331453][   T30] audit: type=1326 audit(1760838003.032:1349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8132 comm="syz.0.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  234.521955][ T8165] loop4: detected capacity change from 0 to 512
[  234.551107][ T8165] EXT4-fs: Ignoring removed oldalloc option
[  234.619100][ T8165] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.703782][ T8165] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  235.287082][   T36] team0 (unregistering): Port device team_slave_1 removed
[  235.328735][   T36] team0 (unregistering): Port device team_slave_0 removed
[  235.333897][ T5833] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  235.486086][ T5833] usb 1-1: Using ep0 maxpacket: 32
[  235.495043][ T5833] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  235.506081][ T5833] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  235.521833][ T5833] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  235.541183][ T5833] usb 1-1: config 1 has no interface number 0
[  235.548768][ T5833] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  235.795200][ T5833] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  235.808497][ T5833] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  235.817665][ T5833] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.833989][ T5833] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  235.869936][ T8001] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.877551][ T8001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  235.907250][ T8001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  236.162362][ T8193] loop6: detected capacity change from 0 to 32768
[  236.191301][ T8193] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  236.208942][ T5833] snd_usb_pod 1-1:1.1: invalid control EP
[  236.215420][ T5833] snd_usb_pod 1-1:1.1: cannot start listening: -22
[  236.221598][ T8164] mkiss: ax0: crc mode is auto.
[  236.222187][ T5833] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  236.235040][ T5833] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -22
[  236.247546][ T8177] netlink: 8 bytes leftover after parsing attributes in process `syz.2.680'.
[  236.483827][ T8001] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.506603][ T8001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  236.535322][ T8001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  237.142401][ T5828] Bluetooth: hci1: command 0x0405 tx timeout
[  237.262006][ T6366] (syz-executor,6366,1):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76
[  237.286620][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.387682][ T8001] hsr_slave_0: entered promiscuous mode
[  237.425707][ T8001] hsr_slave_1: entered promiscuous mode
[  237.439084][ T6366] ocfs2: Unmounting device (7,6) on (node local)
[  237.462202][ T8001] debugfs: 'hsr0' already exists in 'hsr'
[  237.477053][ T8001] Cannot create hsr debugfs directory
[  238.361901][ T5969] usb 1-1: USB disconnect, device number 4
[  238.651940][ T8208] netlink: 8 bytes leftover after parsing attributes in process `syz.4.688'.
[  238.663350][ T8208] netlink: 8 bytes leftover after parsing attributes in process `syz.4.688'.
[  238.718119][   T36] IPVS: stop unused estimator thread 0...
[  238.857407][ T8222] loop6: detected capacity change from 0 to 128
[  239.021586][ T8227] loop4: detected capacity change from 0 to 512
[  239.034043][   T30] kauditd_printk_skb: 34 callbacks suppressed
[  239.034061][   T30] audit: type=1326 audit(1760838008.592:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15e9d85e67 code=0x7ffc0000
[  239.114195][ T8001] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  239.127433][ T8227] Quota error (device loop4): v2_read_file_info: Free block number 1 out of range (1, 6).
[  239.138098][   T30] audit: type=1326 audit(1760838008.592:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15e9d2b099 code=0x7ffc0000
[  239.148606][ T8001] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  239.162159][   T30] audit: type=1326 audit(1760838008.592:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f15e9d85e67 code=0x7ffc0000
[  239.169955][ T8227] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  239.206064][   T30] audit: type=1326 audit(1760838008.592:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f15e9d2b099 code=0x7ffc0000
[  239.229068][   T30] audit: type=1326 audit(1760838008.592:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  239.251871][   T30] audit: type=1326 audit(1760838008.592:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  239.276141][   T30] audit: type=1326 audit(1760838008.602:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  239.284031][ T8238] netlink: 8 bytes leftover after parsing attributes in process `syz.1.696'.
[  239.303211][   T30] audit: type=1326 audit(1760838008.602:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  239.310092][ T8227] EXT4-fs (loop4): mount failed
[  239.330267][   T30] audit: type=1326 audit(1760838008.602:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8221 comm="syz.6.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  239.340570][ T8001] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  239.598322][ T8001] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  241.369401][ T5917] IPVS: starting estimator thread 0...
[  241.463526][ T8250] IPVS: using max 26 ests per chain, 62400 per kthread
[  242.146711][ T8261] loop1: detected capacity change from 0 to 136
[  242.190697][ T8261] iso9660: Unknown parameter 'cleck'
[  242.484125][ T8268] loop0: detected capacity change from 0 to 512
[  243.513638][ T8268] EXT4-fs (loop0): too many log groups per flexible block group
[  243.522983][ T8268] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  243.531680][ T8268] EXT4-fs (loop0): mount failed
[  243.566863][ T8001] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.758811][ T8001] 8021q: adding VLAN 0 to HW filter on device team0
[  243.792029][ T1103] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.799523][ T1103] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.919594][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.927327][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.964536][ T8286] netlink: 8 bytes leftover after parsing attributes in process `syz.4.705'.
[  243.999167][ T8286] netlink: 8 bytes leftover after parsing attributes in process `syz.4.705'.
[  244.404306][ T8299] netlink: 28 bytes leftover after parsing attributes in process `syz.2.712'.
[  244.514866][ T8299] netlink: 20 bytes leftover after parsing attributes in process `syz.2.712'.
[  244.536434][ T8302] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  244.595901][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  244.595930][   T30] audit: type=1326 audit(1760838014.162:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.6.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  244.733466][   T30] audit: type=1326 audit(1760838014.202:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.6.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15e9d8efc9 code=0x7ffc0000
[  244.755773][    C0] vkms_vblank_simulate: vblank timer overrun
[  244.841847][ T8310] loop4: detected capacity change from 0 to 128
[  244.936936][   T30] audit: type=1326 audit(1760838014.502:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9104d85e67 code=0x7ffc0000
[  245.100184][   T30] audit: type=1326 audit(1760838014.522:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9104d2b099 code=0x7ffc0000
[  245.122414][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.129438][ T8001] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.183554][   T30] audit: type=1326 audit(1760838014.522:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9104d85e67 code=0x7ffc0000
[  245.205829][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.257339][   T30] audit: type=1326 audit(1760838014.522:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9104d2b099 code=0x7ffc0000
[  245.510074][   T30] audit: type=1326 audit(1760838014.522:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  245.534078][   T30] audit: type=1326 audit(1760838014.522:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  245.556466][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.562780][   T30] audit: type=1326 audit(1760838014.522:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  245.585114][    C0] vkms_vblank_simulate: vblank timer overrun
[  245.603501][   T30] audit: type=1326 audit(1760838014.522:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8309 comm="syz.4.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  246.213298][ T8300] syz.1.710: vmalloc error: size 268439552, failed to allocated page array size 524296, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  246.315106][ T8300] CPU: 1 UID: 0 PID: 8300 Comm: syz.1.710 Not tainted syzkaller #0 PREEMPT(full) 
[  246.315142][ T8300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  246.315157][ T8300] Call Trace:
[  246.315167][ T8300]  <TASK>
[  246.315178][ T8300]  dump_stack_lvl+0x189/0x250
[  246.315210][ T8300]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  246.315243][ T8300]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.315270][ T8300]  ? __pfx__printk+0x10/0x10
[  246.315296][ T8300]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  246.315323][ T8300]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  246.315353][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.315388][ T8300]  warn_alloc+0x214/0x310
[  246.315425][ T8300]  ? __pfx_warn_alloc+0x10/0x10
[  246.315464][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.315492][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.315520][ T8300]  ? __get_vm_area_node+0x28f/0x300
[  246.315548][ T8300]  ? xskq_create+0xbf/0x170
[  246.315576][ T8300]  __vmalloc_node_range_noprof+0x690/0x12d0
[  246.315642][ T8300]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  246.315676][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.315712][ T8300]  ? __kasan_kmalloc+0x93/0xb0
[  246.315743][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.315779][ T8300]  vmalloc_user_noprof+0xad/0xf0
[  246.315808][ T8300]  ? xskq_create+0xbf/0x170
[  246.315833][ T8300]  xskq_create+0xbf/0x170
[  246.315861][ T8300]  xsk_init_queue+0xb0/0x110
[  246.315904][ T8300]  xsk_setsockopt+0x57b/0x8d0
[  246.315946][ T8300]  ? __pfx_xsk_setsockopt+0x10/0x10
[  246.315987][ T8300]  ? __pfx_aa_sk_perm+0x10/0x10
[  246.316011][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.316045][ T8300]  ? aa_sock_opt_perm+0xff/0x1b0
[  246.316078][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.316106][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.316135][ T8300]  ? __pfx_xsk_setsockopt+0x10/0x10
[  246.316175][ T8300]  do_sock_setsockopt+0x17c/0x1b0
[  246.316222][ T8300]  __x64_sys_setsockopt+0x13f/0x1b0
[  246.316270][ T8300]  do_syscall_64+0xfa/0xfa0
[  246.316294][ T8300]  ? lockdep_hardirqs_on+0x9c/0x150
[  246.316320][ T8300]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.316344][ T8300]  ? srso_alias_return_thunk+0x5/0xfbef5
[  246.316372][ T8300]  ? exc_page_fault+0xab/0x100
[  246.316399][ T8300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.316423][ T8300] RIP: 0033:0x7f34ae38efc9
[  246.316444][ T8300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.316466][ T8300] RSP: 002b:00007f34af14e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  246.316491][ T8300] RAX: ffffffffffffffda RBX: 00007f34ae5e6090 RCX: 00007f34ae38efc9
[  246.316511][ T8300] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[  246.316526][ T8300] RBP: 00007f34ae411f91 R08: 0000000000000004 R09: 0000000000000000
[  246.316542][ T8300] R10: 00002000000004c0 R11: 0000000000000246 R12: 0000000000000000
[  246.316559][ T8300] R13: 00007f34ae5e6128 R14: 00007f34ae5e6090 R15: 00007ffef27d4c88
[  246.316600][ T8300]  </TASK>
[  246.316610][ T8300] Mem-Info:
[  246.642954][ T8300] active_anon:8113 inactive_anon:0 isolated_anon:0
[  246.642954][ T8300]  active_file:3912 inactive_file:39954 isolated_file:0
[  246.642954][ T8300]  unevictable:768 dirty:213 writeback:0
[  246.642954][ T8300]  slab_reclaimable:11474 slab_unreclaimable:98831
[  246.642954][ T8300]  mapped:39624 shmem:4514 pagetables:1115
[  246.642954][ T8300]  sec_pagetables:0 bounce:0
[  246.642954][ T8300]  kernel_misc_reclaimable:0
[  246.642954][ T8300]  free:1298864 free_pcp:19822 free_cma:0
[  246.690471][ T8300] Node 0 active_anon:32452kB inactive_anon:0kB active_file:15648kB inactive_file:159612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:158396kB dirty:852kB writeback:0kB shmem:16520kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12336kB pagetables:4292kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  246.766565][ T8300] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  246.854263][ T8300] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  246.903699][ T8300] lowmem_reserve[]: 0 2501 2503 2503 2503
[  246.909550][ T8300] Node 0 DMA32 free:1282392kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32452kB inactive_anon:0kB active_file:15648kB inactive_file:159612kB unevictable:1536kB writepending:852kB zspages:0kB present:3129332kB managed:2561600kB mlocked:0kB bounce:0kB free_pcp:60956kB local_pcp:33064kB free_cma:0kB
[  246.913661][ T5828] Bluetooth: hci6: command 0x0406 tx timeout
[  246.943021][    C0] vkms_vblank_simulate: vblank timer overrun
[  247.023054][ T8300] lowmem_reserve[]: 0 0 1 1 1
[  247.069767][ T8300] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  247.107107][ T8338] loop0: detected capacity change from 0 to 64
[  247.249821][ T8300] lowmem_reserve[]: 0 0 0 0 0
[  247.259865][ T8001] veth0_vlan: entered promiscuous mode
[  247.281773][ T8001] veth1_vlan: entered promiscuous mode
[  247.293845][ T8300] Node 1 Normal free:3897192kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:18720kB local_pcp:11328kB free_cma:0kB
[  247.316126][ T8340] siw: device registration error -23
[  247.366632][ T8001] veth0_macvtap: entered promiscuous mode
[  247.393656][ T8001] veth1_macvtap: entered promiscuous mode
[  247.403825][ T8300] lowmem_reserve[]: 0 0 0 0 0
[  247.408681][ T8300] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  247.455718][ T8300] Node 0 DMA32: 2*4kB (ME) 2*8kB (UE) 1*16kB (E) 2*32kB (ME) 117*64kB (UME) 79*128kB (UME) 101*256kB (UM) 46*512kB (UME) 9*1024kB (UME) 5*2048kB (UM) 292*4096kB (UM) = 1282600kB
[  247.516134][ T8001] batman_adv: batadv0: Interface activated: batadv_slave_0
[  247.528792][ T8001] batman_adv: batadv0: Interface activated: batadv_slave_1
[  247.536414][ T8300] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  247.558458][ T8300] Node 1 Normal: 212*4kB (U) 57*8kB (UME) 47*16kB (UME) 113*32kB (UME) 39*64kB (UME) 7*128kB (UME) 4*256kB (UME) 2*512kB (M) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3897192kB
[  247.587579][ T8300] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  247.709384][ T8272] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  247.722016][ T8300] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  247.731688][ T8300] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  247.734496][ T8346] program syz.4.724 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  247.745578][ T8300] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  247.762090][ T8300] 52954 total pagecache pages
[  247.767101][ T8300] 0 pages in swap cache
[  247.771542][ T8300] Free swap  = 124996kB
[  247.776088][ T8300] Total swap = 124996kB
[  247.782817][ T8300] 2097051 pages RAM
[  247.792952][ T8300] 0 pages HighMem/MovableOnly
[  247.900750][ T8272] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  247.921671][ T8300] 424561 pages reserved
[  247.922389][ T8349] netlink: 44 bytes leftover after parsing attributes in process `syz.0.723'.
[  247.926119][ T8300] 0 pages cma reserved
[  247.975142][ T8272] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  248.015725][ T8272] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  248.579876][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.621176][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.671116][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.701507][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.728280][ T8355] netlink: 28 bytes leftover after parsing attributes in process `syz.6.726'.
[  248.756834][ T8355] netlink: 20 bytes leftover after parsing attributes in process `syz.6.726'.
[  248.933919][ T8358] netlink: 28 bytes leftover after parsing attributes in process `syz.6.727'.
[  248.962455][ T8358] netlink: 28 bytes leftover after parsing attributes in process `syz.6.727'.
[  249.020107][ T8358] netlink: 28 bytes leftover after parsing attributes in process `syz.6.727'.
[  249.038478][ T8358] netlink: 28 bytes leftover after parsing attributes in process `syz.6.727'.
[  249.712919][ T8368] loop4: detected capacity change from 0 to 128
[  250.079319][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  250.079339][   T30] audit: type=1326 audit(1760838019.632:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9104d85e67 code=0x7ffc0000
[  250.153946][   T30] audit: type=1326 audit(1760838019.632:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9104d2b099 code=0x7ffc0000
[  250.261397][   T30] audit: type=1326 audit(1760838019.632:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9104d85e67 code=0x7ffc0000
[  250.328985][   T30] audit: type=1326 audit(1760838019.632:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9104d2b099 code=0x7ffc0000
[  250.377744][   T30] audit: type=1326 audit(1760838019.632:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  251.574987][   T30] audit: type=1326 audit(1760838019.632:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  251.596195][ T5463] IPVS: starting estimator thread 0...
[  252.304571][   T30] audit: type=1326 audit(1760838019.632:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  252.342533][   T30] audit: type=1326 audit(1760838019.632:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  252.434777][ T8381] IPVS: using max 24 ests per chain, 57600 per kthread
[  252.470193][   T30] audit: type=1326 audit(1760838019.632:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  252.904387][ T8389] dvmrp1: entered allmulticast mode
[  252.991444][   T30] audit: type=1326 audit(1760838019.632:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.4.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9104d8da7f code=0x7ffc0000
[  253.158558][ T8394] program syz.7.736 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  253.393118][ T8398] netlink: 28 bytes leftover after parsing attributes in process `syz.1.738'.
[  253.433515][ T8398] netlink: 20 bytes leftover after parsing attributes in process `syz.1.738'.
[  253.659151][ T8408] netlink: 32 bytes leftover after parsing attributes in process `syz.0.743'.
[  253.933005][ T8408] loop0: detected capacity change from 0 to 40427
[  253.979821][ T8408] F2FS-fs (loop0): invalid crc value
[  254.080429][ T8408] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  254.091848][ T8408] F2FS-fs (loop0): Start checkpoint disabled!
[  254.100308][ T8408] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[  254.110491][ T8408] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  255.163433][ T5916] IPVS: starting estimator thread 0...
[  255.323895][ T8433] IPVS: using max 25 ests per chain, 60000 per kthread
[  256.701940][ T8431] netlink: 8 bytes leftover after parsing attributes in process `syz.2.749'.
[  257.005349][   T30] kauditd_printk_skb: 46 callbacks suppressed
[  257.005398][   T30] audit: type=1326 audit(1760838026.552:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31e7985e67 code=0x7ffc0000
[  257.310949][ T8436] loop2: detected capacity change from 0 to 2048
[  257.989833][   T30] audit: type=1326 audit(1760838026.562:1486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31e792b099 code=0x7ffc0000
[  258.050451][ T8436] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  259.003517][   T30] audit: type=1326 audit(1760838026.562:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31e7985e67 code=0x7ffc0000
[  259.035609][   T30] audit: type=1326 audit(1760838026.562:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31e792b099 code=0x7ffc0000
[  260.013675][   T30] audit: type=1326 audit(1760838027.582:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31e7985e67 code=0x7ffc0000
[  260.042731][   T30] audit: type=1326 audit(1760838027.582:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31e792b099 code=0x7ffc0000
[  260.159400][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  260.166634][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  260.180365][   T30] audit: type=1326 audit(1760838027.592:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31e7985e67 code=0x7ffc0000
[  260.273490][   T30] audit: type=1326 audit(1760838027.602:1492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31e792b099 code=0x7ffc0000
[  260.308150][   T30] audit: type=1326 audit(1760838027.602:1493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8412 comm="syz.7.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31e7985e67 code=0x7ffc0000
[  261.735707][ T8457] netlink: 44 bytes leftover after parsing attributes in process `syz.1.755'.
[  263.197065][ T8440] loop6: detected capacity change from 0 to 40427
[  263.245896][ T8440] F2FS-fs (loop6): invalid crc value
[  263.372810][ T8440] F2FS-fs (loop6): Failed to initialize F2FS segment manager (-4)
[  266.420741][ T8503] netlink: 8 bytes leftover after parsing attributes in process `syz.7.771'.
[  266.429731][ T8503] netlink: 28 bytes leftover after parsing attributes in process `syz.7.771'.
[  267.453553][ T5916] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  267.648252][ T5916] usb 7-1: Using ep0 maxpacket: 32
[  267.662946][ T5916] usb 7-1: config index 0 descriptor too short (expected 35577, got 27)
[  267.682351][ T5916] usb 7-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  267.706283][ T5916] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 92
[  267.758356][ T5916] usb 7-1: config 1 has no interface number 0
[  267.786295][ T5916] usb 7-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  267.815203][ T5916] usb 7-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  267.920302][ T5916] usb 7-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  268.304431][ T5916] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.369883][ T5916] snd_usb_pod 7-1:1.1: Line 6 Pocket POD found
[  268.513546][   T30] audit: type=1326 audit(1760838038.072:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  268.580746][ T5916] snd_usb_pod 7-1:1.1: invalid control EP
[  268.610154][   T30] audit: type=1326 audit(1760838038.072:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  268.634499][ T5916] snd_usb_pod 7-1:1.1: cannot start listening: -22
[  268.641246][ T5916] snd_usb_pod 7-1:1.1: Line 6 Pocket POD now disconnected
[  268.680606][ T5916] snd_usb_pod 7-1:1.1: probe with driver snd_usb_pod failed with error -22
[  268.719288][   T30] audit: type=1326 audit(1760838038.072:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  268.929861][   T30] audit: type=1326 audit(1760838038.072:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  268.954197][   T30] audit: type=1326 audit(1760838038.072:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  268.976667][   T30] audit: type=1326 audit(1760838038.102:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  269.016901][   T30] audit: type=1326 audit(1760838038.102:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  269.672436][   T30] audit: type=1326 audit(1760838038.102:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  269.727418][   T30] audit: type=1326 audit(1760838038.102:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  269.786530][ T8547] program syz.7.783 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  269.800984][   T30] audit: type=1326 audit(1760838038.102:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.4.780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  269.987366][ T8550] loop2: detected capacity change from 0 to 256
[  270.181882][ T8552] loop7: detected capacity change from 0 to 1024
[  270.219005][ T8552] EXT4-fs: Ignoring removed orlov option
[  270.299581][ T8529] loop1: detected capacity change from 0 to 32768
[  270.312604][ T8552] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.342167][ T8529] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.778 (8529)
[  270.388299][ T8563] loop2: detected capacity change from 0 to 64
[  270.425664][ T8529] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  270.458233][ T8529] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  270.487017][ T8001] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.514614][ T8563] hfs: request for non-existent node 65538 in B*Tree
[  270.538484][ T8563] hfs: request for non-existent node 65538 in B*Tree
[  270.574949][ T8563] hfs: fail to find leaf node: node ID 65538
[  270.662558][ T8529] BTRFS info (device loop1): enabling ssd optimizations
[  270.673561][ T8529] BTRFS info (device loop1): turning on async discard
[  270.748879][ T8529] BTRFS info (device loop1): enabling free space tree
[  270.813973][ T5931] usb 7-1: USB disconnect, device number 2
[  270.993966][ T5825] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  271.021930][ T8592] loop6: detected capacity change from 0 to 512
[  271.155898][ T8592] EXT4-fs: Ignoring removed i_version option
[  271.592052][ T8592] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.898095][ T8600] loop0: detected capacity change from 0 to 512
[  272.072597][ T8600] EXT4-fs: Ignoring removed nobh option
[  273.133588][ T8600] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.795: iget: bad i_size value: 38620345925642
[  273.914821][ T8600] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.795: couldn't read orphan inode 15 (err -117)
[  273.989958][ T8600] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.985604][ T5823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.443487][ T5969] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  276.673530][ T5969] usb 5-1: Using ep0 maxpacket: 32
[  276.712510][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  276.752729][ T8649] loop0: detected capacity change from 0 to 64
[  276.761405][ T5969] usb 5-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00
[  276.784870][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  276.784890][   T30] audit: type=1326 audit(1760838046.352:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.788757][ T8636] loop1: detected capacity change from 0 to 2048
[  276.803451][   T30] audit: type=1326 audit(1760838046.352:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.845448][ T5969] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.856464][ T5969] usb 5-1: config 0 descriptor??
[  276.867518][   T30] audit: type=1326 audit(1760838046.352:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.892134][   T30] audit: type=1326 audit(1760838046.352:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.914647][   T30] audit: type=1326 audit(1760838046.352:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.937149][   T30] audit: type=1326 audit(1760838046.352:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.960224][   T30] audit: type=1326 audit(1760838046.352:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.965920][ T8649] hfs: request for non-existent node 65538 in B*Tree
[  276.982630][   T30] audit: type=1326 audit(1760838046.352:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  276.982688][   T30] audit: type=1326 audit(1760838046.352:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  277.073881][ T8617] loop2: detected capacity change from 0 to 32768
[  277.149852][ T8636] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  277.190883][ T8649] hfs: request for non-existent node 65538 in B*Tree
[  277.195343][ T8617] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  277.248635][ T8649] hfs: fail to find leaf node: node ID 65538
[  277.265020][   T30] audit: type=1326 audit(1760838046.352:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.7.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  277.317258][ T5969] elo 0003:04E7:0009.0001: hidraw0: USB HID v0.00 Device [HID 04e7:0009] on usb-dummy_hcd.4-1/input0
[  277.434361][ T5821] ocfs2: Unmounting device (7,2) on (node local)
[  277.871383][ T6366] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.730646][ T8660] vivid-001: kernel_thread() failed
[  278.975501][ T5970] usb 5-1: USB disconnect, device number 3
[  279.946853][ T8677] netlink: 8 bytes leftover after parsing attributes in process `syz.2.806'.
[  280.009832][ T8677] netlink: 8 bytes leftover after parsing attributes in process `syz.2.806'.
[  282.753430][ T8695] loop2: detected capacity change from 0 to 512
[  283.328021][ T8695] EXT4-fs (loop2): too many log groups per flexible block group
[  283.337990][ T8695] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  283.344927][ T8695] EXT4-fs (loop2): mount failed
[  283.568982][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  283.569005][   T30] audit: type=1326 audit(1760838053.132:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  283.737351][   T30] audit: type=1326 audit(1760838053.132:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  283.759962][   T30] audit: type=1326 audit(1760838053.132:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  283.803049][   T30] audit: type=1326 audit(1760838053.132:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  283.911685][ T8706] loop1: detected capacity change from 0 to 1024
[  283.931239][   T30] audit: type=1326 audit(1760838053.132:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  283.959148][ T8706] EXT4-fs: Ignoring removed orlov option
[  284.179895][   T30] audit: type=1326 audit(1760838053.132:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  284.203161][   T30] audit: type=1326 audit(1760838053.142:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  284.226174][   T30] audit: type=1326 audit(1760838053.142:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  284.249071][   T30] audit: type=1326 audit(1760838053.142:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  284.274931][   T30] audit: type=1326 audit(1760838053.172:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8692 comm="syz.7.814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  285.010157][ T8715] loop0: detected capacity change from 0 to 512
[  285.044464][ T8715] ext4: Unknown parameter 'fsuuid'
[  285.090830][ T8706] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.342468][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.261455][ T8752] binder_alloc: 8749: pid 8749 spamming oneway? 1 buffers allocated for a total size of 4096
[  287.314213][ T8752] binder_alloc: 8749: pid 8749 spamming oneway? 2 buffers allocated for a total size of 5120
[  287.531549][ T8759] loop1: detected capacity change from 0 to 128
[  288.351962][ T8774] lo speed is unknown, defaulting to 1000
[  289.257557][ T8784] program syz.2.837 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.291181][ T8745] loop7: detected capacity change from 0 to 32768
[  289.492280][ T8745] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  289.980855][ T8745] XFS (loop7): Ending clean mount
[  290.017810][ T8745] XFS (loop7): Quotacheck needed: Please wait.
[  290.290278][ T8745] XFS (loop7): Quotacheck: Done.
[  290.297702][ T8804] loop1: detected capacity change from 0 to 8
[  290.364231][ T8001] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  290.524054][   T30] kauditd_printk_skb: 34 callbacks suppressed
[  290.524077][   T30] audit: type=1326 audit(1760838060.082:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.609068][   T30] audit: type=1326 audit(1760838060.132:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.651607][   T30] audit: type=1326 audit(1760838060.132:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.693555][   T30] audit: type=1326 audit(1760838060.132:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.741707][   T30] audit: type=1326 audit(1760838060.132:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.790773][   T30] audit: type=1326 audit(1760838060.132:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.951821][   T30] audit: type=1326 audit(1760838060.132:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.974450][   T30] audit: type=1326 audit(1760838060.132:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  290.997367][   T30] audit: type=1326 audit(1760838060.132:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  291.020974][   T30] audit: type=1326 audit(1760838060.132:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8805 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  293.293313][ T8839] lo speed is unknown, defaulting to 1000
[  294.581055][ T8847] loop4: detected capacity change from 0 to 2048
[  294.796889][ T8853] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  295.210812][ T8866] loop4: detected capacity change from 0 to 1024
[  295.457657][ T8866] hfsplus: bad catalog entry type
[  295.703624][   T30] kauditd_printk_skb: 297 callbacks suppressed
[  295.703672][   T30] audit: type=1326 audit(1760838065.262:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.249690][   T30] audit: type=1326 audit(1760838065.302:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.272064][   T30] audit: type=1326 audit(1760838065.302:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.294540][   T30] audit: type=1326 audit(1760838065.322:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.316894][   T30] audit: type=1326 audit(1760838065.322:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.339233][   T30] audit: type=1326 audit(1760838065.342:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.361810][   T30] audit: type=1326 audit(1760838065.362:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.384122][   T30] audit: type=1326 audit(1760838065.372:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.423486][   T30] audit: type=1326 audit(1760838065.402:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31e79c1885 code=0x7ffc0000
[  296.486127][ T6053] hfsplus: b-tree write err: -5, ino 4
[  296.526416][   T30] audit: type=1326 audit(1760838065.722:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.7.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f31e798efc9 code=0x7ffc0000
[  297.871901][ T8888] loop7: detected capacity change from 0 to 4096
[  297.898207][ T8888] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  297.918129][ T8888] ntfs3: Volume is dirty and "force" flag is not set!
[  298.031596][ T8892] loop4: detected capacity change from 0 to 1024
[  298.212429][ T8896] loop7: detected capacity change from 0 to 2048
[  299.032185][ T8900] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  301.130052][ T8915] loop0: detected capacity change from 0 to 1024
[  301.200371][ T8919] loop2: detected capacity change from 0 to 136
[  301.214316][ T8919] iso9660: Unknown parameter 'cleck'
[  304.212203][ T8944] loop7: detected capacity change from 0 to 1024
[  305.145032][ T8954] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  305.158582][ T8954] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  310.227053][ T8975] netlink: 8 bytes leftover after parsing attributes in process `syz.0.897'.
[  310.261526][ T8975] netlink: 8 bytes leftover after parsing attributes in process `syz.0.897'.
[  310.612148][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  310.612169][   T30] audit: type=1326 audit(1760838080.172:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  310.713200][   T30] audit: type=1326 audit(1760838080.172:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  310.797867][   T30] audit: type=1326 audit(1760838080.172:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  310.893530][   T30] audit: type=1326 audit(1760838080.172:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.084432][   T30] audit: type=1326 audit(1760838080.172:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.159688][   T30] audit: type=1326 audit(1760838080.172:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.243104][   T30] audit: type=1326 audit(1760838080.172:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.303875][   T30] audit: type=1326 audit(1760838080.172:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.376487][   T30] audit: type=1326 audit(1760838080.212:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.435952][   T30] audit: type=1326 audit(1760838080.212:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8978 comm="syz.0.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  311.521396][ T8977] loop2: detected capacity change from 0 to 32768
[  311.591290][ T8977] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  311.755622][ T5821] ocfs2: Unmounting device (7,2) on (node local)
[  311.821787][ T8995] sch_fq: defrate 4294967295 ignored.
[  313.230160][ T9009] loop7: detected capacity change from 0 to 16384
[  313.265061][ T9009] loop7: detected capacity change from 16384 to 0
[  313.439268][ T9013] loop4: detected capacity change from 0 to 4096
[  313.488587][ T9013] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  313.605425][ T9020] ntfs3: Volume is dirty and "force" flag is not set!
[  313.771957][ T9023] loop7: detected capacity change from 0 to 1024
[  315.242602][ T9037] netlink: 32 bytes leftover after parsing attributes in process `syz.7.919'.
[  315.587014][ T9037] loop7: detected capacity change from 0 to 40427
[  315.623636][   T30] kauditd_printk_skb: 49 callbacks suppressed
[  315.623659][   T30] audit: type=1326 audit(1760838085.182:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  315.674893][ T9037] F2FS-fs (loop7): invalid crc value
[  315.789846][ T9037] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  315.801011][ T9037] F2FS-fs (loop7): Start checkpoint disabled!
[  315.830184][ T9037] F2FS-fs (loop7): f2fs_disable_checkpoint() finish, err:0
[  315.851628][ T9037] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  315.881843][   T30] audit: type=1326 audit(1760838085.182:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  316.037692][ T8272] kworker/u8:12: attempt to access beyond end of device
[  316.037692][ T8272] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  316.082508][   T30] audit: type=1326 audit(1760838085.212:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  316.173627][ T8272] CPU: 1 UID: 0 PID: 8272 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT(full) 
[  316.173660][ T8272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  316.173676][ T8272] Workqueue: writeback wb_workfn (flush-7:7)
[  316.173719][ T8272] Call Trace:
[  316.173728][ T8272]  <TASK>
[  316.173738][ T8272]  dump_stack_lvl+0x189/0x250
[  316.173769][ T8272]  ? __pfx_dump_stack_lvl+0x10/0x10
[  316.173794][ T8272]  ? __pfx_queue_work_on+0x10/0x10
[  316.173826][ T8272]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  316.173863][ T8272]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  316.173911][ T8272]  f2fs_handle_critical_error+0x37c/0x540
[  316.173945][ T8272]  f2fs_write_end_io+0x886/0xb60
[  316.174001][ T8272]  __submit_merged_bio+0x27a/0x6a0
[  316.174033][ T8272]  __submit_merged_write_cond+0x255/0x530
[  316.174066][ T8272]  f2fs_write_data_pages+0x261d/0x3000
[  316.174131][ T8272]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.174175][ T8272]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  316.174245][ T8272]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  316.174271][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.174297][ T8272]  ? look_up_lock_class+0x74/0x170
[  316.174330][ T8272]  ? trace_f2fs_writepages+0x7f/0x200
[  316.174357][ T8272]  ? f2fs_write_node_pages+0x478/0x6e0
[  316.174387][ T8272]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  316.174416][ T8272]  ? __lock_acquire+0xab9/0xd20
[  316.174453][ T8272]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.174484][ T8272]  do_writepages+0x32e/0x550
[  316.174511][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.174536][ T8272]  ? reacquire_held_locks+0x127/0x1d0
[  316.174569][ T8272]  ? writeback_sb_inodes+0x384/0x1010
[  316.174607][ T8272]  __writeback_single_inode+0x145/0xff0
[  316.174631][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.174656][ T8272]  ? do_raw_spin_unlock+0x122/0x240
[  316.174685][ T8272]  writeback_sb_inodes+0x6c7/0x1010
[  316.174738][ T8272]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  316.174807][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.174831][ T8272]  ? rcu_is_watching+0x15/0xb0
[  316.174865][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.174904][ T8272]  wb_writeback+0x43b/0xaf0
[  316.174936][ T8272]  ? queue_io+0x361/0x590
[  316.174967][ T8272]  ? __pfx_wb_writeback+0x10/0x10
[  316.175006][ T8272]  ? _raw_spin_unlock_irq+0x23/0x50
[  316.175047][ T8272]  wb_workfn+0x409/0xef0
[  316.175097][ T8272]  ? __pfx_wb_workfn+0x10/0x10
[  316.175135][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.175159][ T8272]  ? __lock_acquire+0xab9/0xd20
[  316.175201][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.175230][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.175259][ T8272]  ? _raw_spin_unlock_irq+0x23/0x50
[  316.175292][ T8272]  ? process_scheduled_works+0x9ef/0x17b0
[  316.175323][ T8272]  ? process_scheduled_works+0x9ef/0x17b0
[  316.175357][ T8272]  process_scheduled_works+0xae1/0x17b0
[  316.175421][ T8272]  ? __pfx_process_scheduled_works+0x10/0x10
[  316.175461][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.175496][ T8272]  worker_thread+0x8a0/0xda0
[  316.175561][ T8272]  kthread+0x711/0x8a0
[  316.175589][ T8272]  ? __pfx_worker_thread+0x10/0x10
[  316.175620][ T8272]  ? __pfx_kthread+0x10/0x10
[  316.175640][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.175670][ T8272]  ? _raw_spin_unlock_irq+0x23/0x50
[  316.175703][ T8272]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.175728][ T8272]  ? lockdep_hardirqs_on+0x9c/0x150
[  316.175748][ T8272]  ? __pfx_kthread+0x10/0x10
[  316.175773][ T8272]  ret_from_fork+0x4bc/0x870
[  316.175806][ T8272]  ? __pfx_ret_from_fork+0x10/0x10
[  316.175846][ T8272]  ? __switch_to_asm+0x39/0x70
[  316.175872][ T8272]  ? __switch_to_asm+0x33/0x70
[  316.175897][ T8272]  ? __pfx_kthread+0x10/0x10
[  316.175922][ T8272]  ret_from_fork_asm+0x1a/0x30
[  316.175967][ T8272]  </TASK>
[  316.180034][ T8272] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  316.560050][   T30] audit: type=1326 audit(1760838085.212:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  316.586164][ T5833] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  316.610225][   T30] audit: type=1326 audit(1760838085.212:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  316.714976][   T30] audit: type=1326 audit(1760838085.222:1988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  316.739082][   T30] audit: type=1326 audit(1760838085.222:1989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  317.093031][   T30] audit: type=1326 audit(1760838085.232:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  317.164644][ T5833] usb 1-1: Using ep0 maxpacket: 32
[  317.172360][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  317.193748][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  317.206431][ T5833] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  317.223513][ T5833] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.283537][ T5833] usb 1-1: config 0 descriptor??
[  317.333541][   T30] audit: type=1326 audit(1760838085.232:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  317.386963][ T5833] hub 1-1:0.0: USB hub found
[  317.644992][ T5833] hub 1-1:0.0: 1 port detected
[  317.764569][   T30] audit: type=1326 audit(1760838087.312:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  318.099028][ T9060] netlink: 24 bytes leftover after parsing attributes in process `syz.6.928'.
[  318.122722][ T9056] loop1: detected capacity change from 0 to 8192
[  318.175940][ T9056] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  318.460475][ T9062] loop2: detected capacity change from 0 to 1024
[  319.311202][ T5833] usb 1-1: USB disconnect, device number 5
[  321.624097][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  321.630452][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  322.353493][ T9080] dvmrp1: entered allmulticast mode
[  323.144838][ T9095] loop6: detected capacity change from 0 to 1024
[  323.154716][ T9095] EXT4-fs: Ignoring removed bh option
[  325.358510][ T9095] EXT4-fs (loop6): can't mount with data=, fs mounted w/o journal
[  326.044872][ T9106] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  326.094736][ T9103] loop4: detected capacity change from 0 to 512
[  326.105617][ T9103] EXT4-fs: Ignoring removed i_version option
[  326.115885][ T9108] loop0: detected capacity change from 0 to 64
[  326.140775][ T9103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.162826][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  326.162847][   T30] audit: type=1800 audit(1760838095.722:1999): pid=9103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.940" name="file1" dev="loop4" ino=15 res=0 errno=0
[  327.108440][ T9117] loop6: detected capacity change from 0 to 1024
[  328.092178][ T9128] loop0: detected capacity change from 0 to 512
[  328.190516][ T9127] loop7: detected capacity change from 0 to 1024
[  328.202343][ T9129] bridge1: entered promiscuous mode
[  328.210706][ T9128] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  328.256664][ T9128] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.947: bad orphan inode 131083
[  328.378319][ T9129] bridge1: entered allmulticast mode
[  328.414896][ T9128] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.607317][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.250329][ T9128] EXT4-fs warning (device loop0): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed
[  329.869196][ T5823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.010993][ T9139] loop4: detected capacity change from 0 to 4096
[  330.541503][ T9139] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  330.622088][ T9139] ntfs3: Volume is dirty and "force" flag is not set!
[  331.490762][ T9158] loop2: detected capacity change from 0 to 128
[  331.610103][ T9161] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  331.611569][   T30] audit: type=1326 audit(1760838101.172:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa60dd85e67 code=0x7ffc0000
[  331.681866][   T30] audit: type=1326 audit(1760838101.172:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa60dd2b099 code=0x7ffc0000
[  331.737185][ T9167] IPVS: wlc: FWM 3 0x00000003 - no destination available
[  331.746132][   T30] audit: type=1326 audit(1760838101.172:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa60dd85e67 code=0x7ffc0000
[  331.861728][   T30] audit: type=1326 audit(1760838101.172:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa60dd2b099 code=0x7ffc0000
[  331.905924][ T9169] loop4: detected capacity change from 0 to 512
[  331.937707][ T9169] EXT4-fs: Ignoring removed i_version option
[  331.938864][   T30] audit: type=1326 audit(1760838101.172:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  331.993200][ T9169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.005273][   T30] audit: type=1326 audit(1760838101.172:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  332.005336][   T30] audit: type=1326 audit(1760838101.192:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  332.005388][   T30] audit: type=1326 audit(1760838101.192:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  332.005439][   T30] audit: type=1326 audit(1760838101.192:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  332.005489][   T30] audit: type=1326 audit(1760838101.222:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9157 comm="syz.2.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  333.496266][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.623710][ T9188] dvmrp1: entered allmulticast mode
[  335.298726][ T9197] loop4: detected capacity change from 0 to 4096
[  335.412005][ T9207] loop0: detected capacity change from 0 to 2048
[  335.444756][ T9197] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  335.499635][ T9208] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  335.816315][ T9223] loop1: detected capacity change from 0 to 64
[  336.936944][ T9228] loop0: detected capacity change from 0 to 128
[  337.056679][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  337.056700][   T30] audit: type=1326 audit(1760838106.622:2026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9104d85e67 code=0x7ffc0000
[  337.064635][ T9233] loop1: detected capacity change from 0 to 512
[  337.084995][    C0] vkms_vblank_simulate: vblank timer overrun
[  337.112112][ T9233] EXT4-fs: Ignoring removed i_version option
[  337.119645][   T30] audit: type=1326 audit(1760838106.622:2027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9104d2b099 code=0x7ffc0000
[  337.142477][   T30] audit: type=1326 audit(1760838106.622:2028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9104d85e67 code=0x7ffc0000
[  337.170649][   T30] audit: type=1326 audit(1760838106.622:2029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9104d2b099 code=0x7ffc0000
[  337.201840][   T30] audit: type=1326 audit(1760838106.622:2030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  337.226377][ T9233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.253723][   T30] audit: type=1326 audit(1760838106.622:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  337.436747][   T30] audit: type=1326 audit(1760838106.622:2032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  337.459828][   T30] audit: type=1326 audit(1760838106.622:2033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  337.482208][    C0] vkms_vblank_simulate: vblank timer overrun
[  337.522337][   T30] audit: type=1326 audit(1760838106.652:2034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  337.546264][   T30] audit: type=1326 audit(1760838106.652:2035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9229 comm="syz.4.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9104d8efc9 code=0x7ffc0000
[  337.568569][    C0] vkms_vblank_simulate: vblank timer overrun
[  338.196687][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.369107][ T9244] netlink: 8 bytes leftover after parsing attributes in process `syz.2.986'.
[  338.388641][ T9244] netlink: 8 bytes leftover after parsing attributes in process `syz.2.986'.
[  341.137807][ T9266] input: syz0 as /devices/virtual/input/input6
[  341.356755][ T9264] loop7: detected capacity change from 0 to 4096
[  341.533315][ T9264] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  341.632861][ T9276] loop1: detected capacity change from 0 to 512
[  341.649222][ T9276] EXT4-fs: Ignoring removed i_version option
[  341.697369][ T9276] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  341.786500][ T9285] loop7: detected capacity change from 0 to 256
[  341.899234][ T9285] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 256)
[  341.972681][ T9260] loop0: detected capacity change from 0 to 32768
[  342.033911][ T9260] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  342.858736][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.271138][ T9299] loop4: detected capacity change from 0 to 2048
[  343.279564][ T9301] loop2: detected capacity change from 0 to 1764
[  343.286931][ T9301] iso9660: Unknown parameter 'È'
[  343.304487][ T9260] XFS (loop0): Ending clean mount
[  343.326467][ T9260] XFS (loop0): Quotacheck needed: Please wait.
[  343.392992][ T9303] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  343.439861][ T9260] XFS (loop0): Quotacheck: Done.
[  343.558736][ T5823] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  344.274714][ T9315] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1006'.
[  344.518173][ T1204] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  344.526387][ T5916] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  344.578377][ T9318] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1007'.
[  344.885390][ T9320] loop4: detected capacity change from 0 to 2048
[  344.976641][ T9320] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  345.004988][ T5916] usb 2-1: Using ep0 maxpacket: 32
[  345.010365][ T1204] usb 7-1: Using ep0 maxpacket: 32
[  345.630070][ T1204] usb 7-1: config 0 has an invalid interface number: 35 but max is 0
[  345.638454][ T5916] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  345.647421][ T5916] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  345.656254][ T1204] usb 7-1: config 0 has no interface number 0
[  345.662365][ T1204] usb 7-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  346.512779][ T5916] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  346.553774][ T5916] usb 2-1: config 1 has no interface number 0
[  346.560692][ T1204] usb 7-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  346.574705][ T5916] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  346.596333][ T1204] usb 7-1: string descriptor 0 read error: -71
[  346.604129][ T5916] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  346.623857][ T1204] usb 7-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[  346.641869][ T1204] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  346.653907][ T5916] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  346.694795][ T5916] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.703244][ T1204] usb 7-1: config 0 descriptor??
[  346.723672][ T1204] usb 7-1: can't set config #0, error -71
[  346.747505][ T5916] usb 2-1: can't set config #1, error -71
[  346.753459][ T5970] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  346.755974][ T1204] usb 7-1: USB disconnect, device number 3
[  346.778985][ T5916] usb 2-1: USB disconnect, device number 4
[  346.945564][ T5970] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  346.977896][ T5970] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  347.004097][ T5970] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.050282][ T5970] usb 1-1: config 0 descriptor??
[  347.077142][ T5970] pwc: Askey VC010 type 2 USB webcam detected.
[  347.247451][ T9334] loop1: detected capacity change from 0 to 4096
[  347.308717][ T9334] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  347.373491][ T9338] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1014'.
[  347.480347][ T5970] pwc: recv_control_msg error -32 req 02 val 2b00
[  347.510649][ T5970] pwc: recv_control_msg error -32 req 02 val 2700
[  347.535143][ T5970] pwc: recv_control_msg error -32 req 02 val 2c00
[  347.646034][ T5970] pwc: recv_control_msg error -32 req 04 val 1000
[  347.675191][ T5970] pwc: recv_control_msg error -32 req 04 val 1300
[  348.364298][ T5970] pwc: recv_control_msg error -32 req 04 val 1400
[  348.517583][ T9345] loop2: detected capacity change from 0 to 32768
[  348.559754][ T5970] pwc: recv_control_msg error -32 req 02 val 2000
[  348.619168][ T9345] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  348.818957][ T5970] pwc: recv_control_msg error -71 req 04 val 1500
[  348.885043][ T9326] loop4: detected capacity change from 0 to 40427
[  348.898194][ T5821] (syz-executor,5821,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76
[  348.919683][ T5821] ocfs2: Unmounting device (7,2) on (node local)
[  348.930186][ T5970] pwc: recv_control_msg error -71 req 02 val 2500
[  348.933428][ T9326] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  348.943512][ T5970] pwc: recv_control_msg error -71 req 02 val 2400
[  348.962344][ T5970] pwc: recv_control_msg error -71 req 02 val 2600
[  348.988774][ T9326] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  348.997566][ T5970] pwc: recv_control_msg error -71 req 02 val 2900
[  349.018744][ T5970] pwc: recv_control_msg error -71 req 02 val 2800
[  349.035995][ T9326] F2FS-fs (loop4): invalid crc_offset: 33558524
[  349.046309][ T5970] pwc: recv_control_msg error -71 req 04 val 1100
[  349.056249][ T5970] pwc: recv_control_msg error -71 req 04 val 1200
[  349.076168][ T5970] pwc: Registered as video103.
[  349.096706][ T5970] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input8
[  349.152657][ T5970] usb 1-1: USB disconnect, device number 6
[  349.183719][ T9358] loop6: detected capacity change from 0 to 2048
[  349.280498][ T5828] Bluetooth: hci1: command 0x0405 tx timeout
[  349.333667][ T9359] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  349.424140][ T9326] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  349.462487][ T9326] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  349.476450][ T9364] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1017'.
[  349.493107][ T9362] loop1: detected capacity change from 0 to 128
[  349.500134][ T9326] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  349.508389][ T9364] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1017'.
[  349.642588][ T9368] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1022'.
[  349.697263][   T30] kauditd_printk_skb: 146 callbacks suppressed
[  349.697284][   T30] audit: type=1326 audit(1760838119.262:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f34ae385e67 code=0x7ffc0000
[  349.752478][   T30] audit: type=1326 audit(1760838119.262:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34ae32b099 code=0x7ffc0000
[  349.784138][   T30] audit: type=1326 audit(1760838119.262:2184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f34ae385e67 code=0x7ffc0000
[  349.806700][   T30] audit: type=1326 audit(1760838119.262:2185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34ae32b099 code=0x7ffc0000
[  349.829339][   T30] audit: type=1326 audit(1760838119.262:2186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  349.852502][   T30] audit: type=1326 audit(1760838119.262:2187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  349.875786][   T30] audit: type=1326 audit(1760838119.262:2188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  349.902855][   T30] audit: type=1326 audit(1760838119.262:2189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  349.934780][   T30] audit: type=1326 audit(1760838119.262:2190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  349.957545][   T30] audit: type=1326 audit(1760838119.262:2191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9360 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  349.984352][ T5931] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  350.133606][ T5931] usb 8-1: Using ep0 maxpacket: 32
[  350.921182][ T5931] usb 8-1: config index 0 descriptor too short (expected 35577, got 27)
[  350.932734][ T5931] usb 8-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  350.944053][ T5931] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 92
[  350.953040][ T5931] usb 8-1: config 1 has no interface number 0
[  350.959366][ T5931] usb 8-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  350.969201][ T5931] usb 8-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  350.982173][ T5931] usb 8-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  350.994233][ T5931] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.027111][ T5931] snd_usb_pod 8-1:1.1: Line 6 Pocket POD found
[  351.130142][ T9388] loop1: detected capacity change from 0 to 128
[  351.150278][ T9388] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  351.163427][ T9388] ext4 filesystem being mounted at /184/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  351.215267][ T9388] tap0: tun_chr_ioctl cmd 35202
[  351.249682][ T5931] snd_usb_pod 8-1:1.1: invalid control EP
[  351.263458][ T5931] snd_usb_pod 8-1:1.1: cannot start listening: -22
[  351.275071][ T5931] snd_usb_pod 8-1:1.1: Line 6 Pocket POD now disconnected
[  351.303755][ T5931] snd_usb_pod 8-1:1.1: probe with driver snd_usb_pod failed with error -22
[  351.576241][ T9376] loop6: detected capacity change from 0 to 32768
[  351.677152][ T9376] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  351.690079][ T9376] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  352.432825][ T9376] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  352.457363][ T5931] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  352.464676][ T5931] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  352.472074][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  352.545407][ T9409] loop2: detected capacity change from 0 to 2048
[  352.578627][ T9410] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  352.623526][ T1204] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  352.633159][ T9412] loop4: detected capacity change from 0 to 256
[  352.651821][ T5931] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 187ms
[  352.663984][ T5931] gfs2: fsid=syz:syz.0: jid=0: Done
[  352.671046][ T9376] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  352.802524][ T9415] sch_fq: defrate 4294967295 ignored.
[  352.806245][ T9412] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 256)
[  352.815468][ T9376] gfs2: fsid=syz:syz.0: can't create logd thread: -4
[  352.864156][ T1204] usb 1-1: Using ep0 maxpacket: 8
[  352.948519][ T1204] usb 1-1: unable to get BOS descriptor or descriptor too short
[  353.212723][ T1204] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  353.273865][ T1204] usb 1-1: config 0 has no interfaces?
[  353.468091][ T5931] usb 8-1: USB disconnect, device number 2
[  353.841681][ T1204] usb 1-1: New USB device found, idVendor=6d79, idProduct=4f80, bcdDevice=d7.15
[  353.878420][ T1204] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.896528][ T1204] usb 1-1: Product: syz
[  353.938234][ T1204] usb 1-1: Manufacturer: syz
[  353.942880][ T1204] usb 1-1: SerialNumber: syz
[  353.949551][ T9421] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1037'.
[  353.958643][ T9421] netlink: 52 bytes leftover after parsing attributes in process `syz.7.1037'.
[  353.986239][ T1204] usb 1-1: config 0 descriptor??
[  354.188946][ T9424] loop2: detected capacity change from 0 to 4096
[  354.326049][ T9433] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  354.469255][ T9435] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  354.478127][ T9435] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  354.487709][ T9435] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1032'.
[  354.608104][ T9443] loop4: detected capacity change from 0 to 1024
[  355.659720][ T5931] usb 1-1: USB disconnect, device number 7
[  355.702621][ T9429] loop7: detected capacity change from 0 to 32768
[  355.827598][ T9429] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  355.908972][ T9454] loop1: detected capacity change from 0 to 4096
[  355.931992][ T9454] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  356.259609][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  356.259664][   T30] audit: type=1326 audit(1760838125.782:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9426 comm="syz.7.1041" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f31e798efc9 code=0x0
[  356.468851][ T9466] xt_NFQUEUE: number of queues (63489) out of range (got 96768)
[  356.966181][ T9454] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.029898][ T9465] loop6: detected capacity change from 0 to 2048
[  358.136215][ T9472] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  358.226378][ T9473] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  358.492689][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.768115][ T8001] ocfs2: Unmounting device (7,7) on (node local)
[  358.965970][ T9490] netlink: 248 bytes leftover after parsing attributes in process `syz.1.1053'.
[  358.984448][ T9491] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  360.679046][ T5970] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  360.728841][ T9506] loop7: detected capacity change from 0 to 4096
[  360.794972][ T9514] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  360.813563][ T5970] usb 3-1: device descriptor read/64, error -71
[  360.822182][ T9513] loop0: detected capacity change from 0 to 2048
[  360.884844][ T9518] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  361.139722][ T5970] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  361.513512][ T5970] usb 3-1: device descriptor read/64, error -71
[  361.590689][ T9529] netlink: 'syz.1.1069': attribute type 9 has an invalid length.
[  361.629901][ T5970] usb usb3-port1: attempt power cycle
[  361.652397][ T9531] serio: Serial port ptm0
[  361.930346][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  361.940282][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  361.948381][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  361.960954][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  361.969163][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  362.043727][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  362.245776][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  362.304226][ T9544] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1071'.
[  362.378157][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  362.429455][ T9545] loop1: detected capacity change from 0 to 128
[  362.439888][ T9545] vfat: Unknown parameter 'uni_xlƒÅ<½.Éÿ3E±ate'
[  362.464172][ T9537] netlink: 'syz.0.1072': attribute type 3 has an invalid length.
[  362.491525][ T5970] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  363.497812][ T5970] usb 3-1: device descriptor read/8, error -71
[  363.670191][ T9555] netlink: 228 bytes leftover after parsing attributes in process `syz.2.1076'.
[  363.717651][ T9560] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  363.885128][ T9563] loop2: detected capacity change from 0 to 1024
[  365.480367][ T5969] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  365.639086][ T9574] overlayfs: failed to get inode (-116)
[  365.645887][ T9574] overlayfs: failed to get inode (-116)
[  366.016107][ T5969] usb 8-1: New USB device found, idVendor=046d, idProduct=c286, bcdDevice= 0.00
[  366.446821][ T5969] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.459978][ T5969] usb 8-1: config 0 descriptor??
[  366.592795][ T9583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1082'.
[  366.602485][ T5969] usbhid 8-1:0.0: can't add hid device: -71
[  366.608845][ T5969] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  366.620436][ T5969] usb 8-1: USB disconnect, device number 3
[  366.626997][ T9583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1082'.
[  366.859930][ T9585] comedi comedi3: 8255: I/O port conflict (0x7,4)
[  366.869175][ T9585] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  366.875699][ T9585] comedi comedi3: 8255: I/O port conflict (0x16,4)
[  366.882219][ T9585] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  366.888715][ T9585] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  366.895352][ T9585] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  366.901781][ T9585] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  366.908260][ T9585] comedi comedi3: 8255: I/O port conflict (0xa,4)
[  366.914735][ T9585] comedi comedi3: 8255: I/O port conflict (0xfd,4)
[  366.921273][ T9585] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  366.927755][ T9585] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  366.934235][ T9585] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  366.940675][ T9585] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  366.947161][ T9585] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  366.953625][ T9585] comedi comedi3: 8255: I/O port conflict (0x80009,4)
[  366.960401][ T9585] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4)
[  366.968185][ T9585] comedi comedi3: 8255: I/O port conflict (0x7f,4)
[  366.974744][ T9585] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  366.981185][ T9585] comedi comedi3: 8255: I/O port conflict (0x40000004,4)
[  366.988321][ T9585] comedi comedi3: 8255: I/O port conflict (0x89,4)
[  366.994987][ T9585] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  367.001437][ T9585] comedi comedi3: 8255: I/O port conflict (0x20001e58,4)
[  367.008549][ T9585] comedi comedi3: 8255: I/O port conflict (0xb,4)
[  367.015215][ T9585] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  367.021658][ T9585] comedi comedi3: 8255: I/O port conflict (0x995d000,4)
[  367.303541][ T5969] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  367.368542][ T9599] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1090'.
[  367.390214][ T9599] loop6: detected capacity change from 0 to 128
[  367.399737][ T9599] vfat: Unknown parameter 'uni_xlƒÅ<½.Éÿ3E±ate'
[  369.037682][ T5969] usb 3-1: device descriptor read/64, error -71
[  369.539396][ T5969] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  369.813441][ T5969] usb 3-1: device descriptor read/64, error -71
[  370.442616][ T5969] usb usb3-port1: attempt power cycle
[  370.777727][ T9617] loop7: detected capacity change from 0 to 1024
[  370.864630][ T9619] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1096'.
[  370.874277][ T9619] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1096'.
[  373.184389][ T9634] loop1: detected capacity change from 0 to 16
[  373.415240][ T9634] erofs (device loop1): mounted with root inode @ nid 36.
[  374.549710][ T9649] loop4: detected capacity change from 0 to 512
[  374.579670][ T9649] EXT4-fs: Ignoring removed i_version option
[  374.644582][ T9649] EXT4-fs: Ignoring removed bh option
[  374.717511][ T9649] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.730715][ T9649] ext4 filesystem being mounted at /190/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  374.873780][ T5931] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  375.045018][ T5931] usb 2-1: Using ep0 maxpacket: 32
[  375.105758][ T5931] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  375.283970][ T5931] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  375.454141][ T5931] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  375.486015][ T5931] usb 2-1: config 1 has no interface number 0
[  375.502512][ T5931] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  375.521161][ T5931] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  375.577911][ T5931] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  375.603548][ T5931] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.643078][   T30] audit: type=1326 audit(1760838145.202:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  375.658152][ T5931] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  375.699302][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.718127][   T30] audit: type=1326 audit(1760838145.232:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  375.751288][   T30] audit: type=1326 audit(1760838145.232:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  375.795682][   T30] audit: type=1326 audit(1760838145.232:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  375.973912][ T5931] snd_usb_pod 2-1:1.1: invalid control EP
[  375.982682][ T5931] snd_usb_pod 2-1:1.1: cannot start listening: -22
[  375.989675][ T5931] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  375.998040][ T5931] snd_usb_pod 2-1:1.1: probe with driver snd_usb_pod failed with error -22
[  376.016888][   T30] audit: type=1326 audit(1760838145.242:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  376.793964][   T30] audit: type=1326 audit(1760838145.242:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  377.066786][ T5931] usb 2-1: USB disconnect, device number 5
[  377.088689][   T30] audit: type=1326 audit(1760838145.242:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  377.254668][   T30] audit: type=1326 audit(1760838145.242:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  377.817520][   T30] audit: type=1326 audit(1760838145.242:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  378.930954][   T30] audit: type=1326 audit(1760838145.242:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9670 comm="syz.0.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  379.916463][ T9712] 9pnet_fd: Insufficient options for proto=fd
[  380.078113][ T9714] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1122'.
[  380.119699][ T9714] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1122'.
[  382.290664][   T30] kauditd_printk_skb: 59 callbacks suppressed
[  382.290686][   T30] audit: type=1326 audit(1760838151.852:2273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.360706][ T9702] loop0: detected capacity change from 0 to 40427
[  382.383164][   T30] audit: type=1326 audit(1760838151.852:2274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.419656][ T9702] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  382.447211][   T30] audit: type=1326 audit(1760838151.852:2275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.463504][ T9702] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  382.488086][ T9712] loop4: detected capacity change from 0 to 32768
[  382.496179][   T30] audit: type=1326 audit(1760838151.852:2276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.580092][ T9712] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1120 (9712)
[  382.580935][ T9702] F2FS-fs (loop0): invalid crc_offset: 33558524
[  382.637197][   T30] audit: type=1326 audit(1760838151.852:2277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.660341][ T9702] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-4)
[  382.682812][   T30] audit: type=1326 audit(1760838151.852:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.708409][   T30] audit: type=1326 audit(1760838151.852:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.710746][ T9712] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  382.773317][ T9712] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  382.914780][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  382.917024][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  382.943751][   T30] audit: type=1326 audit(1760838151.852:2280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  382.993914][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  382.994274][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  383.045614][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  383.054430][   T30] audit: type=1326 audit(1760838151.852:2281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  383.054500][   T30] audit: type=1326 audit(1760838151.862:2282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.1.1130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  383.075319][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  383.093847][ T9726] loop6: detected capacity change from 0 to 40427
[  383.105691][    C0] vkms_vblank_simulate: vblank timer overrun
[  383.125533][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  383.125871][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  383.152098][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  383.184110][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  383.234152][ T9726] F2FS-fs (loop6): invalid crc value
[  383.287603][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  383.287976][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  383.312545][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  383.354024][ T9712] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  383.424889][ T9712] BTRFS error (device loop4): open_ctree failed: -12
[  383.675739][ T9726] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  383.709979][ T9726] F2FS-fs (loop6): Start checkpoint disabled!
[  383.760061][ T9726] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[  383.797962][ T9726] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  384.485530][ T9774] F2FS-fs (loop6): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  384.738926][ T8273] kworker/u8:13: attempt to access beyond end of device
[  384.738926][ T8273] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  384.852746][ T8273] CPU: 1 UID: 0 PID: 8273 Comm: kworker/u8:13 Not tainted syzkaller #0 PREEMPT(full) 
[  384.852786][ T8273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  384.852811][ T8273] Workqueue: writeback wb_workfn (flush-7:6)
[  384.852861][ T8273] Call Trace:
[  384.852871][ T8273]  <TASK>
[  384.852882][ T8273]  dump_stack_lvl+0x189/0x250
[  384.852916][ T8273]  ? __pfx_dump_stack_lvl+0x10/0x10
[  384.852943][ T8273]  ? __pfx_queue_work_on+0x10/0x10
[  384.852980][ T8273]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  384.853020][ T8273]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  384.853074][ T8273]  f2fs_handle_critical_error+0x37c/0x540
[  384.853113][ T8273]  f2fs_write_end_io+0x886/0xb60
[  384.853169][ T8273]  __submit_merged_bio+0x27a/0x6a0
[  384.853205][ T8273]  __submit_merged_write_cond+0x255/0x530
[  384.853243][ T8273]  f2fs_write_data_pages+0x261d/0x3000
[  384.853317][ T8273]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  384.853438][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.853473][ T8273]  ? f2fs_write_meta_pages+0x357/0x450
[  384.853516][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.853544][ T8273]  ? __lock_acquire+0xab9/0xd20
[  384.853583][ T8273]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  384.853617][ T8273]  do_writepages+0x32e/0x550
[  384.853648][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.853676][ T8273]  ? reacquire_held_locks+0x127/0x1d0
[  384.853713][ T8273]  ? writeback_sb_inodes+0x384/0x1010
[  384.853751][ T8273]  __writeback_single_inode+0x145/0xff0
[  384.853779][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.853813][ T8273]  ? do_raw_spin_unlock+0x122/0x240
[  384.853845][ T8273]  writeback_sb_inodes+0x6c7/0x1010
[  384.853906][ T8273]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  384.853984][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.854012][ T8273]  ? rcu_is_watching+0x15/0xb0
[  384.854049][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.854089][ T8273]  wb_writeback+0x43b/0xaf0
[  384.854125][ T8273]  ? queue_io+0x361/0x590
[  384.854156][ T8273]  ? __pfx_wb_writeback+0x10/0x10
[  384.854193][ T8273]  ? _raw_spin_unlock_irq+0x23/0x50
[  384.854240][ T8273]  wb_workfn+0x409/0xef0
[  384.854297][ T8273]  ? __pfx_wb_workfn+0x10/0x10
[  384.854340][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.854367][ T8273]  ? __lock_acquire+0xab9/0xd20
[  384.854414][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.854446][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.854480][ T8273]  ? _raw_spin_unlock_irq+0x23/0x50
[  384.854517][ T8273]  ? process_scheduled_works+0x9ef/0x17b0
[  384.854552][ T8273]  ? process_scheduled_works+0x9ef/0x17b0
[  384.854590][ T8273]  process_scheduled_works+0xae1/0x17b0
[  384.854663][ T8273]  ? __pfx_process_scheduled_works+0x10/0x10
[  384.854709][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.854748][ T8273]  worker_thread+0x8a0/0xda0
[  384.854788][ T8273]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  384.854842][ T8273]  ? __kthread_parkme+0x7b/0x200
[  384.854893][ T8273]  kthread+0x711/0x8a0
[  384.854923][ T8273]  ? __pfx_worker_thread+0x10/0x10
[  384.854958][ T8273]  ? __pfx_kthread+0x10/0x10
[  384.854979][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.855012][ T8273]  ? _raw_spin_unlock_irq+0x23/0x50
[  384.855050][ T8273]  ? srso_alias_return_thunk+0x5/0xfbef5
[  384.855078][ T8273]  ? lockdep_hardirqs_on+0x9c/0x150
[  384.855101][ T8273]  ? __pfx_kthread+0x10/0x10
[  384.855129][ T8273]  ret_from_fork+0x4bc/0x870
[  384.855167][ T8273]  ? __pfx_ret_from_fork+0x10/0x10
[  384.855212][ T8273]  ? __switch_to_asm+0x39/0x70
[  384.855241][ T8273]  ? __switch_to_asm+0x33/0x70
[  384.855269][ T8273]  ? __pfx_kthread+0x10/0x10
[  384.855296][ T8273]  ret_from_fork_asm+0x1a/0x30
[  384.855349][ T8273]  </TASK>
[  385.260885][ T8273] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  385.843604][ T5969] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  387.191533][ T5969] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  388.215512][ T5969] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  388.279693][ T5969] usb 5-1: Product: syz
[  388.306297][ T5969] usb 5-1: Manufacturer: syz
[  388.317495][ T5969] usb 5-1: SerialNumber: syz
[  388.338741][ T5969] usb 5-1: config 0 descriptor??
[  388.366896][   T30] kauditd_printk_skb: 196 callbacks suppressed
[  388.366917][   T30] audit: type=1326 audit(1760838157.922:2479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  388.396385][ T5969] usb 5-1: can't set config #0, error -71
[  388.489537][ T5969] usb 5-1: USB disconnect, device number 4
[  388.526967][   T30] audit: type=1326 audit(1760838157.922:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  388.558591][   T30] audit: type=1326 audit(1760838157.922:2481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  388.612354][ T5916] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  388.873652][   T30] audit: type=1326 audit(1760838157.922:2482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  388.904199][ T5916] usb 3-1: device descriptor read/64, error -71
[  388.911372][   T30] audit: type=1326 audit(1760838157.922:2483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f34ae38efc9 code=0x7ffc0000
[  388.963023][ T9788] xt_hashlimit: max too large, truncated to 1048576
[  389.687812][   T30] audit: type=1326 audit(1760838157.922:2484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f34ae38f003 code=0x7ffc0000
[  389.710555][   T30] audit: type=1326 audit(1760838157.922:2485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f34ae38f003 code=0x7ffc0000
[  389.813599][ T5916] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  391.098442][   T30] audit: type=1326 audit(1760838157.922:2486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f34ae385e67 code=0x7ffc0000
[  391.291934][   T30] audit: type=1326 audit(1760838157.922:2487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34ae32b099 code=0x7ffc0000
[  392.012783][   T30] audit: type=1326 audit(1760838157.962:2488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9781 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f34ae385e67 code=0x7ffc0000
[  392.407658][ T9814] loop6: detected capacity change from 0 to 512
[  392.434457][ T9814] ext4: Unknown parameter 'fsuuid'
[  393.810441][ T9824] input: syz1 as /devices/virtual/input/input10
[  394.662856][   T30] kauditd_printk_skb: 25 callbacks suppressed
[  394.662878][   T30] audit: type=1326 audit(1760838164.222:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  394.733219][   T30] audit: type=1326 audit(1760838164.222:2515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  394.812943][   T30] audit: type=1326 audit(1760838164.222:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  394.878942][   T30] audit: type=1326 audit(1760838164.222:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  394.942138][   T30] audit: type=1326 audit(1760838164.222:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  395.023479][ T5969] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  395.040234][   T30] audit: type=1326 audit(1760838164.222:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  395.120295][   T30] audit: type=1326 audit(1760838164.222:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  395.182122][   T30] audit: type=1326 audit(1760838164.222:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  395.379057][ T5969] usb 5-1: Using ep0 maxpacket: 8
[  395.391527][ T5969] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  395.411207][ T5969] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF9, changing to 0x89
[  395.432059][   T30] audit: type=1326 audit(1760838164.222:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  396.413553][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  396.453733][   T30] audit: type=1326 audit(1760838164.222:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9829 comm="syz.0.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efcad58efc9 code=0x7ffc0000
[  396.722613][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 59391, setting to 1024
[  396.800357][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  396.908848][ T5969] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  396.970471][ T5969] usb 5-1: New USB device found, idVendor=0bc7, idProduct=0008, bcdDevice=4f.c8
[  396.987942][ T5969] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.022229][ T5969] usb 5-1: Product: syz
[  397.042080][ T5969] usb 5-1: Manufacturer: syz
[  397.053448][ T5969] usb 5-1: SerialNumber: syz
[  397.123532][ T5969] usb 5-1: config 0 descriptor??
[  397.469317][ T9832] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  397.566053][ T5969] ati_remote 5-1:0.0: ati_remote_probe: Unexpected endpoint_out
[  397.936319][ T5833] usb 5-1: USB disconnect, device number 5
[  398.585460][ T9869] loop0: detected capacity change from 0 to 256
[  400.478693][   T30] kauditd_printk_skb: 132 callbacks suppressed
[  400.478717][   T30] audit: type=1326 audit(1760838170.042:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34ae32b099 code=0x7ffc0000
[  400.535045][   T30] audit: type=1326 audit(1760838170.072:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f34ae385e67 code=0x7ffc0000
[  400.566721][   T30] audit: type=1326 audit(1760838170.072:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34ae32b099 code=0x7ffc0000
[  400.720937][   T30] audit: type=1326 audit(1760838170.272:2659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f34ae385e67 code=0x7ffc0000
[  400.933065][ T9875] loop7: detected capacity change from 0 to 512
[  400.943453][   T30] audit: type=1326 audit(1760838170.272:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34ae32b099 code=0x7ffc0000
[  400.984826][ T9875] ext4: Unknown parameter 'fsuuid'
[  402.157563][ T9874] loop0: detected capacity change from 0 to 32768
[  402.406695][ T5838] Bluetooth: hci1: unexpected event for opcode 0x0c5b
[  403.131269][ T9900] nvme_fabrics: missing parameter 'transport=%s'
[  403.139739][ T9900] nvme_fabrics: missing parameter 'nqn=%s'
[  403.285957][ T9909] loop4: detected capacity change from 0 to 256
[  403.674407][ T9884] loop6: detected capacity change from 0 to 32768
[  403.744998][ T9902] nvme_fabrics: missing parameter 'transport=%s'
[  403.828527][ T9902] nvme_fabrics: missing parameter 'nqn=%s'
[  404.039238][ T9884] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  404.115310][ T9884] OCFS2: ERROR (device loop6): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  404.203445][ T9884] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  404.213301][ T9884] OCFS2: File system is now read-only.
[  404.277226][ T9884] (syz.6.1169,9884,0):ocfs2_find_leaf:1948 ERROR: status = -30
[  405.217501][ T9884] (syz.6.1169,9884,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  405.243500][ T9884] (syz.6.1169,9884,0):ocfs2_get_clusters:634 ERROR: status = -30
[  405.254275][ T9884] (syz.6.1169,9884,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30
[  405.276997][ T9884] (syz.6.1169,9884,0):ocfs2_read_virt_blocks:1005 ERROR: status = -30
[  405.290629][ T9884] (syz.6.1169,9884,0):ocfs2_read_dir_block:511 ERROR: status = -30
[  405.312785][   T30] audit: type=1326 audit(1760838174.872:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  405.335749][ T9884] (syz.6.1169,9884,0):ocfs2_find_dir_space_el:3511 ERROR: status = -5
[  405.376431][ T9884] (syz.6.1169,9884,0):ocfs2_prepare_dir_for_insert:4302 ERROR: status = -5
[  405.405756][ T9884] (syz.6.1169,9884,0):ocfs2_mknod:301 ERROR: status = -5
[  405.412936][   T30] audit: type=1326 audit(1760838174.942:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  405.883522][ T9884] (syz.6.1169,9884,1):ocfs2_mknod:505 ERROR: status = -5
[  405.926513][ T9884] (syz.6.1169,9884,1):ocfs2_create:678 ERROR: status = -5
[  405.980649][   T30] audit: type=1326 audit(1760838174.942:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa60dd85e67 code=0x7ffc0000
[  406.020182][ T6366] ocfs2: Unmounting device (7,6) on (node local)
[  406.046110][   T30] audit: type=1326 audit(1760838174.942:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa60dd2b099 code=0x7ffc0000
[  406.082039][   T30] audit: type=1326 audit(1760838174.942:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  406.117760][   T30] audit: type=1326 audit(1760838174.942:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  406.253557][   T30] audit: type=1326 audit(1760838174.942:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  406.276122][   T30] audit: type=1326 audit(1760838174.942:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa60dd8efc9 code=0x7ffc0000
[  406.298608][   T30] audit: type=1326 audit(1760838174.942:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa60dd8f003 code=0x7ffc0000
[  406.321237][   T30] audit: type=1326 audit(1760838174.942:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa60dd8f003 code=0x7ffc0000
[  406.363419][   T30] audit: type=1326 audit(1760838174.942:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa60dd85e67 code=0x7ffc0000
[  406.420215][   T30] audit: type=1326 audit(1760838174.942:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9919 comm="syz.2.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa60dd2b099 code=0x7ffc0000
[  406.793837][ T9941] loop2: detected capacity change from 0 to 2048
[  406.833409][ T9942] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  406.974885][ T9945] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1190'.
[  407.062494][ T9947] loop6: detected capacity change from 0 to 2048
[  407.062578][ T9927] loop7: detected capacity change from 0 to 32768
[  407.121609][ T9950] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  407.157663][ T9952] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  407.384674][ T9927] ocfs2: Slot 0 on device (7,7) was already allocated to this node!
[  407.410486][ T9957] loop2: detected capacity change from 0 to 512
[  407.418076][ T9957] EXT4-fs: Ignoring removed oldalloc option
[  407.429223][ T9927] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  408.124021][ T9927] (syz.7.1183,9927,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len % 4 != 0 - offset=32, inode=17057, rec_len=258, name_len=10
[  408.145355][ T9957] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.203495][ T9927] (syz.7.1183,9927,1):ocfs2_prepare_dir_for_insert:4302 ERROR: status = -2
[  408.230151][ T9957] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  408.249761][ T9927] (syz.7.1183,9927,0):ocfs2_mknod:301 ERROR: status = -2
[  408.257560][ T9927] (syz.7.1183,9927,0):ocfs2_mknod:505 ERROR: status = -2
[  408.265451][ T9927] (syz.7.1183,9927,0):ocfs2_create:678 ERROR: status = -2
[  408.307321][ T8001] ocfs2: Unmounting device (7,7) on (node local)
[  408.678148][ T9972] ==================================================================
[  408.686265][ T9972] BUG: KASAN: slab-out-of-bounds in change_page_attr_set_clr+0x625/0xfc0
[  408.694707][ T9972] Read of size 8 at addr ffff888067eea288 by task syz.0.1196/9972
[  408.702517][ T9972] 
[  408.704846][ T9972] CPU: 0 UID: 0 PID: 9972 Comm: syz.0.1196 Not tainted syzkaller #0 PREEMPT(full) 
[  408.704879][ T9972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  408.704896][ T9972] Call Trace:
[  408.704910][ T9972]  <TASK>
[  408.704921][ T9972]  dump_stack_lvl+0x189/0x250
[  408.704953][ T9972]  ? __kasan_check_byte+0x12/0x40
[  408.704989][ T9972]  ? __pfx_dump_stack_lvl+0x10/0x10
[  408.705017][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.705049][ T9972]  ? lock_release+0x4b/0x3e0
[  408.705089][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.705120][ T9972]  ? __virt_addr_valid+0x4a5/0x5c0
[  408.705150][ T9972]  print_report+0xca/0x240
[  408.705191][ T9972]  ? change_page_attr_set_clr+0x625/0xfc0
[  408.705227][ T9972]  kasan_report+0x118/0x150
[  408.705263][ T9972]  ? change_page_attr_set_clr+0x625/0xfc0
[  408.705306][ T9972]  change_page_attr_set_clr+0x625/0xfc0
[  408.705346][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.705378][ T9972]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[  408.705414][ T9972]  ? __pfx_pagerange_is_ram_callback+0x10/0x10
[  408.705444][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.705475][ T9972]  ? memtype_reserve+0x874/0xb30
[  408.705512][ T9972]  ? __pfx___ww_mutex_lock+0x10/0x10
[  408.705546][ T9972]  _set_pages_array+0x145/0x270
[  408.705589][ T9972]  drm_gem_shmem_get_pages_locked+0x2d0/0x440
[  408.705636][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.705669][ T9972]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[  408.705716][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.705747][ T9972]  ? ww_mutex_lock+0x3f/0x1c0
[  408.705778][ T9972]  drm_gem_shmem_mmap+0x193/0x460
[  408.705807][ T9972]  drm_gem_mmap_obj+0x18a/0x4e0
[  408.705844][ T9972]  drm_gem_mmap+0x384/0x640
[  408.705879][ T9972]  ? __pfx_drm_gem_mmap+0x10/0x10
[  408.705914][ T9972]  ? __mas_set_range+0x12f/0x3c0
[  408.705960][ T9972]  mmap_region+0x18b4/0x2110
[  408.706000][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706044][ T9972]  ? __pfx_mmap_region+0x10/0x10
[  408.706131][ T9972]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  408.706186][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706217][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706247][ T9972]  ? security_mmap_addr+0x71/0x270
[  408.706288][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706319][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706349][ T9972]  ? shmem_mapping+0xd/0x50
[  408.706386][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706416][ T9972]  ? memfd_check_seals_mmap+0xc5/0x200
[  408.706459][ T9972]  do_mmap+0xc45/0x10d0
[  408.706492][ T9972]  ? __pfx_do_mmap+0x10/0x10
[  408.706515][ T9972]  ? down_write_killable+0x178/0x230
[  408.706550][ T9972]  ? __pfx_down_write_killable+0x10/0x10
[  408.706581][ T9972]  ? common_file_perm+0x1b5/0x230
[  408.706617][ T9972]  vm_mmap_pgoff+0x2a6/0x4d0
[  408.706664][ T9972]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  408.706704][ T9972]  ? __fget_files+0x2a/0x420
[  408.706739][ T9972]  ? __fget_files+0x2a/0x420
[  408.706770][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706802][ T9972]  ? __fget_files+0x2a/0x420
[  408.706838][ T9972]  ksys_mmap_pgoff+0x51f/0x760
[  408.706869][ T9972]  do_syscall_64+0xfa/0xfa0
[  408.706895][ T9972]  ? lockdep_hardirqs_on+0x9c/0x150
[  408.706921][ T9972]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.706947][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  408.706978][ T9972]  ? exc_page_fault+0xab/0x100
[  408.707005][ T9972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.707031][ T9972] RIP: 0033:0x7efcad58efc9
[  408.707054][ T9972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.707077][ T9972] RSP: 002b:00007efcae355038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  408.707105][ T9972] RAX: ffffffffffffffda RBX: 00007efcad7e6270 RCX: 00007efcad58efc9
[  408.707125][ T9972] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[  408.707144][ T9972] RBP: 00007efcad611f91 R08: 0000000000000008 R09: 0000000100000000
[  408.707168][ T9972] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  408.707185][ T9972] R13: 00007efcad7e6308 R14: 00007efcad7e6270 R15: 00007ffdfc2750f8
[  408.707218][ T9972]  </TASK>
[  408.707228][ T9972] 
[  409.117652][ T9972] Allocated by task 9972:
[  409.121986][ T9972]  kasan_save_track+0x3e/0x80
[  409.126677][ T9972]  __kasan_kmalloc+0x93/0xb0
[  409.131286][ T9972]  __kvmalloc_node_noprof+0x5cd/0x910
[  409.136675][ T9972]  drm_gem_get_pages+0x166/0xa20
[  409.141633][ T9972]  drm_gem_shmem_get_pages_locked+0x201/0x440
[  409.147730][ T9972]  drm_gem_shmem_mmap+0x193/0x460
[  409.152768][ T9972]  drm_gem_mmap_obj+0x18a/0x4e0
[  409.157667][ T9972]  drm_gem_mmap+0x384/0x640
[  409.162197][ T9972]  mmap_region+0x18b4/0x2110
[  409.166807][ T9972]  do_mmap+0xc45/0x10d0
[  409.170969][ T9972]  vm_mmap_pgoff+0x2a6/0x4d0
[  409.175590][ T9972]  ksys_mmap_pgoff+0x51f/0x760
[  409.180362][ T9972]  do_syscall_64+0xfa/0xfa0
[  409.184878][ T9972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.190787][ T9972] 
[  409.193116][ T9972] The buggy address belongs to the object at ffff888067eea200
[  409.193116][ T9972]  which belongs to the cache kmalloc-192 of size 192
[  409.207186][ T9972] The buggy address is located 0 bytes to the right of
[  409.207186][ T9972]  allocated 136-byte region [ffff888067eea200, ffff888067eea288)
[  409.221694][ T9972] 
[  409.224029][ T9972] The buggy address belongs to the physical page:
[  409.230446][ T9972] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67eea
[  409.239221][ T9972] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  409.246343][ T9972] page_type: f5(slab)
[  409.250334][ T9972] raw: 00fff00000000000 ffff88813ffa63c0 ffffea0000c5ec40 dead000000000002
[  409.258928][ T9972] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  409.267516][ T9972] page dumped because: kasan: bad access detected
[  409.273928][ T9972] page_owner tracks the page as allocated
[  409.279636][ T9972] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6948, tgid 6945 (syz.6.319), ts 148498123392, free_ts 148454282418
[  409.298845][ T9972]  post_alloc_hook+0x240/0x2a0
[  409.303636][ T9972]  get_page_from_freelist+0x2365/0x2440
[  409.309205][ T9972]  __alloc_frozen_pages_noprof+0x181/0x370
[  409.315015][ T9972]  alloc_pages_mpol+0x232/0x4a0
[  409.319862][ T9972]  allocate_slab+0x96/0x3a0
[  409.324370][ T9972]  ___slab_alloc+0xe94/0x18a0
[  409.329065][ T9972]  __slab_alloc+0x65/0x100
[  409.333500][ T9972]  __kmalloc_noprof+0x471/0x7f0
[  409.338365][ T9972]  hash_netportnet6_add+0x2427/0x2e30
[  409.343750][ T9972]  hash_netportnet6_uadt+0xafa/0xed0
[  409.349076][ T9972]  call_ad+0x383/0xb00
[  409.353150][ T9972]  ip_set_ad+0x791/0x930
[  409.357412][ T9972]  nfnetlink_rcv_msg+0xb4d/0x1130
[  409.362435][ T9972]  netlink_rcv_skb+0x208/0x470
[  409.367196][ T9972]  nfnetlink_rcv+0x282/0x2590
[  409.371868][ T9972]  netlink_unicast+0x82f/0x9e0
[  409.376632][ T9972] page last free pid 23 tgid 23 stack trace:
[  409.382598][ T9972]  __free_frozen_pages+0xbc4/0xd30
[  409.387713][ T9972]  tlb_remove_table_rcu+0x85/0x100
[  409.392844][ T9972]  rcu_core+0xcab/0x1770
[  409.397096][ T9972]  handle_softirqs+0x286/0x870
[  409.401874][ T9972]  run_ksoftirqd+0x9b/0x100
[  409.406388][ T9972]  smpboot_thread_fn+0x542/0xa60
[  409.411332][ T9972]  kthread+0x711/0x8a0
[  409.415414][ T9972]  ret_from_fork+0x4bc/0x870
[  409.420008][ T9972]  ret_from_fork_asm+0x1a/0x30
[  409.424774][ T9972] 
[  409.427081][ T9972] Memory state around the buggy address:
[  409.432697][ T9972]  ffff888067eea180: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  409.440760][ T9972]  ffff888067eea200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  409.448824][ T9972] >ffff888067eea280: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  409.456877][ T9972]                       ^
[  409.461191][ T9972]  ffff888067eea300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  409.469242][ T9972]  ffff888067eea380: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  409.477290][ T9972] ==================================================================
[  409.500134][ T9953] syz.4.1194: vmalloc error: size 268439552, failed to allocated page array size 524296, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  409.522352][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.533482][ T9972] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  409.540693][ T9972] CPU: 1 UID: 0 PID: 9972 Comm: syz.0.1196 Not tainted syzkaller #0 PREEMPT(full) 
[  409.549981][ T9972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  409.560052][ T9972] Call Trace:
[  409.563336][ T9972]  <TASK>
[  409.566266][ T9972]  dump_stack_lvl+0x99/0x250
[  409.570865][ T9972]  ? __asan_memcpy+0x40/0x70
[  409.575462][ T9972]  ? __pfx_dump_stack_lvl+0x10/0x10
[  409.580668][ T9972]  ? __pfx__printk+0x10/0x10
[  409.585273][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.590928][ T9972]  vpanic+0x237/0x6d0
[  409.594933][ T9972]  ? __pfx_vpanic+0x10/0x10
[  409.599452][ T9972]  ? preempt_schedule+0xae/0xc0
[  409.604298][ T9972]  ? __pfx_preempt_schedule+0x10/0x10
[  409.609666][ T9972]  panic+0xb9/0xc0
[  409.613393][ T9972]  ? __pfx_panic+0x10/0x10
[  409.617814][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.623459][ T9972]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  409.629364][ T9972]  ? change_page_attr_set_clr+0x625/0xfc0
[  409.635083][ T9972]  check_panic_on_warn+0x89/0xb0
[  409.640022][ T9972]  ? change_page_attr_set_clr+0x625/0xfc0
[  409.645742][ T9972]  end_report+0x78/0x160
[  409.649995][ T9972]  kasan_report+0x129/0x150
[  409.654503][ T9972]  ? change_page_attr_set_clr+0x625/0xfc0
[  409.660231][ T9972]  change_page_attr_set_clr+0x625/0xfc0
[  409.665781][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.671414][ T9972]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[  409.677483][ T9972]  ? __pfx_pagerange_is_ram_callback+0x10/0x10
[  409.683635][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.689264][ T9972]  ? memtype_reserve+0x874/0xb30
[  409.694204][ T9972]  ? __pfx___ww_mutex_lock+0x10/0x10
[  409.699487][ T9972]  _set_pages_array+0x145/0x270
[  409.704345][ T9972]  drm_gem_shmem_get_pages_locked+0x2d0/0x440
[  409.710425][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.716062][ T9972]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[  409.722662][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.728293][ T9972]  ? ww_mutex_lock+0x3f/0x1c0
[  409.732969][ T9972]  drm_gem_shmem_mmap+0x193/0x460
[  409.737989][ T9972]  drm_gem_mmap_obj+0x18a/0x4e0
[  409.742885][ T9972]  drm_gem_mmap+0x384/0x640
[  409.747391][ T9972]  ? __pfx_drm_gem_mmap+0x10/0x10
[  409.752412][ T9972]  ? __mas_set_range+0x12f/0x3c0
[  409.757356][ T9972]  mmap_region+0x18b4/0x2110
[  409.761951][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.767592][ T9972]  ? __pfx_mmap_region+0x10/0x10
[  409.772591][ T9972]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  409.779191][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.784819][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.790448][ T9972]  ? security_mmap_addr+0x71/0x270
[  409.795566][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.801199][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.806823][ T9972]  ? shmem_mapping+0xd/0x50
[  409.811327][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.816953][ T9972]  ? memfd_check_seals_mmap+0xc5/0x200
[  409.822420][ T9972]  do_mmap+0xc45/0x10d0
[  409.826575][ T9972]  ? __pfx_do_mmap+0x10/0x10
[  409.831160][ T9972]  ? down_write_killable+0x178/0x230
[  409.836444][ T9972]  ? __pfx_down_write_killable+0x10/0x10
[  409.842073][ T9972]  ? common_file_perm+0x1b5/0x230
[  409.847097][ T9972]  vm_mmap_pgoff+0x2a6/0x4d0
[  409.851705][ T9972]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  409.856822][ T9972]  ? __fget_files+0x2a/0x420
[  409.861411][ T9972]  ? __fget_files+0x2a/0x420
[  409.865997][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.871644][ T9972]  ? __fget_files+0x2a/0x420
[  409.876257][ T9972]  ksys_mmap_pgoff+0x51f/0x760
[  409.881022][ T9972]  do_syscall_64+0xfa/0xfa0
[  409.885520][ T9972]  ? lockdep_hardirqs_on+0x9c/0x150
[  409.890712][ T9972]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.896772][ T9972]  ? srso_alias_return_thunk+0x5/0xfbef5
[  409.902408][ T9972]  ? exc_page_fault+0xab/0x100
[  409.907175][ T9972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.913068][ T9972] RIP: 0033:0x7efcad58efc9
[  409.917474][ T9972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.937088][ T9972] RSP: 002b:00007efcae355038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  409.945516][ T9972] RAX: ffffffffffffffda RBX: 00007efcad7e6270 RCX: 00007efcad58efc9
[  409.953484][ T9972] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[  409.961452][ T9972] RBP: 00007efcad611f91 R08: 0000000000000008 R09: 0000000100000000
[  409.969420][ T9972] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  409.977387][ T9972] R13: 00007efcad7e6308 R14: 00007efcad7e6270 R15: 00007ffdfc2750f8
[  409.985413][ T9972]  </TASK>
[  409.993550][ T9972] Kernel Offset: disabled
[  409.997878][ T9972] Rebooting in 86400 seconds..