last executing test programs:

39.425558522s ago: executing program 0 (id=966):
socket$netlink(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000000)={0x28, 0x3, r2, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x40})
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6a)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETDUPLEX(0xffffffffffffffff, 0x5016, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000000)={'sit0\x00', 0x0, 0x40, 0x7, 0x6837, 0x8000, {{0x5, 0x4, 0x1, 0x3, 0x14, 0x8001, 0x0, 0x1, 0x2f, 0x0, @empty, @empty}}}})
r7 = fsopen(&(0x7f00000000c0)='nfsd\x00', 0x1)
fsmount(r7, 0x0, 0x8b)

37.991218908s ago: executing program 0 (id=970):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000600)={0x0, 0x0})
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$vbi(0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
rt_sigtimedwait(0x0, 0x0, &(0x7f0000000100)={0x0, 0x3938700}, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r1, &(0x7f0000002080)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}}, 0x48)
eventfd2(0x8e8, 0x80001)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0x0)
ioctl$VHOST_VDPA_GET_DEVICE_ID(0xffffffffffffffff, 0x8004af70, &(0x7f0000000200))
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001600)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x9, @mcast2, 0x80000000}, 0x1c, 0x0, 0x0, &(0x7f0000000280)=[@rthdr={{0x28, 0x29, 0x39, {0x2c, 0x2, 0x2, 0x1, 0x0, [@private2]}}}], 0x28}}], 0x1, 0x20000000)

36.81711131s ago: executing program 0 (id=975):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x8, 0x0, 0x0}}, 0x10)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r0, &(0x7f0000000480)="682d0e0cb9", &(0x7f0000001500)=""/4096}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0xc3afe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00')
preadv(r4, &(0x7f0000000000)=[{&(0x7f0000000080)=""/4096, 0x1000}], 0x1, 0xa1, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2200110, &(0x7f0000000180)=ANY=[@ANYBLOB='iocharset=macromanian,dmask=00000000000000000000000,errors=remount-ro,errors=continue,fmask=00000000000000000122753,uid=', @ANYRESOCT=0x0, @ANYBLOB="2c696f636861727365743d6d6163726f6d616e69616e2c646973636172642c757466382c6572726f72733d636f6e74696e75652c00b24a414a138ea1f090829675858b09596dae40b2fee0"], 0x4, 0x152f, &(0x7f00000079c0)="$eJzs3AuYT9X6OPD3XWvtMSS+TXIZ1lrv5ptclkmSXJLkkiRJkuSWkDTJkYTEEJI0JCG5DEkMIblMTBr3+/2SkCRNkoTklqz/M+FxOnX+p/M7/XKe37yf59mP9X73ftd+9/f9XvbeZubbrkNrNaldvRERwX8EL/yTBACxADAQAPICQAAA5ePKx2Wtzykx6T/bCftzPZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/D9/+yMv///D8ksM/bLNWWu6wYQ80dTuP/ZG/f//6zgj2zE/c/euP/ZVeyVLoD9F+D3f3aQ45+u4f5nb9x/xrKzK33/+UovEPkvew6O5LzQmL/q+BljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMsb/AaX+ZAoBL4ytdF2OMMcYYY4wxxv48PseVroAxxhhjjDHGGGP/+xAESFAQQAzkgFjICblAAMDVkAfyQgSugTi4FvLBdZAfCkBBKATxUBiKgAYDFghCKArFIArXQ3G4AUpASSgFpcFBGUiAG6Es3ATl4GYoD7dABbgVKkIlqAxV4DaoCrdDNbgDqsOdUANqQi2oDXdBHbgb6sI9UA/uhfpwHzSA+6EhPACN4EFoDA9BE3gYmsIj0AyaQwtoCa3+R/nPQ094AXpBb0iCPtAXXoR+0B8GwEswEF6GQfAKDIZXIRmGwFB4DYbB6zAc3oARMBJGwZswGt6CMTAWxsF4SIEJMBHehknwDkyGd2EKTIVUmAbT4T2YATNhFrwPs+EDmANzYR7MhzT4EBbAQkiHj2ARfAwZsBiWwFJYBsthBayEVbAa1sBaWAfrYQNshE2wGbbAVtgG22EHfAI74VPYBbthD3wGe+HzP5Zf2F/MP/UP+d0QEFCgQIUKYzAGYzEWc2EuzI25MQ/mwQhGMA7jMB/mw/yYHwtiQYzHeCyCRdCgQULColgUoxjF4lgcS2AJLIWl0KHDBEzAsngTlsNyWB7LYwWsgBWxElbCKlgFq2JVrIbVsDpWxxpYA2thLbwL78I+WBfrYj2sh/Wx/qXbU9gIG2FjbIxNsAk2xabYDJthC2yBrbAVtsbW2AbbYDtsh+2xPXbADpiIidgRO2In7ISdsTN2wS7YFbtiN+yO3TOfzwH4Ar6AvbGG6IN9sS/2w+QcA/AlfAlfxkH4Cr6Cr2IyDsGh+Bq+hq/jcDyJI3AkjsJRWFW8hWNwLJIYjymYghNxIk7CSZhV6Ls4FVNxGk7H6TgDZ+JMfB9n4wf4Ac7FuTgf0zANF+BCTMd0XISnMAMX4xJcistwOS7DlbgKV+IaXItrcD2ux424ETfjZtyKW3E7bsdPUAHgp7gbd2My7sW9uA/34X7cjwfwAGZiJh7Eg3gID+FhPIxH8AgexWN4HI/hCTyBJ/EUnsbTeBbP4jl8Nv7rxp+UXJ0MIosSSsSIGBErYkUukUvkFrlFHpFHRERExIk4kU/kE/lFflFQFBTxIl4UEUWEEUaQCGMAQERFVBQXxUUJUUKUEqWEE04kiARRVpQV5UQ5UV7cIiqIW0VFUUm0dVVEFVFVtHPVxB2iuqguaoiaopaoLWqLOqKOqCvqinqinqgv6osG4n7RUPTBAfigyOpMEzEEm4qh2Ew0F/LiJ1hrMRzbiLainXhcjMQR2EG0doniKdFRjMFO4m9iLD4juojx2FU8J7qJ7qKHeF70FG1cL9FbTMY+oq+Yiv1EfzFAvCRmYE3xPs7OWUu8KpLFEDFUvCbm4+tiuHhDjBAjxSjxphgt3hJjxFgxTowXKWKCmCjeFpPEO2KyeFdMEVNFqpgmpov3xAwxU8wS74vZ4gMxR8wV88R8kSY+FAvEQpEuPhKLxMciQywWS8RSsUwsFyvESrFKrBZrxFqxTqwXG8RGsUlsFlvEVrFNbBc7xCdip/hU7BK7xR7xmdgrPhf7xBdiv/hSHBBfiUzxtTgovhGHxLfisPhOHBHfi6PimDgufhAnxI/ipDglTosz4qz4SZwTP4vzwguQKIWUUslAxsgcMlbmlLnkVTK3DC4+u9fIOHmtzCevk/llAVlQFpLxsrAsIrU00kqSoSwqi8movF4WlzfIErKkLCVLSyfLyAR5oywrb5Ll5M2yvLxFVpC3yoqykqwsq8jbZFV5u4TIhX3UkDVlLVlb3iWT4G5ZV94j68l7ZX15n2wg75cN5QOykXxQNpYPySbyYdlUPiKbyeayhWwpW8lHZWv5mGwj28p28nHZXj4hO8gnZaJ8SnaU/uJL5BnZRT4ru8rnZDfZXfaQP8vz0stesreEPiD7yhdlP9lfDogFAPmyHCRfkYPlqzJZDpFD5WtymHxdDpdvyBFypBwl35Sj5VtyjBwrx8nxMkVOkBPl23KSfEdOlu/KKXKqTJXT5AA58JeZZkn5L/Pf/p38wb/sfaPcJDfLLXKr3Ca3yx3yE7lT7pS75C65R+6Re+VeuU/uk/vlfnlAHpCZMlMelAflIXlIHpaH5RF5RB6Vx+QZ+YM8IX+UJ+UpeUqekWflWXnu4nMACpVQUikVqBiVQ8WqnCqXukrlVlerPCqviqhrVJy6VuVT16n8qoAqqAqpeFVYFVFaGWUVqVAVVcVUVF2PF18wqpQqrZwqoxLUjf9OviqublAlVMlf5V+qL+mf1NdKtVKtVWvVRrVR7VQ71V61Vx1UB5WoElVH1VF1Up1UZ9VZdVFdVFfVVXVT3VQP1UP1VD1VL9VLJakk1Ve9qPqp/mqAekkNVC+rQWqQGqwGq2SVrIaqoWqYGqaGq+FqhBqhRqlRarQarcaoMWqcGqdSVIqaqCaqSWqSmqwmqylqikpVqWq6mq5mqBlqlpqlZqvZao6ao+apeSpNpakFaoFKV+lqkVqkMtRitVgtVUvVcrVcrVQr1Wq1Wq1Va9V6tV5lqE1qk9qitqhtapvaoXaonWqn2qV2qT1qj9qr9qp9ap/ar/arA+qAylSZ6qA6qA6pQ+qwOqyOqCPqqDqqjqvj6oQ6oU6qk+q0Oq3OqrPqnDqnzqvzWad9gQhEoAIVxAQxQWwQG+QKcgW5g9xBniBPEAkiQVwQF+QLrgvyBwWCgkGhID4oHBQJdGACG4iLTY8G1wfFgxuCEkHJoFRQOnBBmSAhuDEoG9wUlAtuDsoHtwQVgluDikGloHJQJbgtqBrcHlQL7giqB3cGNYKaQa2gdnBXUCe4O6gb3BPUC+4N6gf3BQ2C+4OGwQNBo+DBoHHwUNAkeDhoGjwSNAuaBy2ClkGrP3V+708WeMz10r11ku6j++oXdT/dXw/QL+mB+mU9SL+iB+tXdbIeoofq1/Qw/boert/QI/RIPUq/qUfrt/QYPVaP0+N1ip6gJ+q39ST9jp6s39VT9FSdqqfp6fo9PUPP1LP0+3q2/kDP0XP1PD1fp+kP9QK9UKfrj/Qi/bHO0Iv1Er1UL9PL9Qq9Uq/Sq/UavVav0+v1Br1Rb9Kb9Ra9VW/T2/UO/YneqT/Vu/RuvUd/pvfqz/U+/YXer7/UB/RXOlN/rQ/qb/Qh/a0+rL/TR/T3+qg+po/rH/QJ/aM+qU/p0/qMPqt/0uf0z/q89lkn91lf70YZZWJMjIk1sSaXyWVym9wmj8ljIiZi4kycyWfymfwmvyloCpp4E2+KmCImCxkyRU1REzVRU9wUNyVMCVPKlDLOOJNgEkxZU9aUM+VMeVPeVDAVTEVT0VQ2lc1t5jZzu7nd3GHuMHeaO01NU9PUNrVNHVPH1DV1TT1Tz9Q39U0D08A0NA1NI9PINDaNTRPTxDQ1TU0z08y0MC1MK9PKtDatTRvTxrQz7Ux70950MB1Mokk0HU1H08l0Mp1NZ9PFdDFdTVfTzXQzPUwP09P0NL1ML5Nkkkxf09f0M/3MADPADDQDzSAzyAw2g02ySTZDzVAzzAwzw81wM8KMNKOyTlTNW2aMGWvGmfEmxaSYiWaimWQmmclmsplipphUk2qmm+lmhplhZplZZraZbeaYOWaemWfSTJpZYBaYdJNuFplFJsNkmCVmiVlmlpkVZoVZZVaZNWaNWQfrzAazwWwym8wWs8VsM9vMDrPD7DQ7za6z3nuzx+w1e80+s8/sN/vNAXPAZJpMc9AcNIfMIXPYHDZHzBFz1Bw1x81xc8KcMCfNSXPanDZnTYGL35fexNqcNpe9yua2V9s8Nq/9x7igLWTjbWFbxGqb3xb4VWystSVsSVvKlrbOlrEJ9sbfxBVtJVvZVrG32ar2dlvtN3Ede7eta++x9ey9tra961dxfXufbWAftg0RAWxz29i2tE3sw7apfcQ2s81tC9vStrdP2A72SZton7Id7dO/iRfYhXaVXW3X2LV2l91tT9sz9pD91p61P9letrcdaF+2g+wrdrB91SbbIb+JR9k37Wj7lh1jx9pxdvxv4il2qk210+x0+56dYWf+Jk6zH9rZNt3OsXPtPDv/lzirpnT7kV1kP7YZNoAldqldZpfbFXblpVp9XrvebrAb7U77qd1it9ptdrvdcelE2O62e+xndq/93B6039j99kt7wB62mfbrX+Ks4ztsv7NH7Pf2qD1mj9sf7An7o7qUnXXsP9if7XnrLRASkCRFAcVQDoqlnJSLrqLcdDXlobwUoWsojq6lfHQd5acCVJAKUTwVpiKkyZAlopCKUjGK0vV0qbxSVJoclaEEupHK0k1Ujm6m8nQLVaBbqSJVospUhW6jqnQ7VaM7qDrdSTWoJtWi2nQX1aG7qS7dQ/XoXqpP91EDup8a0gPUiB6kxvQQNaGHqSk9Qs2oObWgltSKHqXW9Bi1obbUjh6n9vQEdaAnKZGeoo70NHWiv1Fneoa60LPUlZ6jbtSdetDz1JNeoF7Um5KoD/WlF6kf9acB9BINpJdpEL1Cg+lVSqYhNJReo2H0Og2nN2gEjaRR9CaNprdoDI2lcTSeUq6eQBPpbZpE79Bkepem0FRKpWk0nd6jGTSTZtH7NJs+oDk0l+bRfEqjD2kBLaR0+ogW0ceUQYtpCS2lZbScVtBKWkWraQ2tpXW0njbQRtpEm2kLbaVttJ120Ce0kz6lXbSb9tBntJc+p330Be2nL+kAfUWZ9DUdpG/oEH1Lh+k735u+p6N0jI7TD3SCfqSTdIpO0xk6Sz/ROfqZzpMnCDEUoQxVGIQxYY4wNswZ5gqvCnOHV4d5wrxhJLwmjAuvDfOF14X5wwJhwbBQGB8WDouEOjShDSkMw6JhsTAaXh8WD28IS4Qlw1Jh6dCFZcKE8MawbHhTWC68OSwf3hJWCG8NK4aVwofvrRLeFlYNbw+rhXeE1cM7wxphzbBWWDu8K6wT3h3WDe8J64X3huXC+8IG4f1hw/CBsFH4YNg4fChsEj4cNg0fCZuFzcMWYcuwVfho2Dp8LGwTtg3bhY+H7cMnwg7hk2Fi+FTYMXz6l/X3Lfzn65PCPmHf8MXwxdD7e+S86PxoWvTD6ILowmh69KPooujH0Yzo4uiS6NLosujy6Iroyuiq6Oromuja6Lro+uiG6Mao97VzgEMnnHTKBS7G5XCxLqfL5a5yud3VLo/L6yLuGhfnrnX53HUuvyvgCrpCLt4VdkWcdsZZRy50RV0xF3XXu+LuBlfClXSlXGnnXBmX4Fq6Vq6Va+0ec21cW9fOPe4ed0+4J9yT7kn3lOvonnad3N9cZ/eM6+Kedc+651w31931cM+7nm5CngvvySTX1/V1/Vw/N8ANcAPdQDfIDXKD3WCX7JLdUDfUDXPD3HA33I1wI9woN8qNdqPdGDfGjXPjXIpLcRPdRDfJTXKT3WQ3xU1xqS7VTXfT3Qw3w1WdeWEvc9wcN8/Nc2kuzS1wWeeM6W6RW+QyXIZb4pa4ZW6ZW+FWuFVulVvj1rh1bp3b4Da4TW6T2+K2uG1um9vhdridbqfb5fNemNTtdfvcPrff7XcH3Fcu033tDrpv3CH3rTvsvnNH3PfuqDvmjrsf3An3ozvpTrnT7ow7635y59zP7rzzLiUyITIx8nZkUuSdyOTIu5EpkamR1Mi0yPTIe5EZkZmRWZH3I7MjH0TmROZG5kXmR9IiH0YWRBZG0iMfRRZFPo5kRBZHlkSWRpZFlke8L7wl9EV9MR/11/vi/gZfwpf0pXxp73wZn+Bv9GX9Tb6cv9mX97f4Cv5WX9FX8pX9I76Zb+5b+Ja+lX/Ut/aP+Ta+rW/nH/ft/RO+g3/SJ/qnfEf/tO/k/+Y7+2d8F/+s7+qf8918d9/DP+97+hd8L9/bJ/k+vq9/0ffz/f0A/5If6F/2g/wrfrB/1Sf7IX6of80P86/74f4NP8KP9KNi3vSjL10iw3if4if4if5tP8m/4yf7d/0UP9Wn+ml+un/Pz/Az/Sz/vp/tP/Bz/Fw/z8/3af5Dv8Av9On+I7/If+wz/OJLN5X9Cr/Sr/Kr/Rq/1q/z6/0Gv9Fv8pv9Fr/Vb/Pb/Q7/id/pP/W7/G6/x3/m9/rP/T7/hd/vv/QH/Fc+03/tD/pv/CH/rT/sv/NH/Pf+qD/mj/sf/An/oz/pT/nT/ow/63/y5/zP/jz/zhpjjDHG2B8y4fJQ/HrNhdv5fX4nR/zdxn0B4OqthTL/fn3WGeW6/BfG/UV8+wgAPNW764OXlho1kpKSLm6bISEoNhfg0v8EZYmBy/FiaAdPQCK0hbK/W39/0f0s/Yv5o7cA5Pq7nFi4HF+e/wsATPqd+R99fNSCCuHpuP/P/HMBShS7nJMTLseLod0v91faQrl/Un+B1v+i/pxfpgC0+buc3HA5vlx/AjwGT0Pir7ZkjDHGGGOMMcYu6C8qd750/XnpJz5/7/o8Xl3OyQGX4391fc4YY4wxxhhjjLEr75nuPZ58NDGxbed/f1Dtf5T1hwdN4X9rZh787sB7gEuPKAD4DycEyBrIv/IoNv8l+0q++Nb5x1XLzvgA/jta+XsDEP9e1hX+YGKMMcYYY4z96S6f9P/6cXWlCmKMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxrKhv+Jvj13pY2SMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcautP8XAAD//z74ACU=")
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
r5 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r5, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./bus\x00', 0x810001, 0x0, 0x1, 0x0, 0x0)

35.832470298s ago: executing program 0 (id=977):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000002c0)='./bus\x00', 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYBLOB="2c6d65b47d7189617375"], 0x1, 0x61e2, &(0x7f000000d7c0)="$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")
rename(&(0x7f0000000000)='./file2\x00', &(0x7f00000005c0)='./file0/file0\x00')
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

32.804372575s ago: executing program 0 (id=986):
syz_open_procfs(0x0, &(0x7f0000000300)='oom_adj\x00')
r0 = timerfd_create(0x0, 0x0)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
mount$9p_fd(0x0, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740), 0x400, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x3ff, 0x100000000000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x8, 0x2, 0x3, 0x0, 0x3})

30.225268263s ago: executing program 0 (id=993):
syz_open_dev$usbfs(0x0, 0x76, 0x101341)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000014c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000702000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000400000006a0a80fe000000008500000053000000b7000000000000009500001000000000a80501363034fdb117168bd07ba00af739d1a1ee35fe163a255c33282044b32495ef8ab9adc67ccc945f105d802f5132143c0a9fc7a84452569957c1002ed7d4d8e17f791f4798c8eb483e9973320d046c3126c6afcfd84de03352c69b3edff5be26f8ffa5f8f2879021c2ea53ea79acd7fb38dd1abb75aa393cea26d465637d11f705000000473e7b7c4ae7dd5e4dee88518ddf12dddd4bfc6a4dd3b6beba51074229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba7de26ff2357ef17f95a25780c3a057844f226ef4e912f01a201e694e3806e8c70e8b69524cd19f7525d8d66bb766f7f3f918c86a70252236800001897133af94a5a4cfc794d8b9d7c33632152c48eaf302f0b2e0c252b00000000000000006f1bbefbe08de65e3762e194ba4cae8b13535d7d11ee917bca4885bbf597a14ab2458efce78510d86272d88e0c8088f404f011289ebc5623faa1182632161e073af1d69a2e36bed435000025ecd201d2ffb0a7fa4f5d11060cdcf071defd0a8be3b69ce3e4f361aca75827426dde87fdf4617222674280f55e98107450c19b9d86329bd5b4697336112b0b8754ce3574046bf6114d1a88597850b77378fa8edfff8faf8b8ec039bab385cac0535373bb8fab90539b1a65ddff841eb671f3faf37ebdfccea0c002ad2b42047c9ec43193ccf617dbf8a12b4f189edbf9fb7c42b1f435ccd4d96822e6b70100912c92e3943e9c4f45d8bcd528fa8a3ea847f10e9b2506f3bb506f1d7fbde8010000000000a073d0de5538ab42e170b3baae34c35987b0dda497ac3f5e97e6e6aeea15c6d5ed24310100000003bb6030f84b63aaf8690db0221b1705c501f802ff59b4e683efa4b6e77e042072bd2ac37d413008ec9eb8166f6e28b49a77ed91befc65315896f88a8fb1dd679fb4c515f8b7a5b7aca6a251a89d47b728502f7e621cc0e3ba04000000c149ee6601728c750d304197c22da8650579475afd96187d881e93b42a5fdfd686d8900c44c67133dad58037fda65885a15a429edfe3027a5ebf95254744f10fd607bc3300b94932b8d944e0b083bbd86b19cb074577a25ff581d92af08a06f857310a2f14326b0b290205e91a682e00c8762cbc6b904c980eef6e6a1def886c95676dce6a8194479700a02b92bdc8d05eae1f24fdd7b80d1bb404c22f681594de2ebb9687219de8d73ac83823feb402a2415a9850d5f0183ec67be96dc0e4c2d7acf1dfe79d6771903b76e21190c22d641030e1ddacf006c3116e1803af20a5f2b5f7ba58aca5bcabbbab24414a3810788e5503e4be66d683daac5f0001000077339b4200000000108a3c87b19d5b9a00c75d84a92d6dcf00ba96edf35ede0e2b57c26e94801b498924166bde57d5f24258d9fd028096cc15a8b912b494d4bbe609031ea1ca65a548971d5d16296dd08e020000007a27310d5d01f8a8a0f5212d7f628f554afea715ccbc66cbb1016490f5d579308cb3188cf2fcaf67e0c16443d526ba4b968f07ae362c2133c168313e84beb871203880dd453c45d0a137d7f5a8b039dbfa62fb2b4214f8e69f967bf1fbd89e77fcca110000000800000000000000f8877994ebdc35f7efd41e3babd9b3782edd6776d5b6cb4ecd72c9de9b5503747d71440378cf2c2c7ea2dc5febb654a867f853713cf4c0bb322fbbe446d18dee4c821275ef18259cafc346c8b3b9fb0f3adcf6ea310a6b9a3f59e29a5909ea047fb61affb4bc8bbea1fb761b8933795b1a91358a7791aa843d07020e8bb6fc18458c49ac6313e7165b7d9f65e94a62b69f1011b94340cdb7303f01e5cdb5682ddf73d65c3de1d88dd7496d6345d5b9de0223988056a53e19a8b96b9640bc6c09d3c2ff894d626b57c776ed53f94d5e22ff148061b37f72bd92924cb1d0a725e19b264346b7cae0251a850de78316503f3c3d395c7e3f04fc8d52583327cd2341ce4b2d092815376299686f41353b2823814563011a2223b9dd00000000000000000000003a131374a3371cb3e2a9bb4d"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0xfeffff, 0xe2, 0x0, &(0x7f0000000700)="c45c57ce395de5b289f07d637a223920f181c2e57d71483cfb2d075a3ff07258e080a194805cdb0c26d3f7ffb1e0d9cf4fa36dcb2168b72de48ac8f93e6804f1c4d70898d0810e044d7e1778eaac5dfdcc9f1208905522025bcfdf1b6f969b094d5c022c2b7ffefde71e0627b9a2069cc1e0175c4b8860aad4b0a103c589f676b6c4e85eb3950c533b6e62c39ccf9ae9bfe54ee5887358d44f46337fbe090d7c7e55847edee8130ffd3d1e719e01a68b0e691c0d35b0b56e0b514036342fd56f08ac0083f3c2fe41a1295a3d23cf3d160d4fd90f66beba68860456ed41272e1e68d1", 0x0, 0xf0}, 0x50)
openat$kvm(0x0, 0x0, 0x0, 0x0)
r1 = io_uring_setup(0x2e15, &(0x7f00000002c0)={0x0, 0x1, 0x1, 0x1, 0x1be})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r2, &(0x7f0000000000)="fa", 0xfffffdef)
r3 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x10}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @private2, 0x3ff}, 0x1c)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$inet6(0xa, 0x1, 0x8010000000000084)
ioctl$USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x317, 0x1, 0x34, 0x9}, 0x9c)
close_range(r1, 0xffffffffffffffff, 0x0)

29.273426731s ago: executing program 32 (id=993):
syz_open_dev$usbfs(0x0, 0x76, 0x101341)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000014c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0xfeffff, 0xe2, 0x0, &(0x7f0000000700)="c45c57ce395de5b289f07d637a223920f181c2e57d71483cfb2d075a3ff07258e080a194805cdb0c26d3f7ffb1e0d9cf4fa36dcb2168b72de48ac8f93e6804f1c4d70898d0810e044d7e1778eaac5dfdcc9f1208905522025bcfdf1b6f969b094d5c022c2b7ffefde71e0627b9a2069cc1e0175c4b8860aad4b0a103c589f676b6c4e85eb3950c533b6e62c39ccf9ae9bfe54ee5887358d44f46337fbe090d7c7e55847edee8130ffd3d1e719e01a68b0e691c0d35b0b56e0b514036342fd56f08ac0083f3c2fe41a1295a3d23cf3d160d4fd90f66beba68860456ed41272e1e68d1", 0x0, 0xf0}, 0x50)
openat$kvm(0x0, 0x0, 0x0, 0x0)
r1 = io_uring_setup(0x2e15, &(0x7f00000002c0)={0x0, 0x1, 0x1, 0x1, 0x1be})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r2, &(0x7f0000000000)="fa", 0xfffffdef)
r3 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x10}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @private2, 0x3ff}, 0x1c)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = socket$inet6(0xa, 0x1, 0x8010000000000084)
ioctl$USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x317, 0x1, 0x34, 0x9}, 0x9c)
close_range(r1, 0xffffffffffffffff, 0x0)

13.280511926s ago: executing program 2 (id=1041):
syz_emit_ethernet(0x56, &(0x7f00000003c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x24, 0x0, {0xb, 0x4, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x15, 0x0, [{0x0, 0x2}, {0x5, 0x5, "4eb8a6"}, {0x5, 0x8, "9606053d0006"}]}]}}}}}}}, 0x0)

11.633850024s ago: executing program 2 (id=1047):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x18, &(0x7f0000000100)=0x807d3, 0x4)

10.404303343s ago: executing program 2 (id=1051):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
socket(0x2c, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0xffffffffffffffff, &(0x7f0000000140), 0x0}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
listen(0xffffffffffffffff, 0xfffffffd)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000003c0)={[{@nodiscard}, {}, {@background_gc_on}, {@alloc_mode_reuse}, {@noquota}, {@disable_roll_forward}, {@gc_merge}, {@nouser_xattr}, {@alloc_mode_reuse}, {@user_xattr}, {@fsync_mode_strict}, {@adaptive_mode}, {@block_mode}, {@noinline_dentry}]}, 0x2, 0x5505, &(0x7f0000002480)="$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")
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1811e000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xa8f94000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900030073797a32000000001400048008000240326565a708000140000000000900010073797a300000000048000000060a010400000000000000000100000008000b40000000000900010073797a3000000000200004801c0001800b00010072656a65637400000c000280080001400000000114000000110001"], 0xd0}}, 0x0)

8.160479365s ago: executing program 3 (id=1054):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000000)=""/47, 0x2f}], 0x1)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000a00)={'nr0\x00', &(0x7f0000000340)=@ethtool_per_queue_op={0x4b, 0xe, [0xf8b, 0x6, 0x8, 0xf, 0x2e41, 0x6, 0x5d, 0x8001, 0xf7, 0x6d4, 0x5, 0x3, 0x0, 0x10, 0x1e1, 0x35762774, 0x200, 0x1e46, 0x8000, 0x7, 0x2, 0x24, 0x80, 0x1, 0x4, 0x247, 0x2, 0x3ff, 0x2, 0xfffffffc, 0xe, 0x8, 0x9, 0x4, 0x7, 0xffffff72, 0x4, 0x2, 0x3, 0x6, 0xffff, 0x8000, 0x8, 0xffffb3e3, 0x5, 0x9, 0x3, 0x80000000, 0x3, 0x8, 0x4, 0xa, 0x80000001, 0x6, 0x9, 0x4, 0x2, 0x5, 0x9, 0x825, 0x2, 0x3, 0x4, 0x3, 0x401, 0xfffffffb, 0x1000, 0x0, 0x9, 0x3, 0x5721, 0x1, 0x6, 0x9, 0xc, 0x40, 0x45, 0x4, 0x4, 0x3, 0x3, 0x69a0, 0x200, 0x1000, 0x400, 0x3, 0x8, 0x8, 0x3ff, 0x10001, 0x5, 0x0, 0x5, 0x6, 0x10001, 0x10, 0x1, 0x1000, 0x41a7, 0x9, 0x200, 0xac9, 0xfe, 0x0, 0x2, 0x7, 0x9, 0x401, 0x2, 0xae7, 0xfffffffb, 0x8, 0x3, 0x8000, 0x4, 0x4, 0x8, 0x5, 0xfffffff7, 0xfffffffa, 0x10001, 0x8001, 0x0, 0x8, 0x401, 0x2, 0x1, 0x4]}})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, 0x0)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000880), 0x125001, 0x0)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000140)={0x0, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000200)={0x0, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_drop_memb(r3, 0x107, 0x2, &(0x7f0000000580)={0x0, 0x1, 0x6, @local}, 0x10)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000001c0)={0x0, 0x0, 0x4})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000020c0)=ANY=[@ANYBLOB="1c0000001c000104000000000000e9ff2d"], 0x1c}, 0x1, 0x0, 0x0, 0x20000}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
sendmsg$IPSET_CMD_ADD(r1, 0x0, 0x80)

7.852834144s ago: executing program 2 (id=1056):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = getpid()
prlimit64(r1, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x0, &(0x7f0000000180)='gid=1\x00\x1c\x00\x00\x00m\xbe\xd7\xa9:\n\xf9\b\rk[\xa1\xcc\xd6\xa28|5}(\x06l\xa8\x86di\xf3vJ,S.\xc3\x9b\xaaNj0\xef\x810EZ\xb6\x16\x88AZg`\xee\xe2\x93r\xd7\xa3v\x1f\xdb\x04\xd1\xe0\xabR \xeb\x80\r\x1b\x17\x0e\r\x93<T\xea\xab\x19\xed\xfd\x8c-\xd4\x10\xb8\xfc\xf7F\a\x00\x00\x00W\x02\xa2\x1ed\x1fe\xd4\xec\xe8\v(\rn\x82\xa6W\x1a\xa8\xbd\x1a\x88\x8b\xa2?\x9c\x00\x00\x00\x00\x00\x00\x00\x9c\x83\xbd\xd7|\x10\x9c\xdf~\xcc\xd3\xad\x16\xd1Y\xcf\x01`\xd5\x0152\xa8E\xac\a\xd6a>K\xe6\xc3BFz\xba\x7f\xc0\x1e@\xe4\xd0\xea\x16\xaa-aR)\\\x16\x8b^>\xbf\x06p\xc8\x9b\xf0N:\x05F\xe7fJ\x9a8\xa4\xb0FA\x9a\xe9E\xf9GJaGTf\x0f\xec\xff\x00\xb4\x97\x86\xd1&\a\xb554\x86\xd7\xbdeY\xa6\x91\r@<q\x85\xf9\x8b\xe4I\xdf\r\xdd\x9f3)\xfc\x04c\xb2\xd1\xcb\x1a\xaeG\xeb/\x90\x873,\x0f\xe5\x0e\xcd\tI^^\xf5q\x9d`\x8b\xad\xd3\t<K,\x9a')
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=<r5=>0x0)
syz_pidfd_open(r5, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f00000001c0)={[{@errors_remount}, {@lazytime}, {@block_validity}, {@block_validity}, {@block_validity}, {@quota}, {@jqfmt_vfsv0}]}, 0x1, 0x459, &(0x7f0000000240)="$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")

7.65452697s ago: executing program 1 (id=1057):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
fchdir(r0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000024c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000080)=@abs={0x1, 0x30}, 0x6e, 0x0}}], 0x2, 0xe0)

7.57241464s ago: executing program 4 (id=1058):
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$inet6_buf(r0, 0x29, 0x4, 0x0, 0x0)
ioctl$VIDIOC_S_AUDIO(0xffffffffffffffff, 0x40345622, &(0x7f00000001c0)={0x0, "9800003de8f644ad6c8a55930700", 0x3})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18)
sched_setscheduler(0x0, 0x2, 0x0)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, 0x0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=@migrate={0xec, 0x21, 0x1, 0xfffffffc, 0x0, {{@in=@private=0xa010101, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x100000}, [@migrate={0x9c, 0x11, [{@in6=@ipv4={'\x00', '\xff\xff', @local}, @in6=@mcast1, @in=@private=0xa010102, @in6=@private2, 0x3c, 0x0, 0x0, 0x0, 0x2, 0x2}, {@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, @in6=@mcast1, @in=@private=0xa010102, @in=@loopback, 0x33, 0x1, 0x0, 0x3506, 0xa, 0x8}]}]}, 0xec}}, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x40, 0x0)
execve(0x0, 0x0, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000001ac0), 0x0, 0x0)
r7 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r6, 0x40405514, &(0x7f0000000200)={0x9, 0x2, 0x80000000, 0x5, '\x00', 0x13})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r7, 0xc1105511, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
execve(0x0, &(0x7f0000000280)={[0x0]}, 0x0)

7.403943728s ago: executing program 1 (id=1059):
openat$ocfs2_control(0xffffffffffffff9c, 0x0, 0x102, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x60)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(0xffffffffffffffff, 0x0, 0xffffff6a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x48}, 0x0)

5.956421966s ago: executing program 1 (id=1060):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0x7ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0xf, 0x3, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
clock_getres(0xfffffffffffffff1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10)

5.424299126s ago: executing program 2 (id=1061):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x800810, &(0x7f00000004c0)={[{@datacow}, {@nodatasum}, {@compress_force}, {@nossd_spread}, {@ssd}, {}, {@datacow}, {@nodiscard}]}, 0xfb, 0x50f9, &(0x7f0000005140)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x101080, 0x88)
truncate(&(0x7f0000000100)='./file0\x00', 0x8000000)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000a80)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

5.341675207s ago: executing program 4 (id=1062):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x309})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000050a000/0x13000)=nil, 0x13000}, 0x1})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r2, &(0x7f0000000040)={0x1a, 0x0, 0x3, 0x54}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000140)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r3)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
close(r2)
readv(r0, 0x0, 0x0)

4.312896654s ago: executing program 4 (id=1063):
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f00000000c0)=[{0x20, 0x3, 0x0, 0xfffff034}, {0x6, 0xfe, 0x1, 0x2}]}, 0x10)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x40800)
r0 = shmget$private(0x0, 0x2000, 0x54000000, &(0x7f0000427000/0x2000)=nil)
shmat(r0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x52b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000040000000030a01080000000000000000010040000900030073797a3200000000140004800800024000000000"], 0x110}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x201001a, &(0x7f0000000080)=ANY=[], 0x1, 0x740, &(0x7f0000000140)="$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")
readlink(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)=""/13, 0xd)

4.243737907s ago: executing program 1 (id=1064):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'ipvlan1\x00', <r3=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x0, r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}}, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r4}, 0x18)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)
r5 = socket$netlink(0x10, 0x3, 0x400000000000004)
writev(r5, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000060000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1)

4.192865382s ago: executing program 3 (id=1065):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000600)={0x0, 0x0})
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$vbi(0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
rt_sigtimedwait(0x0, 0x0, &(0x7f0000000100)={0x0, 0x3938700}, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r1, &(0x7f0000002080)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}}, 0x48)
eventfd2(0x8e8, 0x80001)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0x0)
ioctl$VHOST_VDPA_GET_DEVICE_ID(0xffffffffffffffff, 0x8004af70, &(0x7f0000000200))
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r2, 0x0, 0x0, 0x20000000)

3.284194138s ago: executing program 3 (id=1066):
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000040)={0x0, 0x6, 0x0, "e5e81571c97b166978ff61fcfd2409b2b73e0f936ed774de107de8a9041b5113"})

3.141116273s ago: executing program 1 (id=1067):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000200), &(0x7f00000003c0)=r4}, 0x20)

2.769907738s ago: executing program 4 (id=1068):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000040)={0x0, 0x0})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
fchdir(r0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000024c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000080)=@abs={0x1, 0x30}, 0x6e, 0x0}}], 0x2, 0xe0)

2.587961186s ago: executing program 4 (id=1069):
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000440), 0x2)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f00000000c0)=0x3)
getgroups(0x0, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000940)=<r2=>0xffffffffffffffff)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0x7c81, 0x0)
socket$kcm(0x2, 0x5, 0x84)
unshare(0x2a020400)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000036c0)={0x64, r4, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x3c, 0x8, 0x0, 0x1, [{0x38, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}]}]}, 0x64}, 0x1, 0x0, 0x0, 0xc811}, 0x40000)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x4e20, 0x8, @mcast1, 0x3}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x310)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020}, 0x2020)
close(0xffffffffffffffff)
fsopen(&(0x7f00000000c0)='hfs\x00', 0x1)

2.359017733s ago: executing program 3 (id=1070):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x3, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
write(r3, 0x0, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_FREE_MR(r4, 0x114, 0x3, 0x0, 0x0)

2.112286471s ago: executing program 1 (id=1071):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/comedi2\x00', 0x880140, 0x0)
ioctl$COMEDI_BUFINFO(r0, 0xc02c640e, &(0x7f0000000300)={0x8, 0xfffffffa, 0x7, 0xfffffff9, 0x8, 0x2b6f, 0x3})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x840, &(0x7f0000000000)={[{@test_dummy_encryption}, {@nodioread_nolock}]}, 0x1, 0x252, &(0x7f0000001640)="$eJzs3T9oJGUcBuB3Znc9c7fIqY0gqCAiGghnJ9icjcKJHIeIoMKJiI1yJ8QEu8TKxkJrlVQ2QdIZLSVNsFEEq6gpYiNosDBYKLIymUSSuEZlNztH5nlg2Pnzzfy+Yfb9ZpuZDdBa55NcTNJJMp2kl6Q42OCeejq/t7g0tX41GQye+rnYbVcv1/b3O5dkMcnDSdbKIq90k/nV57Z+3Xj8/rfnevd9uPrs1ERPcs/21uaTOx9cfuvjSw/Nf/n1j5eLXEz/0HmNXzFkXbdIbjuJYjeIont0zUozHWmZ9/9n+ytvrHxT5f72JPfu5r+XMvXFe2f2prVeHvzHQ77701d3jtpfoFmDQa+6By4OgNYpk/RTlDNJ6vmynJmpf8N/2zlbvnp99vXpl6/PXXup6ZEKGJd+svnYp2c+OXck/z906vwDp8kTh5aq/D99Zfm7an6n01SfgCZU+Z9+YeGByD+0jvxDe8k/tNdY8n/zePsETIb7P7SX/EN7yT+0l/xDe8k/nG4vHrPtP+S/PKl+Ac06mH8AoF0GZ5p+AhloStPjDwAAAAAAAAAAAAAAAAAA8HdLU+tX96dJ1fz8vWT70STdYfU7ey8gq/9k5OwvRdXsL0W920iev3vEA4zoo4afvr7l+2brf3FXs/UXriWLbya50O0e+f79MUgx8gvwbv2X7b3jXtA3AY8802z935ebrX9pI/msGn8uDBt/ytyx+zl8/OlX12/E+q/9NuIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmJg/AwAA//+wgnEm")
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000709c3120e80401669b81010203010902120001010000000904"], 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0xa3)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'xfrm0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000340)="0b031200e2ff020002004788a04fa13bb1000011000088ca1a00", 0x1a, 0x0, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x8, 0x6, @link_local}, 0x14)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r4, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x600000000000000, 0x0, 0x0, 0x2)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ftruncate(r7, 0x8979)
write$binfmt_script(r7, &(0x7f0000001400)={'#! ', './mnt', [{0x20, 'cpu.stat\x00'}, {0x20, 'e\x00\x00\x00\x00'}, {}, {0x20, 'jqfmt=vfsv1\x19\xf3\x96\xeb\xbc\xa6\x8c{[\xb6\x1e\x15\xba\xe9k\xf7B\x9c\xf3\xa60\v\x9eF\x90\xb2\xd6\n\xec\xe7*m\x98\'p!\xcf\xb1\xe8B\x1d\xd8\x8c\x06\x91\xa8/VY\xfe\xd7}\xa9\xba\xa0\xee5\x7f\xce\xd3\x9dKWI\xfa\x89\'H\xc4N\xdf\x89\xb1HyZ\x92]\x99\xef<\x1d|T\xa5\xd7\xfa9\xd4O\xa5\xaf\xb0Jt;o\b\x18\x18\xda\'c\x06Q<\xc2\xd8C\xb3\xc4\b\x95|\xddq\xd2JFD\xa0\x1c\x1d\x8a\x84e\xe3\xdf\x82\xe7\xa6;\x97\xac\xef:\xb1\x89\x81\xc9h:\xe8\xe7\xde2\xab1%S6\x92\x0f#K7\xf2\xe3\xa0\xd6\xa8\x93JJ\xcb\x94\xe6tP\xdd\x18\xd3od\xda\xc5\xae\x9b\x82\xc6\x00W\x81B\xc4or\xfe\x87\xe4\xb2\xf6\x82\xe3\x95\xf7\xfd\xc3\xb4h\xa2\xbb\xb9\xf3\x1fqWu>\xe1y\xeb\x85>\xbb\xe0\xe3Q\x16\xfb.\xd4\"\xf2\rb\xb2o\xcf\x83\xee~\x12\xde\xfb\x1d9\t\xad-\x11\x84\xceA~\xdc\x9a\xd2Rk\x8f\t\xfaU\x85\xd1\xcbDI\xd1-\xb2\xdb,\xdc\xfdL\xa4\x81\xbep\awd\'\x05\xfa\xa6/\xd2R\xde\x9eE\xf2\x1a\x1f+\xd1IWK\xfc\x03\x9a\x87\xf5\x14}\xa6A\\|\xf7\x17\xcf{\x1c\x8b/\xa4m\xee\x1f\xce'}]}, 0x161)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x82040, 0x103)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r8, 0x50009417, &(0x7f0000000400)={{r8}, 0x0, 0x4, @inherit={0x48, &(0x7f0000001600)=ANY=[@ANYBLOB="01"]}, @devid})
fdatasync(0xffffffffffffffff)
r9 = socket$inet(0x2, 0x40000000003, 0x800000800000001)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000018c0)={0x6, 0x38, &(0x7f0000001980)=ANY=[@ANYRES64=r3, @ANYBLOB="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", @ANYRESOCT, @ANYRES64=r1, @ANYRES16, @ANYBLOB="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", @ANYBLOB="6f83c6fd131bc5b2f953ac9bca1cde1d8e8d165b111e598f8ed1399b9126bdb7d595807fd769b45b18f6", @ANYRES64, @ANYRES8=0x0], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
getsockopt$inet_mreqsrc(r9, 0x0, 0x28, &(0x7f0000000200)={@dev, @local, @broadcast}, &(0x7f0000000100)=0xc)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock2(&(0x7f0000004000/0x4000)=nil, 0x40ef, 0x0)

1.305062197s ago: executing program 3 (id=1072):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
write$uinput_user_dev(r4, &(0x7f0000000b00)={'syz0\x00', {0x5, 0x7, 0x3, 0x7}, 0x50, [0x2, 0x9, 0x0, 0x1, 0x8, 0xea45, 0xe, 0x1, 0x0, 0x0, 0x9, 0xc, 0x3, 0x405, 0x1, 0x4, 0x1000, 0x7fffffff, 0x2, 0x8, 0x800, 0x5, 0x3ff, 0x4, 0x7, 0x10001, 0x7ff, 0x0, 0x4, 0x6, 0x400, 0xc, 0x9, 0x4, 0x2, 0x1, 0x5, 0x4, 0x1, 0x0, 0xa, 0x8, 0x2, 0x1009, 0x804d81, 0x2, 0x8c00, 0x8, 0x939, 0x5, 0x9, 0x4, 0x2, 0x4, 0xfffffff7, 0x7fff, 0x0, 0x5, 0x80000001, 0x6, 0x5, 0x2a, 0x1, 0x23], [0x8, 0x20009, 0x9, 0x1, 0x5, 0x12, 0x800, 0xc, 0x0, 0x2329, 0xfd8, 0x3, 0x5, 0x5, 0x0, 0x24e, 0x2, 0xfffffff7, 0x2, 0x20003, 0x5, 0x9, 0x80, 0xb, 0x1, 0x3c, 0xa1, 0x100004, 0xffffffff, 0x5, 0x10004, 0x1, 0xffffff00, 0x7ff, 0x6, 0x7, 0x0, 0xb, 0xffff3f15, 0xa, 0x2, 0x9, 0x7, 0x5, 0x5, 0x7, 0x800, 0x5, 0xc5, 0x3, 0x1000001, 0xb, 0x8, 0x3, 0xfffffff7, 0x2, 0x24c, 0x800001ff, 0x9, 0x5, 0x6, 0x6, 0x7, 0x7], [0x2, 0x9, 0x1a9e1bfa, 0xfffffffa, 0x8, 0xff, 0x1, 0x8000, 0x7, 0x5, 0x2, 0x7ffffff7, 0x8000, 0x1, 0x1, 0x5, 0x4, 0x2, 0x2b0, 0x5, 0x7, 0x8, 0x0, 0x0, 0x9, 0x5, 0x4, 0x10003, 0xc93, 0xffffff3c, 0x8b2, 0x7, 0x4, 0xff, 0x5, 0x2, 0x4, 0xb, 0x4, 0x6, 0x7, 0x8007c12, 0x5, 0x1, 0x40, 0x8000, 0x8e, 0xf3, 0x80004, 0x8, 0x1, 0xfffdff00, 0x100, 0x7, 0x2, 0x0, 0x9, 0x10, 0x1, 0x1, 0xc3, 0x4, 0x7a3], [0x9, 0x3a8d, 0xffff9a7f, 0x6f68, 0x6, 0x2, 0x1, 0xfffffff3, 0xd077, 0x1, 0xffffffff, 0x1f, 0x81, 0x0, 0x6, 0x2, 0x200, 0x1000, 0x2, 0x66608000, 0x5, 0x7fb, 0x6, 0x3, 0xa476, 0x5, 0x29, 0x3, 0xd, 0x0, 0x1, 0x1, 0x8, 0x61, 0x200010, 0x1000, 0x8, 0x100, 0x8, 0x20000000, 0x8, 0x15, 0xb32a, 0xec000000, 0x2, 0x1904, 0x4, 0xc, 0x8, 0x7ff, 0x280, 0x5, 0xfffffffb, 0x7, 0x2, 0x8, 0x8, 0x9371, 0x4f89, 0x7, 0x580, 0x2d1, 0x2, 0x8]}, 0x45c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 'syz0\x00', 0x0})

1.243241646s ago: executing program 2 (id=1073):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x309})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000050a000/0x13000)=nil, 0x13000}, 0x1})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r2, &(0x7f0000000040)={0x1a, 0x0, 0x3, 0x54}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000140)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r3)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
close(r2)
readv(r0, 0x0, 0x0)

357.688936ms ago: executing program 3 (id=1074):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5e8, &(0x7f0000001200)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0xf, 0x3, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
clock_getres(0xfffffffffffffff1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10)

181.188153ms ago: executing program 5 (id=994):
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xdef0, 0x8000000000000000}, 0x0)
prctl$PR_SET_TIMERSLACK(0x1d, 0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0xf, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="35c8e05654c6179dea974f569cbdc1891bca30a9f69fc87d325fff9084484b73cbad34c95ff6f2e2092285aaf97f552d7189", @ANYRESDEC=r0, @ANYRESDEC=0x0, @ANYRES8=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 4 (id=1075):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000600)={0x0, 0x0})
socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$vbi(0x0, 0x0, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
rt_sigtimedwait(0x0, 0x0, &(0x7f0000000100)={0x0, 0x3938700}, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r1, &(0x7f0000002080)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}}, 0x48)
eventfd2(0x8e8, 0x80001)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0x0)
ioctl$VHOST_VDPA_GET_DEVICE_ID(0xffffffffffffffff, 0x8004af70, &(0x7f0000000200))
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001600), 0x0, 0x20000000)

kernel console output (not intermixed with test programs):

   76.755193][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[   76.761539][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[   76.777709][ T5871] 8021q: adding VLAN 0 to HW filter on device team0
[   76.828776][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.835953][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.863106][ T5857] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.885994][ T3540] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.893156][ T3540] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.927613][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.056206][ T5857] veth0_vlan: entered promiscuous mode
[   77.090789][ T5864] veth0_vlan: entered promiscuous mode
[   77.108571][ T5857] veth1_vlan: entered promiscuous mode
[   77.150757][ T5864] veth1_vlan: entered promiscuous mode
[   77.222178][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.255641][ T5857] veth0_macvtap: entered promiscuous mode
[   77.268271][ T5866] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.282701][ T5857] veth1_macvtap: entered promiscuous mode
[   77.306399][ T5864] veth0_macvtap: entered promiscuous mode
[   77.329561][ T5864] veth1_macvtap: entered promiscuous mode
[   77.356281][ T5871] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.373526][ T5869] Bluetooth: hci0: command tx timeout
[   77.379581][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.390056][ T5866] veth0_vlan: entered promiscuous mode
[   77.413292][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.430623][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.441346][ T3531] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.465788][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.473958][ T3531] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.492144][ T3531] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.502155][ T3531] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.516290][ T5866] veth1_vlan: entered promiscuous mode
[   77.531546][ T3531] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.547791][ T3531] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.579460][ T3531] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.592498][ T3531] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.622053][ T5866] veth0_macvtap: entered promiscuous mode
[   77.628091][ T5869] Bluetooth: hci2: command tx timeout
[   77.633571][ T5874] Bluetooth: hci3: command tx timeout
[   77.635924][ T5867] Bluetooth: hci1: command tx timeout
[   77.669826][ T5866] veth1_macvtap: entered promiscuous mode
[   77.686151][ T5871] veth0_vlan: entered promiscuous mode
[   77.693740][ T5867] Bluetooth: hci4: command tx timeout
[   77.706287][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.718346][ T5871] veth1_vlan: entered promiscuous mode
[   77.724536][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.730177][ T5862] veth0_vlan: entered promiscuous mode
[   77.757548][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.774336][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.783616][ T3531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.793146][ T3531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.822644][ T3531] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.831618][ T3531] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.845893][ T5862] veth1_vlan: entered promiscuous mode
[   77.865139][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.865312][ T3531] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.882089][ T3531] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.891056][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.898880][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.908354][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.950997][ T5871] veth0_macvtap: entered promiscuous mode
[   77.966684][ T5862] veth0_macvtap: entered promiscuous mode
[   77.976278][ T5864] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   77.995355][ T5871] veth1_macvtap: entered promiscuous mode
[   78.007140][ T5862] veth1_macvtap: entered promiscuous mode
[   78.075653][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.103963][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.120009][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.156777][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.443272][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.463286][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.472057][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.630145][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   78.693129][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.965240][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.030749][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.095731][ T1079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.124617][ T1079] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.134992][ T3506] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.153122][ T3506] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.209256][ T3506] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.215742][ T5974] loop0: detected capacity change from 0 to 32768
[   79.239424][ T5974] 
[   79.239424][ T5974]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   79.239424][ T5974] 
[   79.258119][ T3506] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.267815][ T3506] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.280672][ T5974] ERROR: (device loop0): diWrite: ixpxd invalid
[   79.280672][ T5974] 
[   79.289716][ T5974] ERROR: (device loop0): remounting filesystem as read-only
[   79.297583][ T5974] ERROR: (device loop0): txCommit: 
[   79.297583][ T5974] 
[   79.343141][ T3506] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.363158][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.453345][ T5867] Bluetooth: hci0: command tx timeout
[   79.455226][ T3506] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.643473][ T3506] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.692935][ T5867] Bluetooth: hci2: command tx timeout
[   79.694180][ T5869] Bluetooth: hci3: command tx timeout
[   79.712267][ T5867] Bluetooth: hci1: command tx timeout
[   79.743176][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.773312][ T5867] Bluetooth: hci4: command tx timeout
[   79.891406][   T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.952988][   T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.981816][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.005553][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.605972][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.620349][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.639761][ T1079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.656909][ T1079] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.821138][ T6001] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'.
[   80.859415][ T5988] loop0: detected capacity change from 0 to 32768
[   81.009254][ T5988] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.434854][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   81.455680][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   81.465480][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   81.470854][ T5988] XFS (loop0): Ending clean mount
[   81.514763][ T5857] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.534611][ T5867] Bluetooth: hci0: command tx timeout
[   81.774109][ T5867] Bluetooth: hci3: command tx timeout
[   81.783408][ T5869] Bluetooth: hci2: command tx timeout
[   81.788968][ T5867] Bluetooth: hci1: command tx timeout
[   81.909818][ T5867] Bluetooth: hci4: command tx timeout
[   82.067537][ T6029] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   82.067537][ T6029]    program syz.0.13 not setting count and/or reply_len properly
[   82.590287][ T6036] loop4: detected capacity change from 0 to 8
[   82.664433][ T6037] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.673664][ T6045] loop1: detected capacity change from 0 to 764
[   85.229556][ T6057] loop0: detected capacity change from 0 to 256
[   85.236829][ T6057] exfat: Deprecated parameter 'utf8'
[   85.273884][   T37] Bluetooth: (null): Too short H5 packet
[   85.314624][ T6057] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[   85.336002][   T37] Bluetooth: (null): Invalid header checksum
[   85.351995][   T37] Bluetooth: (null): Invalid header checksum
[   85.375875][   T37] Bluetooth: (null): Invalid header checksum
[   85.495292][   T37] Bluetooth: (null): Invalid header checksum
[   85.617472][ T6067] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   85.713128][ T6040] loop3: detected capacity change from 0 to 32768
[   85.736896][ T6040] 
[   85.736896][ T6040]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   85.736896][ T6040] 
[   85.913913][ T5871] 
[   85.913913][ T5871]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   85.913913][ T5871] 
[   85.998008][ T5871] 
[   85.998008][ T5871]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   85.998008][ T5871] 
[   87.981992][ T6064] loop2: detected capacity change from 0 to 32768
[   88.075908][ T6064] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   88.860870][ T6064] XFS (loop2): Ending clean mount
[   88.976686][ T6111] loop3: detected capacity change from 0 to 8
[   89.047417][ T6112] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   89.804949][ T5864] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   90.899717][ T6132] loop3: detected capacity change from 0 to 8
[   90.970605][ T6134] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   92.229909][  T977] cfg80211: failed to load regulatory.db
[   93.408403][ T6155] loop0: detected capacity change from 0 to 32768
[   93.459958][ T6155] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   93.649350][ T6181] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   93.696879][ T6155] XFS (loop0): Ending clean mount
[   93.716101][ T6176] loop3: detected capacity change from 0 to 4096
[   93.744003][ T6176] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[   93.967117][ T5857] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   93.985714][ T6176] ntfs3(loop3): ino=1c, mi_enum_attr
[   93.995310][ T6176] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[   94.005309][ T6168] loop4: detected capacity change from 0 to 32768
[   94.661622][ T6168] 
[   94.661622][ T6168]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   94.661622][ T6168] 
[   95.056501][ T6168] 
[   95.056501][ T6168]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.056501][ T6168] 
[   95.098692][ T6168] 
[   95.098692][ T6168]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.098692][ T6168] 
[   95.716544][ T6197] loop2: detected capacity change from 0 to 764
[   96.146566][ T5862] 
[   96.146566][ T5862]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   96.146566][ T5862] 
[   96.192085][ T5862] 
[   96.192085][ T5862]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   96.192085][ T5862] 
[   96.326460][ T6205] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   96.499704][   T59] Bluetooth: hci5: Frame reassembly failed (-84)
[   96.819463][ T6194] loop0: detected capacity change from 0 to 32768
[   96.838032][ T6194] 
[   96.838032][ T6194]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   96.838032][ T6194] 
[   96.914969][ T6194] 
[   96.914969][ T6194]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   96.914969][ T6194] 
[   96.936143][ T6194] 
[   96.936143][ T6194]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   96.936143][ T6194] 
[   97.024976][ T5857] 
[   97.024976][ T5857]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   97.024976][ T5857] 
[   97.048330][ T5857] 
[   97.048330][ T5857]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   97.048330][ T5857] 
[   97.075380][ T6212] loop2: detected capacity change from 0 to 512
[   97.096980][ T6212] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   97.132630][ T6212] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.62: corrupted in-inode xattr: overlapping e_value 
[   97.253268][ T6212] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.62: couldn't read orphan inode 15 (err -117)
[   97.315865][ T6212] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.409825][ T6212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.62'.
[   97.419000][ T6212] netlink: 32 bytes leftover after parsing attributes in process `syz.2.62'.
[   97.436939][ T6212] netlink: 13 bytes leftover after parsing attributes in process `syz.2.62'.
[   97.973224][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.491688][ T6226] loop2: detected capacity change from 0 to 32768
[   98.514797][ T5869] Bluetooth: hci5: command 0x1003 tx timeout
[   98.521922][ T5867] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   98.698838][ T6226] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   98.943620][ T6226] XFS (loop2): Ending clean mount
[   99.002318][ T5864] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.387808][ T6253] loop4: detected capacity change from 0 to 764
[   99.992985][ T6260] syz.0.72 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  102.549426][ T6290] loop3: detected capacity change from 0 to 764
[  105.535901][ T6318] loop3: detected capacity change from 0 to 512
[  105.560928][ T6318] =======================================================
[  105.560928][ T6318] WARNING: The mand mount option has been deprecated and
[  105.560928][ T6318]          and is ignored by this kernel. Remove the mand
[  105.560928][ T6318]          option from the mount to silence this warning.
[  105.560928][ T6318] =======================================================
[  105.679939][ T6318] EXT4-fs: Ignoring removed oldalloc option
[  105.705292][ T6318] EXT4-fs: inline encryption not supported
[  105.821679][ T6318] EXT4-fs: Ignoring removed mblk_io_submit option
[  106.583034][ T6318] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.086989][ T6318] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.89: bg 0: block 64: padding at end of block bitmap is not set
[  107.087299][ T6337] netlink: 4 bytes leftover after parsing attributes in process `syz.0.93'.
[  107.126808][ T6318] Quota error (device loop3): write_blk: dquota write failed
[  107.162241][ T6318] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  107.202360][ T6318] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.89: Failed to acquire dquot type 0
[  107.342215][ T6318] EXT4-fs (loop3): 1 truncate cleaned up
[  107.450874][ T6318] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.303221][ T6349] loop1: detected capacity change from 0 to 764
[  108.665693][ T6353] loop0: detected capacity change from 0 to 128
[  108.820850][ T6355] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  109.405004][ T6353] FAT-fs (loop0): Directory bread(block 32) failed
[  109.445243][ T6353] FAT-fs (loop0): Directory bread(block 33) failed
[  109.553858][ T6353] FAT-fs (loop0): Directory bread(block 34) failed
[  109.623782][ T6353] FAT-fs (loop0): Directory bread(block 35) failed
[  109.725980][ T6353] FAT-fs (loop0): Directory bread(block 36) failed
[  109.814598][ T6353] FAT-fs (loop0): Directory bread(block 37) failed
[  109.899263][ T6353] FAT-fs (loop0): Directory bread(block 38) failed
[  109.998642][ T6353] FAT-fs (loop0): Directory bread(block 39) failed
[  110.127733][ T6353] FAT-fs (loop0): Directory bread(block 40) failed
[  110.250529][ T6353] FAT-fs (loop0): Directory bread(block 41) failed
[  110.261894][ T5871] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.070306][ T6369] loop1: detected capacity change from 0 to 1024
[  111.197664][ T6369] EXT4-fs: Ignoring removed orlov option
[  111.275137][ T6369] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.315164][ T6371] loop2: detected capacity change from 0 to 256
[  111.436249][   T30] audit: type=1800 audit(1755811087.660:2): pid=6369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.102" name="bus" dev="loop1" ino=18 res=0 errno=0
[  111.439112][ T6371] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  111.456660][   T30] audit: type=1804 audit(1755811087.680:3): pid=6369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.102" name="/newroot/23/bus/bus" dev="loop1" ino=18 res=1 errno=0
[  111.492363][ T6371] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  111.540543][ T6371] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  111.695420][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.539747][ T6403] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  113.539747][ T6403]    program syz.3.107 not setting count and/or reply_len properly
[  113.626091][ T6405] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  116.856022][ T6422] loop1: detected capacity change from 0 to 256
[  116.977270][ T6422] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  117.003510][ T6422] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  117.149920][ T6422] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  118.110713][ T6442] loop2: detected capacity change from 0 to 8
[  118.181817][ T6443] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  119.240557][ T6447] loop4: detected capacity change from 0 to 764
[  120.114544][ T6440] loop1: detected capacity change from 0 to 32768
[  120.130317][ T6440] btrfs: Unknown parameter 'ref_verify'
[  122.709135][ T6491] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  122.709135][ T6491]    program syz.4.135 not setting count and/or reply_len properly
[  123.025689][ T6489] loop0: detected capacity change from 0 to 32768
[  123.075989][ T6489] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  123.137982][ T6489] XFS (loop0): Ending clean mount
[  123.251998][ T5857] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  123.272538][ T6501] loop2: detected capacity change from 0 to 256
[  125.303054][    T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  125.557723][    T9] usb 2-1: config 0 has an invalid interface number: 199 but max is 1
[  125.711233][    T9] usb 2-1: config 0 has no interface number 1
[  125.755718][    T9] usb 2-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  125.912286][    T9] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  126.107670][ T6535] loop3: detected capacity change from 0 to 256
[  126.110347][    T9] usb 2-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00
[  126.114879][ T6535] exfat: Deprecated parameter 'utf8'
[  126.123496][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  126.136721][    T9] usb 2-1: SerialNumber: syz
[  126.148288][    T9] usb 2-1: config 0 descriptor??
[  126.442281][ T6535] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  126.613105][    T9] usb 2-1: Found UVC 0.00 device <unnamed> (0002:0000)
[  126.651935][    T9] usb 2-1: No valid video chain found.
[  126.667422][ T6534] loop4: detected capacity change from 0 to 2048
[  126.854673][ T6537] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  127.170934][ T6519] loop0: detected capacity change from 0 to 32768
[  127.184363][ T6519] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.142 (6519)
[  127.213814][ T6519] BTRFS info (device loop0): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  127.243593][ T6519] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  127.365520][ T6519] BTRFS info (device loop0): enabling ssd optimizations
[  127.380965][ T6519] BTRFS info (device loop0): enabling free space tree
[  127.510495][ T6568] loop4: detected capacity change from 0 to 256
[  127.699409][ T6568] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  127.764988][ T5983] usb 2-1: USB disconnect, device number 2
[  128.268310][ T6568] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  128.295734][ T6568] FAT-fs (loop4): Filesystem has been set read-only
[  128.298529][ T5857] BTRFS info (device loop0): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  128.302566][ T6568] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  128.371412][ T6568] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  128.530263][   T30] audit: type=1800 audit(1755811104.790:4): pid=6568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.150" name="file1" dev="loop4" ino=1048611 res=0 errno=0
[  129.640282][ T6596] loop3: detected capacity change from 0 to 256
[  129.960356][ T6601] loop4: detected capacity change from 0 to 256
[  129.971445][ T6601] exfat: Deprecated parameter 'utf8'
[  130.336909][ T6596] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  130.366629][ T6596] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  130.386948][ T6601] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  130.697713][ T6596] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  132.859274][ T6628] loop0: detected capacity change from 0 to 256
[  132.961280][ T6629] loop1: detected capacity change from 0 to 764
[  133.360149][ T6628] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  133.509203][ T6628] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  134.465135][ T6628] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  134.552203][ T6642] Zero length message leads to an empty skb
[  134.856779][ T6649] loop2: detected capacity change from 0 to 16
[  134.908582][ T6649] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 127766)
[  135.055998][ T6655] loop0: detected capacity change from 0 to 256
[  135.063167][ T6655] exfat: Deprecated parameter 'utf8'
[  135.422865][ T6655] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  135.500523][ T6659] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  135.500523][ T6659]    program syz.4.175 not setting count and/or reply_len properly
[  135.922365][ T6649] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  136.919119][ T5869] Bluetooth: hci5: command 0x1003 tx timeout
[  136.992750][ T5867] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  137.569663][ T6677] loop0: detected capacity change from 0 to 764
[  138.216516][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  138.359786][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  139.024923][ T6682] loop4: detected capacity change from 0 to 8
[  139.099137][ T6683] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  139.299185][ T6684] loop3: detected capacity change from 0 to 256
[  139.438612][ T6684] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.654345][ T6684] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  139.925001][ T6684] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  141.326624][ T6714] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  141.326624][ T6714]    program syz.1.189 not setting count and/or reply_len properly
[  142.493987][ T6727] lo speed is unknown, defaulting to 1000
[  142.500139][ T6727] lo speed is unknown, defaulting to 1000
[  142.509025][ T6727] lo speed is unknown, defaulting to 1000
[  142.530558][ T6727] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  142.569953][ T6727] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  142.718168][ T6727] lo speed is unknown, defaulting to 1000
[  142.730652][ T6727] lo speed is unknown, defaulting to 1000
[  142.744457][ T6727] lo speed is unknown, defaulting to 1000
[  142.756643][ T6727] lo speed is unknown, defaulting to 1000
[  142.768783][ T6727] lo speed is unknown, defaulting to 1000
[  143.232883][ T6733] loop4: detected capacity change from 0 to 764
[  148.137681][ T6780] loop3: detected capacity change from 0 to 256
[  148.170700][ T6780] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  148.188999][ T6783] loop0: detected capacity change from 0 to 1024
[  148.196020][ T6783] EXT4-fs: inline encryption not supported
[  148.201893][ T6783] EXT4-fs: Ignoring removed bh option
[  148.242492][ T6783] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.631082][ T6796] loop4: detected capacity change from 0 to 764
[  149.364078][ T5857] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.619621][ T6798] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  149.650938][ T6798] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  150.079661][ T6812] loop2: detected capacity change from 0 to 2048
[  150.086982][ T6812] journal_path: Non-blockdev passed as './file0'
[  150.093565][ T6812] EXT4-fs: error: could not find journal device path
[  151.071877][ T5929] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  151.252997][ T5929] usb 5-1: Using ep0 maxpacket: 16
[  151.322450][ T5929] usb 5-1: config 0 has no interfaces?
[  151.366013][ T6825] netlink: 28 bytes leftover after parsing attributes in process `syz.3.222'.
[  151.407419][ T5929] usb 5-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  151.445382][ T6825] netlink: 28 bytes leftover after parsing attributes in process `syz.3.222'.
[  151.486135][ T5929] usb 5-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[  151.584530][ T5929] usb 5-1: Manufacturer: syz
[  151.634244][ T5929] usb 5-1: SerialNumber: syz
[  151.751955][ T6825] team0: entered promiscuous mode
[  151.808440][ T6825] team_slave_0: entered promiscuous mode
[  151.873286][ T5929] usb 5-1: config 0 descriptor??
[  151.889303][ T6825] team_slave_1: entered promiscuous mode
[  152.208002][ T6825] team0: left promiscuous mode
[  152.217212][ T5929] usb 5-1: USB disconnect, device number 2
[  152.233159][ T6825] team_slave_0: left promiscuous mode
[  152.281718][ T6825] team_slave_1: left promiscuous mode
[  153.032438][   T30] audit: type=1326 audit(1755811129.290:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6837 comm="syz.3.227" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb80098ebe9 code=0x0
[  155.593482][    T9] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  156.645811][ T6881] loop3: detected capacity change from 0 to 256
[  156.653024][ T6881] exfat: Deprecated parameter 'utf8'
[  156.675573][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  156.701557][    T9] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  156.727870][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.788473][    T9] usb 3-1: config 0 descriptor??
[  156.817387][ T6881] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  156.867811][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[  157.222717][    T9] pwc: send_video_command error -71
[  157.322367][    T9] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  157.550122][    T9] Philips webcam 3-1:0.0: probe with driver Philips webcam failed with error -71
[  157.890712][    T9] usb 3-1: USB disconnect, device number 2
[  158.020237][ T6895] loop4: detected capacity change from 0 to 764
[  158.609616][ T6903] loop3: detected capacity change from 0 to 764
[  160.800963][ T6919] loop0: detected capacity change from 0 to 8192
[  164.219651][ T6957] loop4: detected capacity change from 0 to 764
[  165.078757][ T6978] netlink: 'syz.0.263': attribute type 1 has an invalid length.
[  165.414153][ T6981] loop3: detected capacity change from 0 to 8
[  165.496637][ T6984] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  166.587041][ T6997] loop0: detected capacity change from 0 to 256
[  166.598144][ T6997] exfat: Deprecated parameter 'utf8'
[  166.661464][ T6997] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  167.385508][ T7006] loop4: detected capacity change from 0 to 512
[  167.441553][ T7006] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  167.490054][ T7006] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  167.536441][ T7006] EXT4-fs (loop4): 1 orphan inode deleted
[  167.548881][ T7006] EXT4-fs (loop4): 1 truncate cleaned up
[  167.565764][ T7006] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.610563][ T7006] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.274: bg 0: block 360: padding at end of block bitmap is not set
[  167.674657][ T7006] EXT4-fs (loop4): Remounting filesystem read-only
[  167.695195][ T7006] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1597: inode #17: comm syz.4.274: cleanup dec ref error -28
[  167.797620][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.882151][ T7003] loop2: detected capacity change from 0 to 32768
[  167.961149][   T30] audit: type=1800 audit(1755811400.219:6): pid=7003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.272" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=4096 res=0 errno=0
[  168.064251][ T7023] loop1: detected capacity change from 0 to 8
[  168.145890][ T7026] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  168.303409][ T7014] loop3: detected capacity change from 0 to 32768
[  168.799410][ T7014] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.018058][ T7014] XFS (loop3): Ending clean mount
[  170.168539][ T5871] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  170.314973][ T7060] loop0: detected capacity change from 0 to 256
[  170.325800][ T7060] exfat: Deprecated parameter 'utf8'
[  171.369088][ T7060] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  171.501368][ T7066] loop2: detected capacity change from 0 to 512
[  171.611404][ T7066] EXT4-fs: Ignoring removed mblk_io_submit option
[  171.645688][ T7066] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  171.705111][ T7067] debugfs: 'ttyS3' already exists in 'caif_serial'
[  171.717216][ T7066] EXT4-fs (loop2): DAX unsupported by block device.
[  172.492094][ T7078] lo speed is unknown, defaulting to 1000
[  173.409481][ T7095] loop2: detected capacity change from 0 to 1024
[  173.447819][ T7095] EXT4-fs: Ignoring removed bh option
[  173.501762][ T7095] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  173.545720][ T7095] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.564410][ T7094] loop0: detected capacity change from 0 to 4096
[  173.609845][ T7094] EXT4-fs: Ignoring removed mblk_io_submit option
[  173.624424][ T7094] EXT4-fs (loop0): Test dummy encryption mode enabled
[  173.650598][ T7094] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.679693][ T7094] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  173.704619][ T7095] EXT4-fs error (device loop2): ext4_read_inline_dir:1476: inode #12: block 7: comm syz.2.297: path /: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[  173.766082][ T7095] EXT4-fs (loop2): Remounting filesystem read-only
[  173.961657][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.969264][ T5857] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.061139][ T7109] loop2: detected capacity change from 0 to 8
[  174.082394][ T7110] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  174.128225][ T7114] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  174.241479][ T7117] loop0: detected capacity change from 0 to 128
[  174.409235][ T7117] FAT-fs (loop0): Directory bread(block 32) failed
[  174.419444][ T7117] FAT-fs (loop0): Directory bread(block 33) failed
[  174.426183][ T7117] FAT-fs (loop0): Directory bread(block 34) failed
[  174.432722][ T7117] FAT-fs (loop0): Directory bread(block 35) failed
[  174.439444][ T7117] FAT-fs (loop0): Directory bread(block 36) failed
[  174.447792][ T7117] FAT-fs (loop0): Directory bread(block 37) failed
[  174.456338][ T7117] FAT-fs (loop0): Directory bread(block 38) failed
[  174.463291][ T7117] FAT-fs (loop0): Directory bread(block 39) failed
[  174.472637][ T7117] FAT-fs (loop0): Directory bread(block 40) failed
[  174.480457][ T7117] FAT-fs (loop0): Directory bread(block 41) failed
[  174.784344][ T7121] loop2: detected capacity change from 0 to 256
[  174.813347][ T7121] exfat: Deprecated parameter 'utf8'
[  174.837649][ T7121] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  174.955635][ T7117] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[  174.966916][ T7117] FAT-fs (loop0): Filesystem has been set read-only
[  174.975079][ T7117] process 'syz.0.302' launched '/dev/fd/5' with NULL argv: empty string added
[  174.985520][ T7117] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  176.428244][ T7139] loop2: detected capacity change from 0 to 40427
[  176.441368][ T7139] F2FS-fs (loop2): invalid crc value
[  176.477135][ T7141] netlink: 4 bytes leftover after parsing attributes in process `syz.4.308'.
[  176.528508][ T7139] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  176.539522][ T7139] F2FS-fs (loop2): Start checkpoint disabled!
[  176.549912][ T7139] F2FS-fs (loop2): f2fs_disable_checkpoint() finish, err:0
[  176.557549][ T7139] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  176.632986][ T7146] netlink: 'syz.3.310': attribute type 1 has an invalid length.
[  176.687566][ T7147] syz.2.309: attempt to access beyond end of device
[  176.687566][ T7147] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  176.703254][ T7147] syz.2.309: attempt to access beyond end of device
[  176.703254][ T7147] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.718563][ T7147] syz.2.309: attempt to access beyond end of device
[  176.718563][ T7147] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.747283][ T7147] syz.2.309: attempt to access beyond end of device
[  176.747283][ T7147] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.762893][ T7147] syz.2.309: attempt to access beyond end of device
[  176.762893][ T7147] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.796228][   T30] audit: type=1800 audit(1755811664.927:7): pid=7147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.309" name="bus" dev="loop2" ino=14 res=0 errno=0
[  176.852628][ T7147] syz.2.309: attempt to access beyond end of device
[  176.852628][ T7147] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  176.867148][ T7147] syz.2.309: attempt to access beyond end of device
[  176.867148][ T7147] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.883042][ T7147] syz.2.309: attempt to access beyond end of device
[  176.883042][ T7147] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  176.898920][ T7147] syz.2.309: attempt to access beyond end of device
[  176.898920][ T7147] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  176.914562][ T7147] syz.2.309: attempt to access beyond end of device
[  176.914562][ T7147] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  178.788340][ T7157] loop3: detected capacity change from 0 to 8
[  178.865288][ T7159] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  179.335899][ T7163] syz.4.315 uses obsolete (PF_INET,SOCK_PACKET)
[  179.354271][ T7163] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.
[  179.770594][ T7168] lo speed is unknown, defaulting to 1000
[  180.125260][ T7183] loop3: detected capacity change from 0 to 256
[  180.132427][ T7183] exfat: Deprecated parameter 'utf8'
[  180.170221][ T7183] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  180.233157][   T13] CPU: 1 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted syzkaller #0 PREEMPT(full) 
[  180.233184][   T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  180.233197][   T13] Workqueue: writeback wb_workfn (flush-7:2)
[  180.233257][   T13] Call Trace:
[  180.233265][   T13]  <TASK>
[  180.233274][   T13]  dump_stack_lvl+0x189/0x250
[  180.233317][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.233341][   T13]  ? __pfx_queue_work_on+0x10/0x10
[  180.233370][   T13]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  180.233392][   T13]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  180.233424][   T13]  f2fs_handle_critical_error+0x37c/0x540
[  180.233452][   T13]  f2fs_write_end_io+0x886/0xb60
[  180.233487][   T13]  __submit_merged_bio+0x27a/0x6a0
[  180.233513][   T13]  __submit_merged_write_cond+0x255/0x530
[  180.233538][   T13]  f2fs_write_data_pages+0x261d/0x3000
[  180.233580][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.233613][   T13]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  180.233658][   T13]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  180.233687][   T13]  ? trace_f2fs_writepages+0x7f/0x200
[  180.233715][   T13]  ? f2fs_write_node_pages+0x478/0x6e0
[  180.233738][   T13]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  180.233762][   T13]  ? f2fs_update_inode+0x13d9/0x2620
[  180.233786][   T13]  ? rcu_qs+0xc4/0x170
[  180.233812][   T13]  ? __pfx_rcu_qs+0x10/0x10
[  180.233837][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.233863][   T13]  do_writepages+0x32e/0x550
[  180.233887][   T13]  ? do_raw_spin_lock+0x121/0x290
[  180.233913][   T13]  __writeback_single_inode+0x145/0xff0
[  180.233935][   T13]  ? do_raw_spin_unlock+0x122/0x240
[  180.233957][   T13]  writeback_sb_inodes+0x6c7/0x1010
[  180.233981][   T13]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  180.234005][   T13]  ? fprop_reflect_period_percpu+0x205/0x330
[  180.234029][   T13]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  180.234076][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.234108][   T13]  wb_writeback+0x43b/0xaf0
[  180.234131][   T13]  ? queue_io+0x331/0x590
[  180.234151][   T13]  ? __pfx_wb_writeback+0x10/0x10
[  180.234174][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.234204][   T13]  wb_workfn+0x409/0xef0
[  180.234239][   T13]  ? __pfx_wb_workfn+0x10/0x10
[  180.234267][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.234297][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.234328][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  180.234355][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.234383][   T13]  ? lock_acquire+0x5f/0x360
[  180.234409][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.234436][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  180.234463][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  180.234491][   T13]  process_scheduled_works+0xae1/0x17b0
[  180.234532][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  180.234567][   T13]  worker_thread+0x8a0/0xda0
[  180.234608][   T13]  kthread+0x711/0x8a0
[  180.234629][   T13]  ? __pfx_worker_thread+0x10/0x10
[  180.234658][   T13]  ? __pfx_kthread+0x10/0x10
[  180.234678][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  180.234698][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  180.234719][   T13]  ? __pfx_kthread+0x10/0x10
[  180.234739][   T13]  ret_from_fork+0x47c/0x820
[  180.234768][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  180.234799][   T13]  ? __switch_to_asm+0x39/0x70
[  180.234825][   T13]  ? __switch_to_asm+0x33/0x70
[  180.234850][   T13]  ? __pfx_kthread+0x10/0x10
[  180.234870][   T13]  ret_from_fork_asm+0x1a/0x30
[  180.234905][   T13]  </TASK>
[  180.238094][   T13] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  180.485129][ T7187] netlink: 'syz.4.323': attribute type 1 has an invalid length.
[  180.612663][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted syzkaller #0 PREEMPT(full) 
[  180.612691][   T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  180.612721][   T13] Workqueue: writeback wb_workfn (flush-7:2)
[  180.612792][   T13] Call Trace:
[  180.612800][   T13]  <TASK>
[  180.612811][   T13]  dump_stack_lvl+0x189/0x250
[  180.612839][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.612862][   T13]  ? __pfx_queue_work_on+0x10/0x10
[  180.612890][   T13]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  180.612912][   T13]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  180.612941][   T13]  f2fs_handle_critical_error+0x37c/0x540
[  180.612970][   T13]  f2fs_write_end_io+0x886/0xb60
[  180.613014][   T13]  __submit_merged_bio+0x27a/0x6a0
[  180.613040][   T13]  __submit_merged_write_cond+0x255/0x530
[  180.613067][   T13]  f2fs_write_data_pages+0x261d/0x3000
[  180.613115][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.613150][   T13]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  180.613200][   T13]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  180.613232][   T13]  ? trace_f2fs_writepages+0x7f/0x200
[  180.613257][   T13]  ? f2fs_write_node_pages+0x478/0x6e0
[  180.613282][   T13]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  180.613313][   T13]  ? f2fs_update_inode+0x13d9/0x2620
[  180.613338][   T13]  ? rcu_qs+0xc4/0x170
[  180.613365][   T13]  ? __pfx_rcu_qs+0x10/0x10
[  180.613390][   T13]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  180.613418][   T13]  do_writepages+0x32e/0x550
[  180.613442][   T13]  ? do_raw_spin_lock+0x121/0x290
[  180.613471][   T13]  __writeback_single_inode+0x145/0xff0
[  180.613494][   T13]  ? do_raw_spin_unlock+0x122/0x240
[  180.613518][   T13]  writeback_sb_inodes+0x6c7/0x1010
[  180.613544][   T13]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  180.613570][   T13]  ? fprop_reflect_period_percpu+0x205/0x330
[  180.613597][   T13]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  180.613643][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.613678][   T13]  wb_writeback+0x43b/0xaf0
[  180.613703][   T13]  ? queue_io+0x331/0x590
[  180.613726][   T13]  ? __pfx_wb_writeback+0x10/0x10
[  180.613759][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.613791][   T13]  wb_workfn+0x409/0xef0
[  180.613829][   T13]  ? __pfx_wb_workfn+0x10/0x10
[  180.613858][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.613895][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.613927][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  180.613955][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.613983][   T13]  ? lock_acquire+0x5f/0x360
[  180.614012][   T13]  ? rcu_is_watching+0x15/0xb0
[  180.614039][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  180.614067][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  180.614096][   T13]  process_scheduled_works+0xae1/0x17b0
[  180.614142][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  180.614182][   T13]  worker_thread+0x8a0/0xda0
[  180.614228][   T13]  kthread+0x711/0x8a0
[  180.614250][   T13]  ? __pfx_worker_thread+0x10/0x10
[  180.614279][   T13]  ? __pfx_kthread+0x10/0x10
[  180.614301][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  180.614321][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  180.614343][   T13]  ? __pfx_kthread+0x10/0x10
[  180.614364][   T13]  ret_from_fork+0x47c/0x820
[  180.614395][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  180.614436][   T13]  ? __switch_to_asm+0x39/0x70
[  180.614462][   T13]  ? __switch_to_asm+0x33/0x70
[  180.614488][   T13]  ? __pfx_kthread+0x10/0x10
[  180.614509][   T13]  ret_from_fork_asm+0x1a/0x30
[  180.614547][   T13]  </TASK>
[  180.967475][   T13] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  181.366883][ T7196] loop1: detected capacity change from 0 to 8
[  181.426934][ T7201] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  181.594328][ T7198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.322'.
[  182.155413][ T7209] netlink: 8 bytes leftover after parsing attributes in process `syz.4.329'.
[  184.258016][   T36] Bluetooth: (null): Too short H5 packet
[  184.281609][   T36] Bluetooth: (null): Invalid header checksum
[  184.291220][   T36] Bluetooth: (null): Invalid header checksum
[  184.319979][   T36] Bluetooth: (null): Invalid header checksum
[  184.347703][ T7244] loop2: detected capacity change from 0 to 764
[  184.663793][   T36] Bluetooth: (null): Invalid header checksum
[  184.965352][ T7245] loop1: detected capacity change from 0 to 8
[  185.601737][ T7251] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  186.577040][ T7252] netlink: 4 bytes leftover after parsing attributes in process `syz.4.341'.
[  189.495699][ T7296] netlink: 'syz.1.353': attribute type 10 has an invalid length.
[  189.508008][ T7294] loop4: detected capacity change from 0 to 2048
[  189.516343][ T7296] netlink: 40 bytes leftover after parsing attributes in process `syz.1.353'.
[  189.540838][ T7296] team0: entered promiscuous mode
[  189.551544][ T7296] team_slave_0: entered promiscuous mode
[  189.562901][ T7297] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  189.577108][ T7296] team_slave_1: entered promiscuous mode
[  189.587904][ T7296] team0: entered allmulticast mode
[  189.594341][ T7296] team_slave_0: entered allmulticast mode
[  189.600249][ T7296] team_slave_1: entered allmulticast mode
[  189.623691][ T7296] bridge0: port 3(team0) entered blocking state
[  189.632573][ T7296] bridge0: port 3(team0) entered disabled state
[  189.904413][ T7299] loop1: detected capacity change from 0 to 512
[  189.906778][ T7296] bridge0: port 3(team0) entered blocking state
[  189.917185][ T7296] bridge0: port 3(team0) entered forwarding state
[  190.277128][ T7299] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.414569][ T7307] loop0: detected capacity change from 0 to 8
[  191.361709][ T7299] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  191.483098][ T7307] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  191.722192][ T7304] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=203
[  191.861175][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.871598][ T7304] Remounting filesystem read-only
[  191.880603][ T7320] NILFS (loop4): mounting fs with errors
[  192.069524][ T7304] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=203
[  192.317074][ T7304] Remounting filesystem read-only
[  193.412154][ T7328] loop1: detected capacity change from 0 to 512
[  193.467235][ T7328] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.517150][ T7314] loop3: detected capacity change from 0 to 32768
[  193.535309][ T7328] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.706768][ T7338] gfs2: not a GFS2 filesystem
[  194.111706][ T7314] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.578257][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.675298][ T7353] tipc: Started in network mode
[  194.698615][ T7353] tipc: Node identity 922e94270b1c, cluster identity 4711
[  194.736228][ T7314] XFS (loop3): Ending clean mount
[  194.744116][ T7353] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  194.757595][ T7314] XFS (loop3): Quotacheck needed: Please wait.
[  194.771680][ T7314] XFS (loop3): Quotacheck: Done.
[  194.773245][ T7359] syzkaller0: entered promiscuous mode
[  194.782240][ T7359] syzkaller0: entered allmulticast mode
[  194.986222][ T5871] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  195.299762][ T7353] tipc: Resetting bearer <eth:syzkaller0>
[  195.516925][ T7352] loop0: detected capacity change from 0 to 32768
[  195.533596][ T7352] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.367 (7352)
[  195.608568][ T7363] lo speed is unknown, defaulting to 1000
[  195.762928][ T5936] tipc: Node number set to 2570228775
[  195.903490][ T7352] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  195.915614][ T7352] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  196.703124][ T5859] Bluetooth: hci0: command 0x0406 tx timeout
[  196.709243][ T5859] Bluetooth: hci4: command 0x0406 tx timeout
[  196.715754][ T5859] Bluetooth: hci2: command 0x0406 tx timeout
[  196.721832][ T5859] Bluetooth: hci1: command 0x0406 tx timeout
[  196.738255][ T5859] Bluetooth: hci3: command 0x0406 tx timeout
[  196.898588][ T7390] netlink: 20 bytes leftover after parsing attributes in process `syz.1.376'.
[  196.942093][ T7390] netlink: 4 bytes leftover after parsing attributes in process `syz.1.376'.
[  196.958038][ T7364] tipc: Resetting bearer <eth:syzkaller0>
[  197.031407][ T7352] BTRFS info (device loop0): enabling ssd optimizations
[  197.119478][ T7352] BTRFS info (device loop0): enabling free space tree
[  197.217065][ T3540] Bluetooth: hci5: Frame reassembly failed (-84)
[  197.268198][ T7352] BTRFS info (device loop0): use lzo compression, level 0
[  197.545363][ T7364] tipc: Disabling bearer <eth:syzkaller0>
[  197.552040][   T30] audit: type=1800 audit(1755812965.808:8): pid=7352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.367" name="file1" dev="loop0" ino=260 res=0 errno=0
[  197.716048][   T30] audit: type=1800 audit(1755812965.838:9): pid=7352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.367" name="file1" dev="loop0" ino=260 res=0 errno=0
[  198.149725][ T5857] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  198.342026][ T7419] loop3: detected capacity change from 0 to 256
[  198.349279][ T7419] exfat: Deprecated parameter 'utf8'
[  198.537556][ T7419] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  199.648728][ T5870] Bluetooth: hci5: command 0x1003 tx timeout
[  199.654060][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  199.661388][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  199.671117][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  199.740084][ T7429] loop0: detected capacity change from 0 to 764
[  200.988791][ T7438] loop1: detected capacity change from 0 to 512
[  201.002606][ T7438] EXT4-fs: Ignoring removed mblk_io_submit option
[  201.011503][ T7438] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  201.030649][ T7438] EXT4-fs (loop1): DAX unsupported by block device.
[  202.711623][ T7448] loop4: detected capacity change from 0 to 262144
[  202.725521][ T7448] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.389 (7448)
[  202.758750][ T7448] BTRFS info (device loop4): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  202.768941][ T7448] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  203.515058][ T7448] BTRFS info (device loop4): enabling ssd optimizations
[  203.522082][ T7448] BTRFS info (device loop4): using spread ssd allocation scheme
[  203.529805][ T7448] BTRFS info (device loop4): enabling free space tree
[  204.648293][ T5862] BTRFS info (device loop4): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  205.002169][ T7492] loop3: detected capacity change from 0 to 764
[  209.450000][   T13] Bluetooth: (null): Too short H5 packet
[  209.492933][   T13] Bluetooth: (null): Invalid header checksum
[  209.778103][   T13] Bluetooth: (null): Invalid header checksum
[  210.780547][ T7550] lo speed is unknown, defaulting to 1000
[  212.043356][ T6979] Bluetooth: (null): Invalid header checksum
[  212.051527][ T6979] Bluetooth: (null): Invalid header checksum
[  212.433572][ T6979] Bluetooth: (null): Invalid header checksum
[  212.557084][ T6979] Bluetooth: (null): Invalid header checksum
[  212.669645][ T6979] Bluetooth: (null): Invalid header checksum
[  212.681750][ T6979] Bluetooth: (null): Invalid header checksum
[  214.420262][ T7593] loop2: detected capacity change from 0 to 1024
[  214.613382][ T7593] EXT4-fs: Ignoring removed orlov option
[  215.085394][ T7603] loop4: detected capacity change from 0 to 764
[  215.190557][ T3531] Bluetooth: (null): Too short H5 packet
[  215.198484][ T3531] Bluetooth: (null): Invalid header checksum
[  215.205293][ T3531] Bluetooth: (null): Invalid header checksum
[  215.211407][ T3531] Bluetooth: (null): Invalid header checksum
[  215.218324][ T3531] Bluetooth: (null): Invalid header checksum
[  215.225110][ T3531] Bluetooth: (null): Invalid header checksum
[  215.309069][ T7593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.430574][   T30] audit: type=1800 audit(1755812983.658:10): pid=7593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.425" name="bus" dev="loop2" ino=18 res=0 errno=0
[  215.462911][   T30] audit: type=1804 audit(1755812983.658:11): pid=7593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.425" name="/newroot/90/bus/bus" dev="loop2" ino=18 res=1 errno=0
[  215.525813][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.164101][ T7623] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  216.164101][ T7623]    program syz.1.427 not setting count and/or reply_len properly
[  217.084708][ T1079] Bluetooth: (null): Invalid header checksum
[  217.092073][ T1079] Bluetooth: (null): Invalid header checksum
[  217.101695][ T1079] Bluetooth: (null): Invalid header checksum
[  217.114905][ T1079] Bluetooth: (null): Invalid header checksum
[  219.685455][ T7650] loop0: detected capacity change from 0 to 764
[  219.818710][ T7651] loop1: detected capacity change from 0 to 8
[  220.446777][ T1079] Bluetooth: (null): Too short H5 packet
[  220.486808][ T7648] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  220.505583][ T1079] Bluetooth: (null): Invalid header checksum
[  220.536422][ T1079] Bluetooth: (null): Invalid header checksum
[  220.559204][ T1079] Bluetooth: (null): Invalid header checksum
[  220.573220][ T1079] Bluetooth: (null): Invalid header checksum
[  220.609898][ T1079] Bluetooth: (null): Invalid header checksum
[  220.728891][ T1079] Bluetooth: (null): Invalid header checksum
[  222.354588][ T7676] netlink: 4 bytes leftover after parsing attributes in process `syz.0.449'.
[  224.577673][ T7710] loop4: detected capacity change from 0 to 764
[  227.372875][ T5870] Bluetooth: hci5: command 0x1003 tx timeout
[  227.378981][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  228.004328][ T7746] loop0: detected capacity change from 0 to 8
[  228.161516][ T7750] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  228.679194][ T7738] lo speed is unknown, defaulting to 1000
[  231.058115][ T7783] loop2: detected capacity change from 0 to 764
[  232.422080][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  232.610448][ T7798] loop1: detected capacity change from 0 to 512
[  232.675713][ T7798] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  232.735519][ T7798] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.477: corrupted in-inode xattr: overlapping e_value 
[  232.823285][ T7798] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.477: couldn't read orphan inode 15 (err -117)
[  232.870955][ T7798] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.921892][ T7798] netlink: 32 bytes leftover after parsing attributes in process `syz.1.477'.
[  232.943263][ T7798] netlink: 32 bytes leftover after parsing attributes in process `syz.1.477'.
[  232.978758][ T7798] netlink: 13 bytes leftover after parsing attributes in process `syz.1.477'.
[  233.738950][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.413745][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  234.420110][ T5870] Bluetooth: hci5: command 0x1003 tx timeout
[  235.629973][ T7828] loop1: detected capacity change from 0 to 8
[  236.458346][ T7828] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  237.686893][ T7858] loop4: detected capacity change from 0 to 512
[  237.806574][ T7858] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  237.926773][ T7858] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.492: corrupted in-inode xattr: overlapping e_value 
[  237.952913][ T7858] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.492: couldn't read orphan inode 15 (err -117)
[  238.041197][ T7858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.062138][ T7865] lo speed is unknown, defaulting to 1000
[  238.145148][ T7858] netlink: 32 bytes leftover after parsing attributes in process `syz.4.492'.
[  238.223292][ T7858] netlink: 32 bytes leftover after parsing attributes in process `syz.4.492'.
[  238.232285][ T7858] netlink: 13 bytes leftover after parsing attributes in process `syz.4.492'.
[  239.068294][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.445377][ T1079] Bluetooth: hci5: Frame reassembly failed (-84)
[  239.986887][ T7894] loop0: detected capacity change from 0 to 764
[  240.683263][ T3540] Bluetooth: (null): Invalid header checksum
[  240.705318][ T3540] Bluetooth: (null): Invalid header checksum
[  240.796328][ T3540] Bluetooth: (null): Invalid header checksum
[  240.828077][ T7905] loop0: detected capacity change from 0 to 8
[  240.900003][ T7906] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  240.910295][ T1079] Bluetooth: (null): Invalid header checksum
[  241.456699][   T51] Bluetooth: hci5: command 0x1003 tx timeout
[  241.466545][ T5870] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  242.776074][ T7922] loop4: detected capacity change from 0 to 512
[  242.814996][ T7922] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  242.870151][ T7922] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.508: corrupted in-inode xattr: overlapping e_value 
[  242.963914][ T7922] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.508: couldn't read orphan inode 15 (err -117)
[  242.996246][ T7937] netlink: 4 bytes leftover after parsing attributes in process `syz.3.512'.
[  243.144710][ T7922] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.033183][ T7922] netlink: 76 bytes leftover after parsing attributes in process `syz.4.508'.
[  244.151329][ T7922] netlink: 32 bytes leftover after parsing attributes in process `syz.4.508'.
[  244.184467][ T7922] netlink: 32 bytes leftover after parsing attributes in process `syz.4.508'.
[  244.196503][ T7922] netlink: 13 bytes leftover after parsing attributes in process `syz.4.508'.
[  244.978112][ T7955] lo speed is unknown, defaulting to 1000
[  244.987191][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.483807][ T3506] Bluetooth: (null): Invalid header checksum
[  245.517878][ T3506] Bluetooth: (null): Invalid header checksum
[  245.593761][ T1079] Bluetooth: (null): Invalid header checksum
[  245.740388][ T1079] Bluetooth: (null): Invalid header checksum
[  246.247131][   T59] Bluetooth: hci5: Frame reassembly failed (-84)
[  246.601900][ T1165] Bluetooth: (null): Too short H5 packet
[  246.632900][ T1165] Bluetooth: (null): Invalid header checksum
[  246.657809][ T1165] Bluetooth: (null): Invalid header checksum
[  246.678309][ T1165] Bluetooth: (null): Invalid header checksum
[  246.783239][   T59] Bluetooth: (null): Invalid header checksum
[  246.967806][   T59] Bluetooth: (null): Invalid header checksum
[  247.596136][ T7993] loop3: detected capacity change from 0 to 256
[  247.703825][ T7993] exfat: Deprecated parameter 'utf8'
[  247.733213][ T7993] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  248.200364][   T51] Bluetooth: hci5: command 0x1003 tx timeout
[  248.210117][ T5870] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  248.777993][ T8004] loop0: detected capacity change from 0 to 512
[  248.936730][ T8004] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  249.127838][ T8004] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.528: corrupted in-inode xattr: overlapping e_value 
[  249.309441][ T8004] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.528: couldn't read orphan inode 15 (err -117)
[  249.406634][ T8004] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.461280][ T8004] netlink: 76 bytes leftover after parsing attributes in process `syz.0.528'.
[  249.535317][ T8004] netlink: 32 bytes leftover after parsing attributes in process `syz.0.528'.
[  249.556412][ T8004] netlink: 32 bytes leftover after parsing attributes in process `syz.0.528'.
[  249.568962][ T8004] netlink: 13 bytes leftover after parsing attributes in process `syz.0.528'.
[  250.015849][ T8022] loop4: detected capacity change from 0 to 8
[  250.088209][ T8023] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  250.817482][ T5857] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.773420][ T6294] Bluetooth: hci5: Frame reassembly failed (-84)
[  253.343534][ T8046] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  253.343534][ T8046]    program syz.3.537 not setting count and/or reply_len properly
[  254.343881][ T8056] netlink: 4 bytes leftover after parsing attributes in process `syz.1.542'.
[  254.554661][ T8061] loop4: detected capacity change from 0 to 512
[  254.607559][ T8061] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  254.692815][ T8068] loop1: detected capacity change from 0 to 8
[  254.765186][ T8070] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  254.781596][ T8061] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.544: corrupted in-inode xattr: overlapping e_value 
[  254.812866][ T5870] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  255.136291][ T8061] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.544: couldn't read orphan inode 15 (err -117)
[  255.405648][ T8061] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.604917][ T8074] loop0: detected capacity change from 0 to 256
[  255.612906][ T8074] exfat: Deprecated parameter 'utf8'
[  255.667107][ T8074] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  255.849022][ T8061] netlink: 76 bytes leftover after parsing attributes in process `syz.4.544'.
[  255.927330][ T8061] netlink: 32 bytes leftover after parsing attributes in process `syz.4.544'.
[  256.021516][ T3540] Bluetooth: (null): Too short H5 packet
[  256.058958][ T8061] netlink: 32 bytes leftover after parsing attributes in process `syz.4.544'.
[  256.245270][ T8061] netlink: 13 bytes leftover after parsing attributes in process `syz.4.544'.
[  256.253714][ T3540] Bluetooth: (null): Invalid header checksum
[  256.669558][ T3540] Bluetooth: (null): Invalid header checksum
[  257.516987][ T8100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.554'.
[  258.211642][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.937717][ T8125] loop4: detected capacity change from 0 to 8
[  260.015971][ T8128] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  261.097469][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  261.104171][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  261.233827][ T8132] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  261.233827][ T8132]    program syz.2.558 not setting count and/or reply_len properly
[  262.584345][ T8146] lo speed is unknown, defaulting to 1000
[  262.830932][ T8152] loop1: detected capacity change from 0 to 764
[  262.838986][ T3540] Bluetooth: (null): Too short H5 packet
[  262.849738][ T3540] Bluetooth: (null): Invalid header checksum
[  262.884406][ T3540] Bluetooth: (null): Invalid header checksum
[  262.936572][ T3540] Bluetooth: (null): Invalid header checksum
[  262.997262][ T8154] loop4: detected capacity change from 0 to 256
[  263.005627][ T8154] exfat: Deprecated parameter 'utf8'
[  263.019844][ T8154] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  263.038388][ T3540] Bluetooth: (null): Invalid header checksum
[  266.031347][ T6979] Bluetooth: hci5: Frame reassembly failed (-84)
[  267.649491][ T8203] loop3: detected capacity change from 0 to 256
[  267.656616][ T8203] exfat: Deprecated parameter 'utf8'
[  267.772345][ T8203] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  268.073072][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  268.079446][ T5870] Bluetooth: hci5: command 0x1003 tx timeout
[  270.454085][ T8229] lo speed is unknown, defaulting to 1000
[  270.803198][ T8242] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  270.803198][ T8242]    program syz.0.583 not setting count and/or reply_len properly
[  270.940433][ T8246] netlink: 4 bytes leftover after parsing attributes in process `syz.4.591'.
[  271.501925][ T8251] loop2: detected capacity change from 0 to 764
[  272.348863][ T3540] Bluetooth: hci5: Frame reassembly failed (-84)
[  272.361628][ T3531] Bluetooth: (null): Too short H5 packet
[  272.373629][ T3531] Bluetooth: (null): Invalid header checksum
[  272.379774][ T3531] Bluetooth: (null): Invalid header checksum
[  272.386778][ T3531] Bluetooth: (null): Invalid header checksum
[  272.392921][ T3531] Bluetooth: (null): Invalid header checksum
[  272.425930][ T3531] Bluetooth: (null): Invalid header checksum
[  272.534743][   T12] Bluetooth: (null): Invalid header checksum
[  272.964736][ T8276] loop1: detected capacity change from 0 to 256
[  272.971765][ T8276] exfat: Deprecated parameter 'utf8'
[  273.031986][ T8276] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  274.267415][   T59] Bluetooth: (null): Invalid header checksum
[  274.273746][ T5870] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  274.347136][   T59] Bluetooth: (null): Invalid header checksum
[  274.354780][   T59] Bluetooth: (null): Invalid header checksum
[  275.709932][ T8310] netlink: 4 bytes leftover after parsing attributes in process `syz.3.606'.
[  276.302662][ T8331] loop3: detected capacity change from 0 to 256
[  276.309863][ T8331] exfat: Deprecated parameter 'utf8'
[  276.431399][ T8331] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  279.111600][ T8364] loop2: detected capacity change from 0 to 512
[  279.231089][ T8364] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  279.735583][ T8364] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.619: corrupted in-inode xattr: overlapping e_value 
[  279.862544][ T8364] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.619: couldn't read orphan inode 15 (err -117)
[  280.053271][ T8364] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.126665][ T8364] netlink: 16 bytes leftover after parsing attributes in process `syz.2.619'.
[  280.180476][ T8364] netlink: 32 bytes leftover after parsing attributes in process `syz.2.619'.
[  280.258395][ T8364] netlink: 32 bytes leftover after parsing attributes in process `syz.2.619'.
[  280.304412][ T8392] loop3: detected capacity change from 0 to 8
[  280.340516][ T8393] netlink: 4 bytes leftover after parsing attributes in process `syz.0.622'.
[  280.349474][ T8364] netlink: 13 bytes leftover after parsing attributes in process `syz.2.619'.
[  280.465760][ T8386] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  281.335267][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.537950][ T1079] Bluetooth: (null): Invalid header checksum
[  282.806446][ T1079] Bluetooth: (null): Invalid header checksum
[  285.065031][ T8440] netlink: 4 bytes leftover after parsing attributes in process `syz.0.639'.
[  285.251778][ T8443] loop2: detected capacity change from 0 to 512
[  285.272952][ T8443] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  285.515136][ T8451] loop0: detected capacity change from 0 to 256
[  285.519459][ T8443] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.640: corrupted in-inode xattr: overlapping e_value 
[  285.522233][ T8451] exfat: Deprecated parameter 'utf8'
[  285.569277][ T8451] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  285.610949][ T8443] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.640: couldn't read orphan inode 15 (err -117)
[  285.741824][ T8443] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.775673][ T8443] netlink: 16 bytes leftover after parsing attributes in process `syz.2.640'.
[  285.834374][ T8457] netlink: 32 bytes leftover after parsing attributes in process `syz.2.640'.
[  285.881517][ T8457] netlink: 32 bytes leftover after parsing attributes in process `syz.2.640'.
[  286.256660][ T8457] netlink: 13 bytes leftover after parsing attributes in process `syz.2.640'.
[  286.683881][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.504219][ T8476] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  287.504219][ T8476]    program syz.0.645 not setting count and/or reply_len properly
[  288.744566][ T1079] Bluetooth: (null): Invalid header checksum
[  288.833522][ T1079] Bluetooth: (null): Invalid header checksum
[  288.854238][ T6294] Bluetooth: (null): Invalid header checksum
[  289.807294][ T1079] Bluetooth: (null): Invalid header checksum
[  289.995919][ T1079] Bluetooth: (null): Invalid header checksum
[  290.028626][ T1079] Bluetooth: (null): Invalid header checksum
[  290.062567][ T1079] Bluetooth: (null): Invalid header checksum
[  290.090790][ T1079] Bluetooth: (null): Invalid header checksum
[  290.106413][ T1079] Bluetooth: (null): Invalid header checksum
[  290.119302][ T1079] Bluetooth: (null): Invalid header checksum
[  290.138013][ T1079] Bluetooth: (null): Invalid header checksum
[  290.885731][ T8505] loop2: detected capacity change from 0 to 256
[  290.895069][ T8505] exfat: Deprecated parameter 'utf8'
[  290.969743][ T8505] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  291.998887][ T8504] lo speed is unknown, defaulting to 1000
[  292.425310][ T8527] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  292.425310][ T8527]    program syz.4.662 not setting count and/or reply_len properly
[  295.081721][ T3506] Bluetooth: hci5: Frame reassembly failed (-84)
[  295.102739][ T8546] loop0: detected capacity change from 0 to 764
[  295.346126][ T6979] Bluetooth: (null): Invalid header checksum
[  295.372568][ T6979] Bluetooth: (null): Invalid header checksum
[  295.401578][ T6979] Bluetooth: (null): Invalid header checksum
[  295.581967][ T6979] Bluetooth: (null): Invalid header checksum
[  295.624284][ T6294] Bluetooth: (null): Invalid header checksum
[  297.380170][ T5870] Bluetooth: hci5: command 0x1003 tx timeout
[  297.386306][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  297.902927][ T8577] loop2: detected capacity change from 0 to 764
[  299.260741][ T8588] netlink: 4 bytes leftover after parsing attributes in process `syz.0.682'.
[  299.293691][ T8584] loop4: detected capacity change from 0 to 512
[  299.415471][ T8584] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  299.464890][ T8584] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.681: corrupted in-inode xattr: overlapping e_value 
[  299.943907][ T8584] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.681: couldn't read orphan inode 15 (err -117)
[  300.292055][ T8584] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  300.381350][ T8600] loop3: detected capacity change from 0 to 8
[  300.403984][ T8584] netlink: 8 bytes leftover after parsing attributes in process `syz.4.681'.
[  301.276294][ T8605] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  301.298330][ T8586] netlink: 32 bytes leftover after parsing attributes in process `syz.4.681'.
[  301.345957][ T8586] netlink: 32 bytes leftover after parsing attributes in process `syz.4.681'.
[  301.345980][ T8586] netlink: 13 bytes leftover after parsing attributes in process `syz.4.681'.
[  301.559335][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  301.743936][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.013463][ T8618] loop4: detected capacity change from 0 to 764
[  302.038706][ T8621] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  302.038706][ T8621]    program syz.1.688 not setting count and/or reply_len properly
[  302.523906][ T1079] Bluetooth: (null): Invalid header checksum
[  302.536721][ T1079] Bluetooth: (null): Invalid header checksum
[  302.544978][ T1079] Bluetooth: (null): Invalid header checksum
[  302.556477][ T1079] Bluetooth: (null): Invalid header checksum
[  302.568015][ T1079] Bluetooth: (null): Invalid header checksum
[  303.499762][ T8634] loop2: detected capacity change from 0 to 8
[  303.632832][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  303.638999][ T5870] Bluetooth: hci5: command 0x1003 tx timeout
[  303.717013][ T8634] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  304.756386][ T8656] loop0: detected capacity change from 0 to 256
[  304.763710][ T8656] exfat: Deprecated parameter 'utf8'
[  305.077719][ T8656] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  306.462447][ T8664] loop1: detected capacity change from 0 to 764
[  306.671706][ T8674] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  306.671706][ T8674]    program syz.4.702 not setting count and/or reply_len properly
[  306.946524][ T6294] Bluetooth: hci5: Frame reassembly failed (-84)
[  307.328910][ T8685] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  308.973477][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  309.332994][ T8703] lo speed is unknown, defaulting to 1000
[  310.093762][ T8716] loop2: detected capacity change from 0 to 256
[  310.100817][ T8716] exfat: Deprecated parameter 'utf8'
[  310.480251][ T8716] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  311.138761][ T8726] loop2: detected capacity change from 0 to 764
[  311.343496][ T8728] loop4: detected capacity change from 0 to 512
[  311.398871][ T8728] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  311.460341][ T8728] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.718: corrupted in-inode xattr: overlapping e_value 
[  311.526600][ T8728] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.718: couldn't read orphan inode 15 (err -117)
[  311.586908][ T8728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  311.610194][ T8732] loop1: detected capacity change from 0 to 8
[  311.633776][ T8728] netlink: 8 bytes leftover after parsing attributes in process `syz.4.718'.
[  311.659403][ T8728] netlink: 32 bytes leftover after parsing attributes in process `syz.4.718'.
[  311.768242][ T8734] loop3: detected capacity change from 0 to 764
[  311.842017][ T8736] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  311.852659][ T8728] netlink: 32 bytes leftover after parsing attributes in process `syz.4.718'.
[  312.225317][ T8728] netlink: 13 bytes leftover after parsing attributes in process `syz.4.718'.
[  313.152280][   T36] Bluetooth: hci5: Frame reassembly failed (-84)
[  313.505644][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.644937][ T1079] Bluetooth: (null): Too short H5 packet
[  313.650673][ T1079] Bluetooth: (null): Invalid header checksum
[  313.659719][ T1079] Bluetooth: (null): Invalid header checksum
[  313.671573][ T1079] Bluetooth: (null): Invalid header checksum
[  313.760287][ T8769] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  313.760287][ T8769]    program syz.0.726 not setting count and/or reply_len properly
[  313.783956][   T36] Bluetooth: (null): Invalid header checksum
[  313.893579][   T36] Bluetooth: (null): Invalid header checksum
[  314.004216][ T1079] Bluetooth: (null): Invalid header checksum
[  314.114796][   T13] Bluetooth: (null): Invalid header checksum
[  314.223980][ T3506] Bluetooth: (null): Invalid header checksum
[  314.333513][ T3506] Bluetooth: (null): Invalid header checksum
[  314.627538][ T8775] loop2: detected capacity change from 0 to 8
[  314.704808][ T8776] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  315.133080][   T51] Bluetooth: hci5: command 0x1003 tx timeout
[  315.139170][ T5870] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  315.219040][   T13] Bluetooth: (null): Invalid header checksum
[  315.230060][   T13] Bluetooth: (null): Invalid header checksum
[  315.267167][ T3506] Bluetooth: (null): Invalid header checksum
[  315.377341][ T1079] Bluetooth: (null): Invalid header checksum
[  315.487028][ T3506] Bluetooth: (null): Invalid header checksum
[  315.564809][ T8792] loop1: detected capacity change from 0 to 764
[  315.624718][   T59] Bluetooth: (null): Invalid header checksum
[  315.782838][   T13] Bluetooth: (null): Invalid header checksum
[  315.871106][   T13] Bluetooth: (null): Invalid header checksum
[  315.924712][   T59] Bluetooth: (null): Invalid header checksum
[  317.053428][ T8808] loop1: detected capacity change from 0 to 512
[  317.124573][ T8808] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  317.181056][ T8808] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.738: corrupted in-inode xattr: overlapping e_value 
[  317.287793][ T8808] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.738: couldn't read orphan inode 15 (err -117)
[  317.353738][ T8808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.409836][ T8808] netlink: 8 bytes leftover after parsing attributes in process `syz.1.738'.
[  317.488327][ T8817] netlink: 32 bytes leftover after parsing attributes in process `syz.1.738'.
[  317.894206][ T8817] netlink: 32 bytes leftover after parsing attributes in process `syz.1.738'.
[  317.959274][ T8817] netlink: 13 bytes leftover after parsing attributes in process `syz.1.738'.
[  318.357287][ T8823] loop4: detected capacity change from 0 to 8
[  318.425849][ T8826] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  318.765873][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.237473][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  320.742630][ T8852] loop1: detected capacity change from 0 to 764
[  321.212800][ T5870] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  321.749834][ T8863] loop0: detected capacity change from 0 to 8
[  321.859490][ T8864] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  321.988114][ T8869] loop3: detected capacity change from 0 to 8
[  322.495503][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  322.501947][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  322.599464][ T8874] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  322.616263][ T8873] loop0: detected capacity change from 0 to 512
[  322.638646][ T8873] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  322.701277][ T8873] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.756: corrupted in-inode xattr: overlapping e_value 
[  322.719522][ T8873] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.756: couldn't read orphan inode 15 (err -117)
[  322.733803][ T8873] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.750768][ T8873] netlink: 8 bytes leftover after parsing attributes in process `syz.0.756'.
[  322.771884][ T8873] netlink: 32 bytes leftover after parsing attributes in process `syz.0.756'.
[  322.781384][ T8873] netlink: 32 bytes leftover after parsing attributes in process `syz.0.756'.
[  322.848860][ T8873] netlink: 13 bytes leftover after parsing attributes in process `syz.0.756'.
[  322.884428][   T30] audit: type=1326 audit(1755813091.148:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8879 comm="syz.3.758" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb80098ebe9 code=0x0
[  323.601259][ T5857] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.724765][ T8899] lo speed is unknown, defaulting to 1000
[  325.361239][ T8913] loop2: detected capacity change from 0 to 8
[  325.421548][ T8916] netlink: 'syz.3.765': attribute type 10 has an invalid length.
[  326.292200][ T8921] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  326.363605][ T8916] netlink: 40 bytes leftover after parsing attributes in process `syz.3.765'.
[  326.672929][ T8916] team0: entered promiscuous mode
[  326.677998][ T8916] team_slave_0: entered promiscuous mode
[  327.245436][ T8916] team_slave_1: entered promiscuous mode
[  327.266189][ T8916] team0: entered allmulticast mode
[  327.271635][ T8916] team_slave_0: entered allmulticast mode
[  327.278116][ T8916] team_slave_1: entered allmulticast mode
[  327.286830][ T8916] bridge0: port 3(team0) entered blocking state
[  327.294493][ T8916] bridge0: port 3(team0) entered disabled state
[  327.309749][ T8916] bridge0: port 3(team0) entered blocking state
[  327.316138][ T8916] bridge0: port 3(team0) entered forwarding state
[  327.398404][   T30] audit: type=1326 audit(1755813095.658:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8936 comm="syz.3.773" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb80098ebe9 code=0x0
[  329.320511][ T8953] lo speed is unknown, defaulting to 1000
[  330.467978][ T8966] loop1: detected capacity change from 0 to 512
[  330.485377][ T8971] loop0: detected capacity change from 0 to 8
[  330.499664][ T8967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.778'.
[  330.539722][ T8966] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  330.568815][ T8976] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  330.623017][ T8966] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.780: corrupted in-inode xattr: overlapping e_value 
[  330.711584][ T8966] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.780: couldn't read orphan inode 15 (err -117)
[  330.773755][ T8966] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.824313][ T8981] netlink: 'syz.2.783': attribute type 10 has an invalid length.
[  330.845744][ T8966] netlink: 32 bytes leftover after parsing attributes in process `syz.1.780'.
[  330.854929][ T8966] netlink: 32 bytes leftover after parsing attributes in process `syz.1.780'.
[  330.863953][ T8966] netlink: 13 bytes leftover after parsing attributes in process `syz.1.780'.
[  330.865199][ T8981] netlink: 40 bytes leftover after parsing attributes in process `syz.2.783'.
[  330.902684][ T8981] team0: entered promiscuous mode
[  330.909527][ T8981] team_slave_0: entered promiscuous mode
[  330.923702][ T8981] team_slave_1: entered promiscuous mode
[  330.944313][ T8981] team0: entered allmulticast mode
[  330.950494][ T8981] team_slave_0: entered allmulticast mode
[  331.409017][ T8981] team_slave_1: entered allmulticast mode
[  331.432447][ T8981] bridge0: port 3(team0) entered blocking state
[  331.442286][ T8981] bridge0: port 3(team0) entered disabled state
[  331.519673][ T8981] bridge0: port 3(team0) entered blocking state
[  331.526188][ T8981] bridge0: port 3(team0) entered forwarding state
[  331.961108][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.144123][ T8994] loop0: detected capacity change from 0 to 40427
[  332.158930][ T8994] F2FS-fs (loop0): invalid crc value
[  332.198895][ T8994] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  332.212846][ T8994] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  335.579230][ T9035] 9p: Bad value for 'rfdno'
[  335.822081][ T9042] loop0: detected capacity change from 0 to 512
[  335.889834][ T9039] lo speed is unknown, defaulting to 1000
[  336.331776][ T9042] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  336.434951][ T9042] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.799: corrupted in-inode xattr: overlapping e_value 
[  336.487583][ T9042] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.799: couldn't read orphan inode 15 (err -117)
[  336.574020][ T9042] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.608437][ T9054] loop2: detected capacity change from 0 to 8
[  336.689647][ T9042] netlink: 32 bytes leftover after parsing attributes in process `syz.0.799'.
[  336.701066][ T9042] netlink: 32 bytes leftover after parsing attributes in process `syz.0.799'.
[  336.742668][ T9042] netlink: 13 bytes leftover after parsing attributes in process `syz.0.799'.
[  336.855090][ T5989] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  336.903639][ T9064] loop3: detected capacity change from 0 to 8
[  336.947948][ T5857] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.023619][ T5989] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  337.035443][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.045413][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.107913][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.126621][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.135914][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.152017][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.226942][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.318036][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.329200][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.339837][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.355040][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.375693][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.384838][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.393990][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.411725][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.430292][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.439506][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.450996][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.460076][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.469251][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.480556][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.489592][ T5989] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  337.500919][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  337.520884][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0
[  337.533793][ T5989] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  337.543098][ T5989] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  337.551628][ T5989] usb 2-1: Product: syz
[  337.557791][ T5989] usb 2-1: Manufacturer: syz
[  337.562525][ T5989] usb 2-1: SerialNumber: syz
[  337.598795][ T5989] usb 2-1: config 0 descriptor??
[  337.618653][ T5989] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0
[  337.803658][ T9073] 9p: Bad value for 'rfdno'
[  337.890347][ T5983] usb 2-1: USB disconnect, device number 3
[  337.910815][ T5983] yurex 2-1:0.0: USB YUREX #0 now disconnected
[  337.996379][ T9077] siw: device registration error -23
[  339.681975][ T9093] loop4: detected capacity change from 0 to 764
[  339.806931][ T9097] loop3: detected capacity change from 0 to 8
[  339.869030][ T9099] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  341.107637][ T9109] loop4: detected capacity change from 0 to 8
[  341.257660][ T9112] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  341.695434][ T9120] loop4: detected capacity change from 0 to 256
[  341.707453][ T9120] exfat: Deprecated parameter 'utf8'
[  342.007071][ T9120] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  342.771039][ T9126] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  342.771039][ T9126]    program syz.0.824 not setting count and/or reply_len properly
[  343.743375][ T9144] siw: device registration error -23
[  344.165302][ T9147] loop1: detected capacity change from 0 to 1024
[  344.172541][ T9147] EXT4-fs: Ignoring removed orlov option
[  344.211576][ T9147] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.262899][ T9153] loop4: detected capacity change from 0 to 8
[  344.357395][ T9154] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  345.277372][   T30] audit: type=1800 audit(1755813625.540:14): pid=9147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.831" name="bus" dev="loop1" ino=18 res=0 errno=0
[  346.083803][ T9169] lo speed is unknown, defaulting to 1000
[  346.976892][ T9168] loop0: detected capacity change from 0 to 262144
[  347.009830][ T9168] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.836 (9168)
[  347.027025][ T9168] BTRFS info (device loop0): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  347.038826][ T9168] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  347.061705][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.232351][ T9168] BTRFS info (device loop0): enabling ssd optimizations
[  347.239618][ T9168] BTRFS info (device loop0): using spread ssd allocation scheme
[  347.247386][ T9168] BTRFS info (device loop0): enabling free space tree
[  347.446735][ T5857] BTRFS info (device loop0): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  347.685852][ T9189] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  347.685852][ T9189]    program syz.1.837 not setting count and/or reply_len properly
[  350.675679][ T9232] gfs2: not a GFS2 filesystem
[  351.035536][ T9245] loop3: detected capacity change from 0 to 8
[  351.367678][ T9249] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  352.106360][ T9262] lo speed is unknown, defaulting to 1000
[  353.945527][   T12] Bluetooth: (null): Invalid header checksum
[  353.991290][   T12] Bluetooth: (null): Invalid header checksum
[  354.069330][ T6979] Bluetooth: (null): Invalid header checksum
[  354.793954][ T9282] gfs2: not a GFS2 filesystem
[  355.702439][ T9291] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  357.141668][ T9305] loop1: detected capacity change from 0 to 256
[  357.193264][ T9305] exfat: Deprecated parameter 'utf8'
[  357.234889][ T9305] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  357.462380][ T9294] Bluetooth: MGMT ver 1.23
[  357.539061][ T9294] netlink: 'syz.2.869': attribute type 1 has an invalid length.
[  358.524568][ T9321] netlink: 'syz.4.875': attribute type 10 has an invalid length.
[  358.532467][ T9321] netlink: 40 bytes leftover after parsing attributes in process `syz.4.875'.
[  358.541766][ T9321] team0: entered promiscuous mode
[  358.547774][ T9321] team_slave_0: entered promiscuous mode
[  358.555399][ T9321] team_slave_1: entered promiscuous mode
[  358.561283][ T9321] team0: entered allmulticast mode
[  358.566738][ T9321] team_slave_0: entered allmulticast mode
[  358.572542][ T9321] team_slave_1: entered allmulticast mode
[  358.579324][ T9321] bridge0: port 3(team0) entered blocking state
[  358.655310][ T9321] bridge0: port 3(team0) entered disabled state
[  358.776072][ T9321] bridge0: port 3(team0) entered blocking state
[  358.782554][ T9321] bridge0: port 3(team0) entered forwarding state
[  359.779546][ T9322] loop4: detected capacity change from 0 to 512
[  360.142119][ T9322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.156486][ T9322] ext4 filesystem being mounted at /164/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  360.634175][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.774063][ T9342] netlink: 4 bytes leftover after parsing attributes in process `syz.3.881'.
[  361.088931][ T9354] netlink: 'syz.0.885': attribute type 1 has an invalid length.
[  361.438079][ T9352] loop2: detected capacity change from 0 to 1024
[  361.497329][ T9352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  361.533156][ T9352] ext4 filesystem being mounted at /176/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.224441][ T9361] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.884: lblock 0 mapped to illegal pblock 0 (length 6)
[  362.243409][ T9361] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  362.256051][ T9361] EXT4-fs (loop2): This should not happen!! Data will be lost
[  362.256051][ T9361] 
[  362.808847][ T1165] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:6: lblock 8 mapped to illegal pblock 8 (length 8)
[  362.841701][ T1165] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  362.878096][ T1165] EXT4-fs (loop2): This should not happen!! Data will be lost
[  362.878096][ T1165] 
[  363.074064][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  363.181213][ T3506] Bluetooth: (null): Invalid header checksum
[  363.203705][ T3506] Bluetooth: (null): Invalid header checksum
[  363.268397][ T9375] loop0: detected capacity change from 0 to 8
[  363.466970][ T9376] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  363.527639][ T9381] loop2: detected capacity change from 0 to 8
[  363.596362][ T9382] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  363.962388][ T9386] loop0: detected capacity change from 0 to 512
[  363.989827][ T9386] EXT4-fs: Ignoring removed mblk_io_submit option
[  364.025883][ T9386] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  364.049165][ T9386] EXT4-fs (loop0): DAX unsupported by block device.
[  364.408499][ T9392] netlink: 'syz.4.893': attribute type 10 has an invalid length.
[  364.425567][ T9392] netlink: 40 bytes leftover after parsing attributes in process `syz.4.893'.
[  364.812977][ T9392] loop4: detected capacity change from 0 to 512
[  364.913794][ T9395] loop2: detected capacity change from 0 to 1024
[  364.924404][ T9395] EXT4-fs: Ignoring removed orlov option
[  364.963558][ T9392] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.979593][ T9395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.992960][ T9392] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  365.195168][   T30] audit: type=1800 audit(1755813901.435:15): pid=9395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.896" name="bus" dev="loop2" ino=18 res=0 errno=0
[  365.269334][   T30] audit: type=1804 audit(1755813901.435:16): pid=9401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.896" name="/newroot/179/bus/bus" dev="loop2" ino=18 res=1 errno=0
[  365.385259][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.385728][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.356380][ T9407] netlink: 'syz.4.898': attribute type 1 has an invalid length.
[  366.639298][ T9427] loop3: detected capacity change from 0 to 8
[  367.254181][ T9432] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  367.292042][ T1165] Bluetooth: (null): Invalid header checksum
[  367.736942][ T1165] Bluetooth: (null): Invalid header checksum
[  367.906815][ T9435] loop0: detected capacity change from 0 to 40427
[  367.932065][ T9435] F2FS-fs (loop0): invalid crc value
[  367.987018][ T9435] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  368.003734][ T9435] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  368.204652][ T9440] loop3: detected capacity change from 0 to 8
[  368.313319][ T9446] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  368.359522][ T9445] gfs2: not a GFS2 filesystem
[  368.413396][ T9444] loop2: detected capacity change from 0 to 1024
[  369.504138][ T9444] EXT4-fs: Ignoring removed orlov option
[  369.581700][ T9444] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.747352][ T9462] loop3: detected capacity change from 0 to 262144
[  370.771714][ T9462] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.914 (9462)
[  371.054203][ T9462] BTRFS info (device loop3): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  371.064604][ T9462] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  371.322955][   T30] audit: type=1800 audit(1755813907.415:17): pid=9444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.908" name="bus" dev="loop2" ino=18 res=0 errno=0
[  371.557699][ T9462] BTRFS info (device loop3): enabling ssd optimizations
[  371.566480][ T9462] BTRFS info (device loop3): using spread ssd allocation scheme
[  371.574263][ T9462] BTRFS info (device loop3): enabling free space tree
[  371.606841][ T9498] netlink: 4 bytes leftover after parsing attributes in process `syz.0.912'.
[  371.612232][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.794657][ T5871] BTRFS info (device loop3): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  371.810739][ T9506] loop2: detected capacity change from 0 to 8
[  371.977188][ T9509] netlink: 'syz.1.918': attribute type 1 has an invalid length.
[  372.351853][ T9506] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  373.359426][ T9515] loop0: detected capacity change from 0 to 40427
[  373.368529][ T9518] gfs2: not a GFS2 filesystem
[  373.379016][ T9515] F2FS-fs (loop0): invalid crc value
[  373.471509][ T9515] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  373.503216][ T9515] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  374.614073][ T9531] loop1: detected capacity change from 0 to 16
[  374.624259][ T9531] cramfs: Unknown parameter 'dont_appraise'
[  375.407064][ T9534] netlink: 'syz.2.928': attribute type 10 has an invalid length.
[  375.441936][ T9534] netlink: 40 bytes leftover after parsing attributes in process `syz.2.928'.
[  375.861580][ T9536] loop2: detected capacity change from 0 to 512
[  375.879409][ T9536] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  375.893172][ T9536] ext4 filesystem being mounted at /186/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  376.474757][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.190703][ T9556] netlink: 'syz.1.931': attribute type 1 has an invalid length.
[  377.575449][ T9558] loop0: detected capacity change from 0 to 8
[  377.642048][ T9559] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  377.736736][ T9564] netlink: 4 bytes leftover after parsing attributes in process `syz.4.933'.
[  378.852357][ T9577] gfs2: not a GFS2 filesystem
[  379.073054][ T9583] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  380.374522][ T9585] loop1: detected capacity change from 0 to 2048
[  380.381906][ T9585] EXT4-fs: Ignoring removed orlov option
[  380.398539][ T9591] loop2: detected capacity change from 0 to 1024
[  380.970082][ T9585] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.983430][ T9585] ext4 filesystem being mounted at /199/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.054002][ T9591] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  381.203134][ T9591] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.558629][ T9605] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.941: lblock 0 mapped to illegal pblock 0 (length 6)
[  381.617173][ T9605] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  381.675682][ T6979] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 102 with max blocks 52 with error 28
[  381.692827][ T9605] EXT4-fs (loop2): This should not happen!! Data will be lost
[  381.692827][ T9605] 
[  381.709898][ T6979] EXT4-fs (loop1): This should not happen!! Data will be lost
[  381.709898][ T6979] 
[  381.720783][ T6979] EXT4-fs (loop1): Total free blocks count 0
[  381.727535][ T6979] EXT4-fs (loop1): Free/Dirty block details
[  381.736091][ T6979] EXT4-fs (loop1): free_blocks=0
[  381.741039][ T6979] EXT4-fs (loop1): dirty_blocks=0
[  381.747978][ T6979] EXT4-fs (loop1): Block reservation details
[  381.761891][ T6979] EXT4-fs (loop1): i_reserved_data_blocks=0
[  381.872517][ T5866] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.890730][ T9612] loop0: detected capacity change from 0 to 8
[  382.010174][ T9615] netlink: 'syz.3.946': attribute type 1 has an invalid length.
[  382.347984][ T9613] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  382.534648][   T36] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:2: lblock 8 mapped to illegal pblock 8 (length 8)
[  382.580593][   T36] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  382.627582][   T36] EXT4-fs (loop2): This should not happen!! Data will be lost
[  382.627582][   T36] 
[  382.710063][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  382.891432][ T9627] gfs2: not a GFS2 filesystem
[  383.935103][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  383.941525][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  384.497055][ T9638] binder: 9636:9638 ioctl c0306201 0 returned -14
[  385.641447][ T9651] loop2: detected capacity change from 0 to 1024
[  385.677861][ T9651] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  385.690973][ T9651] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.762457][ T9658] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.959: lblock 0 mapped to illegal pblock 0 (length 6)
[  385.796799][ T9658] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  386.017053][ T9660] loop3: detected capacity change from 0 to 8
[  386.032879][ T9658] EXT4-fs (loop2): This should not happen!! Data will be lost
[  386.032879][ T9658] 
[  386.127605][ T9665] netlink: 'syz.1.961': attribute type 1 has an invalid length.
[  386.489510][ T9666] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  387.757295][   T12] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8)
[  387.902241][   T12] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  387.960946][   T12] EXT4-fs (loop2): This should not happen!! Data will be lost
[  387.960946][   T12] 
[  388.152067][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  389.958587][ T9702] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  389.958587][ T9702]    program syz.1.971 not setting count and/or reply_len properly
[  390.526414][ T9712] loop0: detected capacity change from 0 to 256
[  390.537275][ T9712] exfat: Deprecated parameter 'utf8'
[  390.895847][ T9712] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d)
[  392.025719][ T9722] loop4: detected capacity change from 0 to 2364
[  392.661281][ T9720] loop0: detected capacity change from 0 to 32768
[  393.501726][ T9720] overlayfs: upper fs needs to support d_type.
[  393.552992][ T9720] overlayfs: upper fs does not support tmpfile.
[  393.603817][ T9720] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  395.361361][ T9751] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  395.361361][ T9751]    program syz.3.985 not setting count and/or reply_len properly
[  395.701760][ T9754] loop2: detected capacity change from 0 to 512
[  395.744173][ T9754] EXT4-fs: Ignoring removed mblk_io_submit option
[  395.766667][ T9754] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  395.786831][ T9754] EXT4-fs (loop2): DAX unsupported by block device.
[  395.930917][ T9762] loop3: detected capacity change from 0 to 8
[  396.008222][ T9764] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  396.150163][ T9765] netlink: 4 bytes leftover after parsing attributes in process `syz.4.989'.
[  397.200482][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.566409][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.619490][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.783873][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.231857][   T13] Bluetooth: (null): Too short H5 packet
[  399.238523][   T13] Bluetooth: (null): Invalid header checksum
[  399.247070][   T13] Bluetooth: (null): Invalid header checksum
[  399.293054][   T13] Bluetooth: (null): Invalid header checksum
[  399.482229][ T6294] Bluetooth: (null): Invalid header checksum
[  399.543684][   T36] bridge_slave_1: left allmulticast mode
[  399.549586][   T36] bridge_slave_1: left promiscuous mode
[  399.909225][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.100197][   T36] bridge_slave_0: left allmulticast mode
[  400.264382][   T36] bridge_slave_0: left promiscuous mode
[  400.270917][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.335255][ T9803] loop2: detected capacity change from 0 to 512
[  400.436343][ T9803] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  400.787721][ T9814] netlink: 'syz.1.1004': attribute type 1 has an invalid length.
[  400.814679][ T9803] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.1002: corrupted in-inode xattr: overlapping e_value 
[  400.864263][ T9803] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1002: couldn't read orphan inode 15 (err -117)
[  400.885886][ T9803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  400.929212][ T5870] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  400.938438][ T5870] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  400.946231][ T5870] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  400.955245][ T5870] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  400.963092][ T5870] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  400.982093][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  400.995793][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  401.007049][   T36] bond0 (unregistering): Released all slaves
[  401.025509][ T9820] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1002'.
[  401.062092][ T9820] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1002'.
[  401.084301][ T9820] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1002'.
[  401.126778][ T9818] lo speed is unknown, defaulting to 1000
[  401.174165][ T9825] loop3: detected capacity change from 0 to 8
[  401.246802][ T9826] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  402.348312][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.702898][ T9846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1007'.
[  403.113866][ T5870] Bluetooth: hci0: command tx timeout
[  404.060445][ T3506] Bluetooth: (null): Too short H5 packet
[  404.075535][ T3506] Bluetooth: (null): Invalid header checksum
[  404.092217][ T3506] Bluetooth: (null): Invalid header checksum
[  404.126742][ T3506] Bluetooth: (null): Invalid header checksum
[  404.155678][   T36] hsr_slave_0: left promiscuous mode
[  404.159213][ T3506] Bluetooth: (null): Invalid header checksum
[  404.198659][   T36] hsr_slave_1: left promiscuous mode
[  404.201318][ T3506] Bluetooth: (null): Invalid header checksum
[  404.213389][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  404.234996][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  404.297129][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  404.332290][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  404.398944][   T36] veth1_macvtap: left promiscuous mode
[  404.411978][   T36] veth0_macvtap: left promiscuous mode
[  404.421753][   T36] veth1_vlan: left promiscuous mode
[  404.429755][   T36] veth0_vlan: left promiscuous mode
[  404.712631][ T9881] netlink: 'syz.1.1016': attribute type 1 has an invalid length.
[  405.154104][ T9884] loop3: detected capacity change from 0 to 512
[  405.167479][ T9884] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  405.211866][ T9884] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.1018: corrupted in-inode xattr: overlapping e_value 
[  405.226209][ T5870] Bluetooth: hci0: command tx timeout
[  405.236923][ T9873] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  405.236923][ T9873]    program syz.4.1014 not setting count and/or reply_len properly
[  405.298276][ T9884] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1018: couldn't read orphan inode 15 (err -117)
[  405.375428][ T9884] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  405.389187][ T9880] loop2: detected capacity change from 0 to 32768
[  405.558265][ T9880] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  405.742570][   T36] team0 (unregistering): Port device team_slave_1 removed
[  405.772084][ T5864] ocfs2: Unmounting device (7,2) on (node local)
[  405.797565][   T36] team0 (unregistering): Port device team_slave_0 removed
[  407.066459][ T9906] loop2: detected capacity change from 0 to 40427
[  407.085084][ T9906] F2FS-fs (loop2): invalid crc value
[  407.119109][ T9906] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  407.130984][ T9906] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  407.295618][ T5870] Bluetooth: hci0: command tx timeout
[  407.301373][ T9891] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1018'.
[  407.321796][ T9891] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1018'.
[  407.473862][ T9891] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1018'.
[  407.618221][ T9818] chnl_net:caif_netlink_parms(): no params data found
[  407.631659][ T5871] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.641670][ T9918] loop4: detected capacity change from 0 to 512
[  407.661624][ T9918] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  407.680486][ T9918] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042e11c, mo2=0002]
[  407.688661][ T9918] System zones: 1-12
[  407.692936][ T9918] EXT4-fs (loop4): orphan cleanup on readonly fs
[  407.701038][ T9918] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1024: bg 0: block 361: padding at end of block bitmap is not set
[  407.715719][ T9918] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  407.725085][ T9918] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1024: invalid indirect mapped block 12 (level 1)
[  407.738846][ T9918] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1024: invalid indirect mapped block 2 (level 2)
[  407.803667][ T9918] EXT4-fs (loop4): 1 truncate cleaned up
[  407.810324][ T9918] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  407.856702][ T5862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  408.049921][ T9933] loop4: detected capacity change from 0 to 8
[  408.127100][ T9934] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  408.942091][ T9818] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.956578][ T9936] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1025'.
[  408.976471][ T9818] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.993016][ T9818] bridge_slave_0: entered allmulticast mode
[  409.003084][ T9818] bridge_slave_0: entered promiscuous mode
[  409.052277][ T9818] bridge0: port 2(bridge_slave_1) entered blocking state
[  409.162835][ T9818] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.290812][ T9947] netlink: 'syz.1.1028': attribute type 1 has an invalid length.
[  409.433463][ T5870] Bluetooth: hci0: command tx timeout
[  409.884070][ T9818] bridge_slave_1: entered allmulticast mode
[  410.014835][ T9818] bridge_slave_1: entered promiscuous mode
[  410.328718][ T9818] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  411.371399][ T9818] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  411.530352][ T9976] gfs2: not a GFS2 filesystem
[  411.795068][ T9975] loop2: detected capacity change from 0 to 40427
[  412.224147][ T9975] F2FS-fs (loop2): invalid crc value
[  412.256050][ T9975] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  412.350240][ T9975] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  412.369606][ T9987] loop1: detected capacity change from 0 to 512
[  412.480040][ T9818] team0: Port device team_slave_0 added
[  412.503657][ T9987] EXT4-fs: Ignoring removed mblk_io_submit option
[  412.593404][ T9818] team0: Port device team_slave_1 added
[  412.614918][ T9987] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  412.642755][ T9987] EXT4-fs (loop1): DAX unsupported by block device.
[  413.682207][ T9998] netlink: 'syz.3.1039': attribute type 1 has an invalid length.
[  413.777205][T10001] loop4: detected capacity change from 0 to 1024
[  413.777617][ T9818] batman_adv: batadv0: Adding interface: batadv_slave_0
[  413.915386][ T9818] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  414.154940][ T9818] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  414.166964][ T9818] batman_adv: batadv0: Adding interface: batadv_slave_1
[  414.174023][ T9818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  414.201178][ T9818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  414.694385][ T3531] hfsplus: b-tree write err: -5, ino 4
[  415.146430][ T9818] hsr_slave_0: entered promiscuous mode
[  415.182282][ T9818] hsr_slave_1: entered promiscuous mode
[  415.840605][T10028] ubi31: attaching mtd0
[  415.880127][T10028] ubi31: scanning is finished
[  415.885080][T10028] ubi31: empty MTD device detected
[  416.331856][T10028] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  417.253967][T10045] loop2: detected capacity change from 0 to 40427
[  417.473386][T10044] loop3: detected capacity change from 0 to 40427
[  417.495098][T10044] F2FS-fs (loop3): invalid crc value
[  417.504512][T10045] F2FS-fs (loop2): invalid crc value
[  417.542015][T10044] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  417.551968][T10044] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  417.594836][T10045] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  417.605648][T10045] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  418.739811][ T9818] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  418.993807][ T9818] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  419.055080][ T9818] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  419.099130][ T9818] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  419.922411][ T9818] 8021q: adding VLAN 0 to HW filter on device bond0
[  420.055691][ T9818] 8021q: adding VLAN 0 to HW filter on device team0
[  420.511063][ T3531] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.518272][ T3531] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.598881][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.606095][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.696376][T10094] loop2: detected capacity change from 0 to 512
[  421.081436][ T9818] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  421.092175][T10094] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  421.092252][ T9818] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  421.208393][T10094] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.1056: invalid indirect mapped block 4294967295 (level 0)
[  421.347273][T10094] EXT4-fs (loop2): Remounting filesystem read-only
[  421.354041][T10094] EXT4-fs (loop2): 1 orphan inode deleted
[  421.359767][T10094] EXT4-fs (loop2): 1 truncate cleaned up
[  421.366436][T10094] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.633786][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.047180][T10113] loop4: detected capacity change from 0 to 764
[  423.605687][ T9818] 8021q: adding VLAN 0 to HW filter on device batadv0
[  423.655587][T10122] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1064'.
[  424.024871][T10144] netlink: 'syz.3.1066': attribute type 1 has an invalid length.
[  424.292404][T10107] loop2: detected capacity change from 0 to 32768
[  424.309502][T10107] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1061 (10107)
[  424.363862][T10107] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  424.392889][T10107] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  424.502366][T10107] BTRFS info (device loop2): allowing degraded mounts
[  424.518367][T10107] BTRFS info (device loop2): enabling ssd optimizations
[  424.545488][T10107] BTRFS info (device loop2): enabling free space tree
[  424.568623][T10107] BTRFS info (device loop2): force zlib compression, level 3
[  424.952890][ T9818] veth0_vlan: entered promiscuous mode
[  425.481599][T10181] loop1: detected capacity change from 0 to 128
[  425.495057][ T9818] veth1_vlan: entered promiscuous mode
[  425.500808][T10181] EXT4-fs (loop1): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  425.525811][ T6570] udevd[6570]: incorrect ext4 checksum on /dev/loop1
[  425.617057][ T9818] veth0_macvtap: entered promiscuous mode
[  425.629135][T10107] fs-verity (loop2, inode 260): Error -4 building Merkle tree
[  425.668669][ T9818] veth1_macvtap: entered promiscuous mode
[  425.898279][ T9818] batman_adv: batadv0: Interface activated: batadv_slave_0
[  425.910154][ T9818] batman_adv: batadv0: Interface activated: batadv_slave_1
[  425.922839][ T6294] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  425.934505][ T3531] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  426.021121][ T3531] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  426.404131][  T977] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  426.424127][ T3531] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  426.567077][ T5864] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  426.568819][ T6294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  426.592053][  T977] usb 2-1: Using ep0 maxpacket: 32
[  426.602262][ T6294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  426.615575][  T977] usb 2-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b
[  426.700428][  T977] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.727664][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  426.739988][  T977] usb 2-1: Product: syz
[  426.746552][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  426.755564][  T977] usb 2-1: Manufacturer: syz
[  426.763623][  T977] usb 2-1: SerialNumber: syz
[  426.763960][T10194] loop3: detected capacity change from 0 to 1024
[  426.808309][T10194] EXT4-fs: Ignoring removed orlov option
[  426.872219][T10194] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  427.096575][    C0] ------------[ cut here ]------------
[  427.102206][    C0] WARNING: ./include/linux/skbuff.h:1165 at nf_reject_fill_skb_dst+0x2a4/0x330, CPU#0: syz.2.1073/10202
[  427.113541][    C0] Modules linked in:
[  427.117533][    C0] CPU: 0 UID: 0 PID: 10202 Comm: syz.2.1073 Not tainted syzkaller #0 PREEMPT(full) 
[  427.126987][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  427.137154][    C0] RIP: 0010:nf_reject_fill_skb_dst+0x2a4/0x330
[  427.143459][    C0] Code: 8b 0d d0 38 a8 08 48 3b 8c 24 e0 00 00 00 75 5d 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 5d b7 a6 f7 90 <0f> 0b 90 e9 38 ff ff ff 44 89 f9 80 e1 07 fe c1 38 c1 0f 8c 2b fe
[  427.163199][    C0] RSP: 0018:ffffc90000007300 EFLAGS: 00010246
[  427.163212][  T977] usb 2-1: palm_os_4_probe - error -110 getting connection info
[  427.163318][  T977] visor 2-1:1.0: Handspring Visor / Palm OS converter detected
[  427.169358][    C0] 
[  427.169370][    C0] RAX: ffffffff8a19d773 RBX: ffff88807d903c70 RCX: ffff8880263fbc00
[  427.195047][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  427.203147][    C0] RBP: ffffc90000007430 R08: ffffffff8fc40337 R09: 1ffffffff1f88066
[  427.211207][    C0] R10: dffffc0000000000 R11: fffffbfff1f88067 R12: ffff8880321a4101
[  427.213247][   T30] audit: type=1800 audit(1755814731.469:18): pid=10194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1074" name="bus" dev="loop3" ino=18 res=0 errno=0
[  427.219449][    C0] R13: dffffc0000000001 R14: 1ffff92000000e64 R15: 0000000000000000
[  427.247767][    C0] FS:  00007fe2aa95b6c0(0000) GS:ffff8881259ff000(0000) knlGS:0000000000000000
[  427.256828][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  427.263520][    C0] CR2: 000000110c30e16f CR3: 000000002eee2000 CR4: 00000000003526f0
[  427.271672][    C0] Call Trace:
[  427.275076][    C0]  <IRQ>
[  427.278003][    C0]  ? __pfx_nf_reject_fill_skb_dst+0x10/0x10
[  427.284032][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.288933][    C0]  ? nf_send_reset+0xfe/0x1480
[  427.293815][    C0]  nf_send_reset+0x10b/0x1480
[  427.298584][    C0]  ? __pfx_nf_send_reset+0x10/0x10
[  427.303830][    C0]  nft_reject_inet_eval+0x3b2/0x690
[  427.309092][    C0]  nft_do_chain+0x40c/0x1920
[  427.313771][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  427.319119][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  427.325537][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[  427.330628][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  427.335908][    C0]  ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[  427.341608][    C0]  nft_do_chain_inet+0x25d/0x340
[  427.346656][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  427.352193][    C0]  ? NF_HOOK+0x9a/0x3a0
[  427.356467][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.361294][    C0]  ? lock_acquire+0x5f/0x360
[  427.365957][    C0]  ? ip_sabotage_in+0x57/0x270
[  427.370775][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  427.376297][    C0]  nf_hook_slow+0xc5/0x220
[  427.380769][    C0]  NF_HOOK+0x206/0x3a0
[  427.384943][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[  427.390121][    C0]  ? NF_HOOK+0x9a/0x3a0
[  427.394347][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[  427.398991][    C0]  ? ip_rcv_core+0x7f7/0xd00
[  427.403792][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[  427.408967][    C0]  ? __pfx_ip_rcv+0x10/0x10
[  427.413563][    C0]  __netif_receive_skb+0x143/0x380
[  427.418730][    C0]  ? process_backlog+0x2d5/0x14f0
[  427.423837][    C0]  process_backlog+0x60e/0x14f0
[  427.428746][    C0]  ? __pfx_process_backlog+0x10/0x10
[  427.434100][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.438928][    C0]  __napi_poll+0xc4/0x360
[  427.443347][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.448198][    C0]  net_rx_action+0x707/0xe30
[  427.452904][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  427.458079][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  427.463373][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  427.468733][    C0]  handle_softirqs+0x283/0x870
[  427.473602][    C0]  ? do_softirq+0xec/0x180
[  427.478079][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  427.483467][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.488290][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  427.493552][    C0]  do_softirq+0xec/0x180
[  427.497897][    C0]  </IRQ>
[  427.500885][    C0]  <TASK>
[  427.503870][    C0]  ? __pfx_do_softirq+0x10/0x10
[  427.508797][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.513677][    C0]  __local_bh_enable_ip+0x17d/0x1c0
[  427.518938][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  427.524742][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  427.529932][    C0]  ? lock_release+0x4b/0x3e0
[  427.534648][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  427.539839][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  427.545067][    C0]  __dev_queue_xmit+0x1d79/0x3b50
[  427.550156][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  427.555383][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  427.560832][    C0]  ? __pfx___schedule+0x10/0x10
[  427.565767][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.570597][    C0]  ? ip_output+0x2a1/0x3c0
[  427.575086][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.579903][    C0]  ? ip_output+0x2a1/0x3c0
[  427.584393][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.589218][    C0]  ? ip_output+0x2a1/0x3c0
[  427.593742][    C0]  ? ip_finish_output2+0xae7/0x1160
[  427.599000][    C0]  ip_finish_output2+0xd03/0x1160
[  427.604135][    C0]  ? ip_skb_dst_mtu+0x1a5/0xab0
[  427.609052][    C0]  ? ip_finish_output2+0x452/0x1160
[  427.614338][    C0]  ? __pfx_ip_finish_output2+0x10/0x10
[  427.619893][    C0]  ? ip_skb_dst_mtu+0x866/0xab0
[  427.624910][    C0]  ? ip_finish_output+0x33a/0x3f0
[  427.630011][    C0]  ip_output+0x2a1/0x3c0
[  427.634365][    C0]  ? ip_output+0x60/0x3c0
[  427.638917][    C0]  __ip_queue_xmit+0x118d/0x1c30
[  427.643950][    C0]  ? csum_tcpudp_nofold+0x1f/0x60
[  427.649047][    C0]  ? __ip_queue_xmit+0x5d/0x1c30
[  427.654088][    C0]  ? __pfx_ip_queue_xmit+0x10/0x10
[  427.659346][    C0]  __tcp_transmit_skb+0x2215/0x3680
[  427.664651][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.669478][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.674345][    C0]  ? __pfx___tcp_transmit_skb+0x10/0x10
[  427.679952][    C0]  ? __asan_memset+0x22/0x50
[  427.684632][    C0]  ? tcp_rbtree_insert+0x11e/0x170
[  427.689805][    C0]  ? tcp_connect+0x1e69/0x4ef0
[  427.694655][    C0]  tcp_connect+0x1f76/0x4ef0
[  427.699322][    C0]  ? __pfx_tcp_connect+0x10/0x10
[  427.704373][    C0]  ? get_random_u16+0x154/0x940
[  427.709281][    C0]  ? get_random_u16+0x4df/0x940
[  427.714221][    C0]  ? __asan_memset+0x22/0x50
[  427.718873][    C0]  ? __pfx_tcp_fastopen_defer_connect+0x10/0x10
[  427.725208][    C0]  ? sk_setup_caps+0x850/0xac0
[  427.730034][    C0]  ? dst_release+0x72/0x1b0
[  427.734643][    C0]  tcp_v4_connect+0x1110/0x1a00
[  427.739553][    C0]  ? __pfx_tcp_v4_connect+0x10/0x10
[  427.745011][    C0]  mptcp_connect+0x568/0x830
[  427.749705][    C0]  __inet_stream_connect+0x2ab/0xe80
[  427.755118][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.759988][    C0]  ? __pfx___inet_stream_connect+0x10/0x10
[  427.765884][    C0]  ? inet_stream_connect+0x51/0xa0
[  427.771052][    C0]  ? __local_bh_enable_ip+0x12d/0x1c0
[  427.776516][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  427.782327][    C0]  inet_stream_connect+0x66/0xa0
[  427.787352][    C0]  __sys_connect+0x316/0x440
[  427.792014][    C0]  ? __pfx___sys_connect+0x10/0x10
[  427.797260][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.802085][    C0]  __x64_sys_connect+0x7a/0x90
[  427.806930][    C0]  do_syscall_64+0xfa/0xfa0
[  427.811484][    C0]  ? rcu_is_watching+0x15/0xb0
[  427.816343][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.822484][    C0]  ? clear_bhb_loop+0x60/0xb0
[  427.827238][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.833222][    C0] RIP: 0033:0x7fe2a9b8ebe9
[  427.837702][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.857418][    C0] RSP: 002b:00007fe2aa95b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  427.865955][    C0] RAX: ffffffffffffffda RBX: 00007fe2a9db6090 RCX: 00007fe2a9b8ebe9
[  427.874004][    C0] RDX: 0000000000000010 RSI: 0000200000000140 RDI: 0000000000000008
[  427.882024][    C0] RBP: 00007fe2a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[  427.890048][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  427.898086][    C0] R13: 00007fe2a9db6128 R14: 00007fe2a9db6090 R15: 00007ffcbfa75ee8
[  427.906156][    C0]  </TASK>
[  427.909249][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  427.916627][    C0] CPU: 0 UID: 0 PID: 10202 Comm: syz.2.1073 Not tainted syzkaller #0 PREEMPT(full) 
[  427.926011][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  427.936068][    C0] Call Trace:
[  427.939351][    C0]  <IRQ>
[  427.942199][    C0]  dump_stack_lvl+0x99/0x250
[  427.946821][    C0]  ? __asan_memcpy+0x40/0x70
[  427.951416][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  427.956621][    C0]  ? __pfx__printk+0x10/0x10
[  427.961222][    C0]  vpanic+0x281/0x750
[  427.965217][    C0]  ? __pfx_vpanic+0x10/0x10
[  427.969739][    C0]  ? is_bpf_text_address+0x292/0x2b0
[  427.975071][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  427.980276][    C0]  panic+0xb9/0xc0
[  427.984012][    C0]  ? __pfx_panic+0x10/0x10
[  427.988432][    C0]  __warn+0x334/0x4c0
[  427.992497][    C0]  ? nf_reject_fill_skb_dst+0x2a4/0x330
[  427.998040][    C0]  ? nf_reject_fill_skb_dst+0x2a4/0x330
[  428.003584][    C0]  report_bug+0x2be/0x4f0
[  428.007914][    C0]  ? nf_reject_fill_skb_dst+0x2a4/0x330
[  428.013461][    C0]  ? nf_reject_fill_skb_dst+0x2a4/0x330
[  428.019015][    C0]  ? nf_reject_fill_skb_dst+0x2a6/0x330
[  428.024595][    C0]  handle_bug+0x84/0x160
[  428.028858][    C0]  exc_invalid_op+0x1a/0x50
[  428.033362][    C0]  asm_exc_invalid_op+0x1a/0x20
[  428.038229][    C0] RIP: 0010:nf_reject_fill_skb_dst+0x2a4/0x330
[  428.044383][    C0] Code: 8b 0d d0 38 a8 08 48 3b 8c 24 e0 00 00 00 75 5d 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 5d b7 a6 f7 90 <0f> 0b 90 e9 38 ff ff ff 44 89 f9 80 e1 07 fe c1 38 c1 0f 8c 2b fe
[  428.063994][    C0] RSP: 0018:ffffc90000007300 EFLAGS: 00010246
[  428.070058][    C0] RAX: ffffffff8a19d773 RBX: ffff88807d903c70 RCX: ffff8880263fbc00
[  428.078031][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  428.085998][    C0] RBP: ffffc90000007430 R08: ffffffff8fc40337 R09: 1ffffffff1f88066
[  428.093975][    C0] R10: dffffc0000000000 R11: fffffbfff1f88067 R12: ffff8880321a4101
[  428.101951][    C0] R13: dffffc0000000001 R14: 1ffff92000000e64 R15: 0000000000000000
[  428.109929][    C0]  ? nf_reject_fill_skb_dst+0x2a3/0x330
[  428.115488][    C0]  ? __pfx_nf_reject_fill_skb_dst+0x10/0x10
[  428.121383][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.126193][    C0]  ? nf_send_reset+0xfe/0x1480
[  428.130993][    C0]  nf_send_reset+0x10b/0x1480
[  428.135677][    C0]  ? __pfx_nf_send_reset+0x10/0x10
[  428.140794][    C0]  nft_reject_inet_eval+0x3b2/0x690
[  428.145996][    C0]  nft_do_chain+0x40c/0x1920
[  428.150611][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  428.155906][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  428.162233][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[  428.167275][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  428.172471][    C0]  ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[  428.178111][    C0]  nft_do_chain_inet+0x25d/0x340
[  428.183066][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  428.188531][    C0]  ? NF_HOOK+0x9a/0x3a0
[  428.192701][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.197504][    C0]  ? lock_acquire+0x5f/0x360
[  428.202106][    C0]  ? ip_sabotage_in+0x57/0x270
[  428.206899][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  428.212368][    C0]  nf_hook_slow+0xc5/0x220
[  428.216792][    C0]  NF_HOOK+0x206/0x3a0
[  428.220861][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[  428.225969][    C0]  ? NF_HOOK+0x9a/0x3a0
[  428.230132][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[  428.234724][    C0]  ? ip_rcv_core+0x7f7/0xd00
[  428.239316][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[  428.244437][    C0]  ? __pfx_ip_rcv+0x10/0x10
[  428.248938][    C0]  __netif_receive_skb+0x143/0x380
[  428.254051][    C0]  ? process_backlog+0x2d5/0x14f0
[  428.259081][    C0]  process_backlog+0x60e/0x14f0
[  428.263940][    C0]  ? __pfx_process_backlog+0x10/0x10
[  428.269224][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.274001][    C0]  __napi_poll+0xc4/0x360
[  428.278325][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.283088][    C0]  net_rx_action+0x707/0xe30
[  428.287681][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  428.292790][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  428.298090][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  428.303383][    C0]  handle_softirqs+0x283/0x870
[  428.308156][    C0]  ? do_softirq+0xec/0x180
[  428.312572][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  428.317859][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.322619][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  428.327729][    C0]  do_softirq+0xec/0x180
[  428.331975][    C0]  </IRQ>
[  428.334898][    C0]  <TASK>
[  428.337826][    C0]  ? __pfx_do_softirq+0x10/0x10
[  428.342707][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.347490][    C0]  __local_bh_enable_ip+0x17d/0x1c0
[  428.352688][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  428.358430][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  428.363567][    C0]  ? lock_release+0x4b/0x3e0
[  428.368158][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  428.373272][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  428.378399][    C0]  __dev_queue_xmit+0x1d79/0x3b50
[  428.383474][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  428.388591][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  428.393964][    C0]  ? __pfx___schedule+0x10/0x10
[  428.398832][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.403605][    C0]  ? ip_output+0x2a1/0x3c0
[  428.408058][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.412823][    C0]  ? ip_output+0x2a1/0x3c0
[  428.417243][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.422020][    C0]  ? ip_output+0x2a1/0x3c0
[  428.426435][    C0]  ? ip_finish_output2+0xae7/0x1160
[  428.431635][    C0]  ip_finish_output2+0xd03/0x1160
[  428.436855][    C0]  ? ip_skb_dst_mtu+0x1a5/0xab0
[  428.441710][    C0]  ? ip_finish_output2+0x452/0x1160
[  428.446907][    C0]  ? __pfx_ip_finish_output2+0x10/0x10
[  428.452367][    C0]  ? ip_skb_dst_mtu+0x866/0xab0
[  428.457233][    C0]  ? ip_finish_output+0x33a/0x3f0
[  428.462440][    C0]  ip_output+0x2a1/0x3c0
[  428.466710][    C0]  ? ip_output+0x60/0x3c0
[  428.471041][    C0]  __ip_queue_xmit+0x118d/0x1c30
[  428.475982][    C0]  ? csum_tcpudp_nofold+0x1f/0x60
[  428.481024][    C0]  ? __ip_queue_xmit+0x5d/0x1c30
[  428.486063][    C0]  ? __pfx_ip_queue_xmit+0x10/0x10
[  428.491191][    C0]  __tcp_transmit_skb+0x2215/0x3680
[  428.496399][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.501171][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.505957][    C0]  ? __pfx___tcp_transmit_skb+0x10/0x10
[  428.511506][    C0]  ? __asan_memset+0x22/0x50
[  428.516120][    C0]  ? tcp_rbtree_insert+0x11e/0x170
[  428.521253][    C0]  ? tcp_connect+0x1e69/0x4ef0
[  428.526101][    C0]  tcp_connect+0x1f76/0x4ef0
[  428.530709][    C0]  ? __pfx_tcp_connect+0x10/0x10
[  428.535681][    C0]  ? get_random_u16+0x154/0x940
[  428.540530][    C0]  ? get_random_u16+0x4df/0x940
[  428.545373][    C0]  ? __asan_memset+0x22/0x50
[  428.549959][    C0]  ? __pfx_tcp_fastopen_defer_connect+0x10/0x10
[  428.556226][    C0]  ? sk_setup_caps+0x850/0xac0
[  428.560991][    C0]  ? dst_release+0x72/0x1b0
[  428.565505][    C0]  tcp_v4_connect+0x1110/0x1a00
[  428.570357][    C0]  ? __pfx_tcp_v4_connect+0x10/0x10
[  428.575563][    C0]  mptcp_connect+0x568/0x830
[  428.580174][    C0]  __inet_stream_connect+0x2ab/0xe80
[  428.585489][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.590255][    C0]  ? __pfx___inet_stream_connect+0x10/0x10
[  428.596061][    C0]  ? inet_stream_connect+0x51/0xa0
[  428.601187][    C0]  ? __local_bh_enable_ip+0x12d/0x1c0
[  428.606567][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  428.612292][    C0]  inet_stream_connect+0x66/0xa0
[  428.617255][    C0]  __sys_connect+0x316/0x440
[  428.621845][    C0]  ? __pfx___sys_connect+0x10/0x10
[  428.627044][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.631814][    C0]  __x64_sys_connect+0x7a/0x90
[  428.636578][    C0]  do_syscall_64+0xfa/0xfa0
[  428.641093][    C0]  ? rcu_is_watching+0x15/0xb0
[  428.645854][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.651917][    C0]  ? clear_bhb_loop+0x60/0xb0
[  428.656606][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.662499][    C0] RIP: 0033:0x7fe2a9b8ebe9
[  428.666913][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  428.686515][    C0] RSP: 002b:00007fe2aa95b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  428.694940][    C0] RAX: ffffffffffffffda RBX: 00007fe2a9db6090 RCX: 00007fe2a9b8ebe9
[  428.702906][    C0] RDX: 0000000000000010 RSI: 0000200000000140 RDI: 0000000000000008
[  428.710872][    C0] RBP: 00007fe2a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[  428.718836][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  428.726820][    C0] R13: 00007fe2a9db6128 R14: 00007fe2a9db6090 R15: 00007ffcbfa75ee8
[  428.734794][    C0]  </TASK>
[  428.738176][    C0] Kernel Offset: disabled
[  428.742511][    C0] Rebooting in 86400 seconds..