last executing test programs:

1m57.075431206s ago: executing program 2 (id=2):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)=@newtfilter={0x38, 0x2c, 0x5ebe44893ff56549, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x9, 0x9}, {}, {0xc, 0x3}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0x1, 0xc}}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8e6)
close_range(r0, r2, 0x0)

1m56.78206267s ago: executing program 2 (id=13):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x14711, &(0x7f00000003c0)={[{@lazytime}, {@inlinecrypt}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@dioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x222a}}, {@nouid32}, {@test_dummy_encryption}, {@bsdgroups}]}, 0x3, 0x453, &(0x7f0000000c40)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @d}})
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r1, &(0x7f0000006b40)={0x2020}, 0x206e)

1m56.459653966s ago: executing program 0 (id=16):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1, &(0x7f00000000c0)={[{@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@mblk_io_submit}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x450, &(0x7f0000000940)="$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")
fchmodat(0xffffffffffffff9c, 0x0, 0x19a)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000001480)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000340)='./file0\x00')

1m56.001558393s ago: executing program 2 (id=18):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x400a8, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x404, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

1m55.53841442s ago: executing program 0 (id=20):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x40, 0x0, 0x1, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000001a00)='./file0/file0\x00', 0x0, 0xa5c0a, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
fchmodat(0xffffffffffffffff, 0x0, 0x10)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

1m55.220098126s ago: executing program 2 (id=23):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2169802, 0x0, 0x0, 0x0, &(0x7f00000003c0))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)

1m54.334090978s ago: executing program 32 (id=23):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2169802, 0x0, 0x0, 0x0, &(0x7f00000003c0))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)

1m54.18270769s ago: executing program 0 (id=26):
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], 0x3, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1d3142, 0x0)
io_setup(0x20fe, &(0x7f0000000540)=<r2=>0x0)
io_submit(r2, 0x3, &(0x7f0000002680)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000200)='p', 0x8200, 0x600}])

1m53.756350824s ago: executing program 3 (id=29):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

1m53.158278253s ago: executing program 0 (id=31):
epoll_create1(0x80000)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x10000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0), 0x80000, 0x0)

1m52.789146592s ago: executing program 3 (id=34):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="6507060082762422f9a30250a90def79e5ddb933b83b8f8f1a0daad170478560f60eb8dc258ded60aee45b04b15db386", 0x30)
r1 = accept$alg(r0, 0x0, 0x0)
recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000280)=""/9, 0x9}], 0x1}, 0x100)
sendmmsg$alg(r1, &(0x7f0000005d40)=[{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000140)="55b6", 0x2}], 0x1, &(0x7f00000006c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x4}], 0x1, 0x0)

1m52.514006015s ago: executing program 3 (id=35):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x140)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={0x0, {0x2, 0x4e24, @remote}, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x2, 0x4e21, @broadcast}, 0xd1, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffffffffffe, 0x9, 0x6})

1m52.225292138s ago: executing program 3 (id=36):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x14711, &(0x7f00000003c0)={[{@lazytime}, {@inlinecrypt}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@dioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x222a}}, {@nouid32}, {@test_dummy_encryption}, {@bsdgroups}]}, 0x3, 0x453, &(0x7f0000000c40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @d}})
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r1, &(0x7f0000006b40)={0x2020}, 0x206e)

1m51.763055795s ago: executing program 0 (id=38):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x65, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)

1m51.354943908s ago: executing program 4 (id=41):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="6507060082762422f9a30250a90def79e5ddb933b83b8f8f1a0daad170478560f60eb8dc258ded60aee45b04b15db386", 0x30)
r1 = accept$alg(r0, 0x0, 0x0)
recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000b00)=""/111, 0x6f}], 0x1}, 0x100)
sendmmsg$alg(r1, &(0x7f0000005d40)=[{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000140)="55b69a04de68c3e21533a90f73b2ed6fff", 0x11}], 0x1, 0x0, 0x0, 0x4}], 0x1, 0x0)

1m51.185071572s ago: executing program 3 (id=42):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x91)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
sync_file_range(r0, 0x8001, 0xe88, 0x2)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket(0x28, 0x801, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x42, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x42, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2, 0x0, 0x0, 0x5000000000008})

1m50.488096848s ago: executing program 4 (id=43):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

1m49.584936431s ago: executing program 3 (id=44):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000200)={0x1, 0x1, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

1m49.442616273s ago: executing program 33 (id=44):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$eJzs3M1rXFUbAPDn3kymaZv3nfTlRawbIyItiNOkkmKLYCsVNy4E3QoN6aSETD9IIjVpFhP9B0RdC24EtSgu7LobRbdutN0qLoQisVEQ0cidjyQ2mTS1M70x/f3gzD3nnpl5nmcuM/cemJkA7luD2U0asT8iTiURpeb+NCKK9V5fRK1xv6XF+bFfF+fHklhefumnJJKIuLk4P9Z6rqS53dsc9EXE188m8b831sednp2bHK1WK1PN8aGZsxcOTc/OPTFxdvRM5Uzl3PCRp0YOjxwZOjrSsVp/++74lV8eef6H2u8f/nH557ffT+J49Dfn1tbRKYMxuPKarFWIiNFOB8tJT7OetXUmhds8KO1yUgAAtJWuuYZ7IErRE6sXb6X4/JtckwMAAAA6YrknYhkAAADY4RLrfwAAANjhWt8DuLk4P9Zq+X4j4d66cSIiBhr1LzVbY6YQtfq2L3ojYs/NJNb+rDVpPOyuDUbE99ePfpK16NLvkDdTW4iIBzc6/km9/oH6r7jX159GxFAH4g/eMv431X+8A/Hzrh+A+9PVE40T2frzX7py/RMbnP8KG5y7/om8z3+t67+lddd/q/X3tLn+e3GLMS598O7FdnNZ/U9fee7jVsviZ9u7KuoO3FiIeKiwUf3JSv1Jm/pPbTFG6c+LlXZzede//F7Egdi4/pZk8/8nOjQ+Ua0MNW43jLHw1chH7eLnXX92/Pe0qb/1/0/tjv+FLcZ45eTJT9ftvL7a3bz+9Mdi8nK9V2zueW10ZmZqOKKYvLB+/+HNc2ndp/UcWf0HH938/b9R/dlnQq35OmRrgYXmNhu/fkvMZy5f+qxdPq31X57H/3Sb47+2/i8L64//m1uM8dgXbx1sN7d2/Zu1LH5rLQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALWlE9EeSllf6aVouR+yNiP/HnrR6fnrm8fHzr547nc1FDERvOj5RrQxFRKkxTrLxcL2/Oj58y/jJiNgXEe+UdtfH5bHz1dN5Fw8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCKvRHRH0lajog0IpZKaVou550VAAAA0HEDeScAAAAAdJ31PwAAAOx81v8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB02b6Hr15LIqJ2bHe9ZYrNud5cMwO6Lc07ASA3PXknAOSmkHcCQG7ucI3vcgF2oOQ2831tZ3Z1PBcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAtq8D+69eSyKidmx3vWWKzbneXDMDui3NOwEgNz2bTRbuXR7AvectDvcva3wguc183+p9an+f2dW1nAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYfvrrLUnLEVFs7iuXI/4TEQPRm4xPVCtDEfHfiPi21LsrGw/nnDMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACdNz07NzlarVamsk4azc7KHp3VTtJ4xWrbJR+du+wUY1uksU07eX8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQh+nZucnRarUyNZ13JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDepmfnJker1cpUFzt51wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH7+CgAA//9gfgp0")
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000200)={0x1, 0x1, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

1m49.424507454s ago: executing program 4 (id=46):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e21, 0x2, @mcast1, 0x4}, 0x1c)
r2 = syz_open_procfs(0x0, &(0x7f0000000380)='net/udplite6\x00')
read$FUSE(r2, &(0x7f00000003c0)={0x2020}, 0x2020)
read$FUSE(r2, &(0x7f0000004600)={0x2020}, 0x2020)

1m49.3480807s ago: executing program 0 (id=47):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000880)={[{@data_err_abort}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@bh}, {@data_err_ignore}, {@lazytime}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@nobh}, {@inlinecrypt}, {@data_err_ignore}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
write$binfmt_register(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@i_version}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000dc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1, 0x91)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x0, 0xa20, 0x8000c64)

1m49.294899025s ago: executing program 4 (id=48):
epoll_create1(0x80000)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x10000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0), 0x80000, 0x0)

1m49.089774901s ago: executing program 34 (id=47):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000880)={[{@data_err_abort}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@bh}, {@data_err_ignore}, {@lazytime}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@nobh}, {@inlinecrypt}, {@data_err_ignore}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
write$binfmt_register(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@i_version}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000dc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1, 0x91)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x0, 0xa20, 0x8000c64)

1m48.567944873s ago: executing program 4 (id=52):
r0 = socket(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x2, @loopback, 0x3}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="5e54e574da93883e8c628a600b17cbe584d2e73c68141965f3fbcf0e16db6e759d420151c6c57504", 0x28}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000002900000037000000881e"], 0x18}}], 0x2, 0x44080)

1m46.384872259s ago: executing program 4 (id=55):
close(0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getpid()
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, 0x0, &(0x7f0000000100))
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$FUSE_INIT(r1, &(0x7f0000000400)={0x6f, 0x0, 0x0, {0x7, 0x28, 0x80000001, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0xfffffede)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r2}, 0x18)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r1, 0x407, 0x2000000)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x100, 0x0)

1m46.199331114s ago: executing program 35 (id=55):
close(0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getpid()
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, 0x0, &(0x7f0000000100))
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$FUSE_INIT(r1, &(0x7f0000000400)={0x6f, 0x0, 0x0, {0x7, 0x28, 0x80000001, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0xfffffede)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r2}, 0x18)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r1, 0x407, 0x2000000)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x100, 0x0)

1m7.400729188s ago: executing program 5 (id=223):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="66b9800000c00f326635000400000f3066b99500004066b80000000066ba010000000f300f2a58dc670f01df660f73d000440f20c0663502000000440f22c00f32baf80c66b8c644b78966efbafc0cb80d00ef36f30fa6c866b9800000c00f326635000400000f30", 0x68}], 0x1, 0x20, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m6.229536502s ago: executing program 5 (id=230):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10001, @loopback, 0xe}, 0x1c)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, 0x0, 0x40000)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
prctl$PR_SET_SECCOMP(0x4e, 0x1, 0x0)
sendto$inet6(r0, &(0x7f0000000700)="00120b", 0x3, 0x4090, 0x0, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

1m6.088943503s ago: executing program 5 (id=232):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
execve(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xf0f005, 0x2})

1m5.102501723s ago: executing program 5 (id=234):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000015c0)={0x30, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x20000014)

1m4.933023917s ago: executing program 5 (id=235):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

1m4.713039495s ago: executing program 5 (id=239):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4008040)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xedc623580215bdcd, 0x12, r3, 0x0)

48.92086899s ago: executing program 36 (id=239):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4008040)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xedc623580215bdcd, 0x12, r3, 0x0)

6.648928953s ago: executing program 8 (id=588):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_SREGS2(r2, 0x4140aecd, &(0x7f00000022c0)={{0x5000, 0x10000, 0x4, 0xd, 0x0, 0x6, 0x22, 0x6, 0x5, 0xf8, 0x2, 0x5}, {0x5004, 0xeeef0000, 0xa, 0xbe, 0x1d, 0x3, 0x8, 0x2, 0x11, 0x9, 0x8, 0x5}, {0x6000, 0x6000, 0xf, 0x92, 0x9, 0x8, 0x9, 0x2, 0x8, 0x4, 0x2, 0x9}, {0x8092000, 0x4000, 0xe, 0x8, 0x5, 0x9, 0x7, 0x3, 0x9, 0x8, 0x7f, 0x4c}, {0x6000, 0xeeee8000, 0xa, 0x5, 0x8, 0x2, 0x7, 0xf, 0x56, 0xf, 0x1, 0x6}, {0x1, 0x4, 0x3, 0x5, 0xff, 0xfa, 0x6, 0x1, 0x8e, 0x6, 0x9, 0x78}, {0xf000, 0xeeee0000, 0xe, 0x1c, 0x1, 0x40, 0x10, 0x6, 0xe, 0x4b, 0x4, 0xf}, {0xeeef0000, 0xeeee0000, 0xd73260483c2bb7f2, 0x2, 0x0, 0x9, 0x8, 0x76, 0xb2, 0x9, 0x4, 0x9}, {0xd000, 0x9}, {0x6000, 0x5}, 0xe0040031, 0x0, 0x2000, 0x19a4ccc4517c82bf, 0xe, 0x5000, 0x4, 0x0, [0x2, 0xe, 0x7fffffff, 0x2]})

6.406410393s ago: executing program 9 (id=591):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
rt_sigaction(0x4, &(0x7f00000001c0)={&(0x7f0000000100)="44dfa3998999998f083087649e0d0036660f38df2b8f0978e14f00f246ad66450f28e2f0f658e4c401f5e84c5700", 0x0, 0x0, {[0x1]}}, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000140)={0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0100000000000000560000000000000066ba2000b0e2ee"], 0x6e})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x8000000000000035, 0xfff, 0x0, 0x40180, 0x5, 0x14, 0xf2, 0x3, 0x7fffffffffffe, 0x5, 0x5, 0xc6bd, 0x566, 0x45, 0x5, 0xbdb], 0x1, 0x1c4213})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.32847079s ago: executing program 8 (id=593):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000080)={&(0x7f0000000040)=[r1], 0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f00000000c0))
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r0, 0xc01864cb, &(0x7f0000000280)={&(0x7f0000000140)=[r1], &(0x7f0000000180), 0x1, 0x1})

6.020048215s ago: executing program 9 (id=594):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
lseek(0xffffffffffffffff, 0x851, 0x0)
execve(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xf0f005, 0x2})

6.019555164s ago: executing program 8 (id=595):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb1000008747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb80035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22383e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485a4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2245eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e4c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad64c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc590800", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0xfeffffffffffffff, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1af, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0x0, r1, r2, 0x3, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r3, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r3, r0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, 0x0)

5.047185413s ago: executing program 9 (id=597):
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x2c0, 0x0, &(0x7f0000000180)=[0x6bd1a312, 0x2ec66, 0x8, 0x8, 0x7, 0x800000000000009, 0x0, 0x1001, 0x10000, 0x100, 0x9004, 0x40000000000000, 0x3, 0x5, 0x5, 0x49, 0x3ff, 0x2, 0x0, 0xb, 0x8000000008, 0x4391, 0x1c1, 0x1000000003, 0x2, 0x2, 0x9, 0x7, 0x96, 0xffffffff, 0xffffffff00000000, 0x0, 0x9, 0x7, 0x23b, 0x3, 0x2, 0x8890, 0x8, 0x8, 0x6, 0x6, 0x3, 0xa3de, 0x4, 0x8, 0x5c3e, 0x622, 0x1, 0x5, 0xfffffffffffffffa, 0x1, 0xe, 0x7, 0x4, 0x100000000, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x40000005, 0xfffffffeffffffff, 0x8, 0xd, 0x9, 0xe8, 0x80000000, 0xfffffffffffffc00, 0x2, 0x4, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0xfff, 0x6, 0x4, 0x6, 0xab6, 0x8000000, 0x4, 0xfff, 0xffffffffffffff81, 0x9, 0x8000000000000000, 0x5, 0xff8, 0x5, 0x400000000008061d, 0x6, 0x8, 0xf6, 0x7, 0x6, 0x200, 0x7, 0xe53e, 0x2c, 0x2, 0x2293332f, 0x6, 0x34, 0x0, 0xd, 0x2, 0x4000005, 0x2, 0x2, 0x7, 0x8, 0xfffd, 0x10, 0x8, 0x8, 0x1, 0x53e0f0fe, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0x3ffc00000, 0x8, 0x3]})
ioctl$KVM_CAP_X86_GUEST_MODE(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000240))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x6, 0x3, 0x8000000000005, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x7fffffffffffe, 0x5, 0x0, 0x9, 0x0, 0x6, 0x6, 0x100000000000bdb], 0xffff1001, 0x124182})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000700)={[0x60000000002, 0x1000000000, 0x9d, 0x43, 0x2000001, 0x20002, 0x2004cb, 0x0, 0x1000000, 0x6903, 0x5, 0xdda, 0x3, 0x0, 0x6, 0x10000000000000], 0xdddd1000, 0x212})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.746760547s ago: executing program 8 (id=600):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x5)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1000000000021, 0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x4a243)
close(r2)

4.580737631s ago: executing program 6 (id=602):
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0xaaa, &(0x7f0000000240)="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", 0x0, 0xbfc})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.580476921s ago: executing program 9 (id=603):
r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000080)=ANY=[], 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x4, &(0x7f0000000040)=ANY=[])
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000800)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

4.58035532s ago: executing program 1 (id=604):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x4, 0x0, 0x717e387b, 0x40, "1ae34e06a6ffffff7f0000000040794233a5bd", 0x4, 0x2})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xf9)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0xff)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0xff)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200))
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x7)

4.411456824s ago: executing program 1 (id=606):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000000, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x7}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

4.405019004s ago: executing program 6 (id=608):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
lseek(0xffffffffffffffff, 0x851, 0x0)
execve(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xf0f005, 0x2})

3.437309303s ago: executing program 6 (id=610):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x14)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f000000a400)={0x2020, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90, 0x0, 0x0, {0x3, 0x1, 0x0, 0x0, 0xffffffff, 0x0, {0x6, 0x200000000, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x2, 0x0, 0x0, 0x101}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5}, 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x4842, 0x0)
writev(r6, &(0x7f0000000a40)=[{0x0}, {&(0x7f0000000e00)='t', 0x2fd200}, {0x0}, {&(0x7f0000001000)="d6", 0x20c00}], 0x21)

3.337206931s ago: executing program 1 (id=611):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/16], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x65, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)

2.73057814s ago: executing program 7 (id=614):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000880)={'wg2\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="280000001e000100000002000000000007000000", @ANYRES32=r2, @ANYBLOB="000006000a0002"], 0x28}}, 0x0)

2.60393149s ago: executing program 7 (id=615):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000200)="da467702e2520108dcebc5560e4f93142974b5122113", 0x16}], 0x1, 0x0, 0x0, 0x4000}, 0x4010)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

2.429418594s ago: executing program 7 (id=616):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$sysctl(r1, &(0x7f0000000000)='2\x00', 0x2)

2.235651s ago: executing program 7 (id=617):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000006000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x2, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0x7, 0x1, 0x4, 0x2, 0x1, 0x1, 0xff, 0x5, 0x0, 0xe, 0x9, 0xa, 0x2, 0xd, 0x5}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x6, 0xa, 0x5, 0x180, 0x0, 0x0, 0xf1, 0x0, 0x8, 0x5, 0x0, 0x9, 0x0, 0x0, 0x0, 0xbd5], 0x1, 0x3c4212})
syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_WRITE_SCAN_ENABLE={{0x9}, 0x3}}}, 0x7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.773832547s ago: executing program 7 (id=618):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(r0, 0xa, &(0x7f0000000000)={0x3ff, 0x1}, 0x0)

1.773481977s ago: executing program 6 (id=619):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4008040)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r4 = fanotify_init(0x81, 0x0)
fanotify_mark(r4, 0x105, 0x40001032, r3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xedc623580215bdcd, 0x12, r5, 0x0)
read$FUSE(r4, &(0x7f00000057c0)={0x2020}, 0x2020)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.772444477s ago: executing program 1 (id=620):
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0xaaa, &(0x7f0000000240)="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", 0x0, 0xbfc})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.318342494s ago: executing program 8 (id=621):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
lseek(0xffffffffffffffff, 0x851, 0x0)
execve(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xf0f005, 0x2})

1.277638737s ago: executing program 9 (id=622):
r0 = creat(&(0x7f0000000240)='./file1\x00', 0x0)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000300), 0x2)
r2 = memfd_create(&(0x7f00000009c0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x3)
ftruncate(r2, 0xffff)
fcntl$addseals(r2, 0x409, 0x7)
r3 = ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000100)={r2, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000040)=0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

1.219115512s ago: executing program 7 (id=623):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x5)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1000000000021, 0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x4a243)
close(r2)

608.115181ms ago: executing program 6 (id=624):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10001, @loopback, 0xe}, 0x1c)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x1)
prctl$PR_SET_SECCOMP(0x4e, 0x1, 0x0)
sendto$inet6(r0, &(0x7f0000000700)="00120b", 0x3, 0x4090, 0x0, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

463.627653ms ago: executing program 9 (id=625):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000140), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
r0 = epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000100)={0x20000014})
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)

396.862978ms ago: executing program 1 (id=626):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x10, 0x4, 0x8, 0x8}, 0x50)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='\a\x00\x00\x00\x00\x00\x00', @ANYRESOCT=r2], 0x44}}, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x2})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

332.799374ms ago: executing program 8 (id=627):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4008040)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r3 = fanotify_init(0x81, 0x0)
fanotify_mark(r3, 0x105, 0x40001032, r2, 0x0)

46.149327ms ago: executing program 6 (id=628):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_INSNLIST(r0, 0x8010640b, &(0x7f00000000c0)={0x66666666666678d, &(0x7f0000000000)=[{0x4000000, 0xad, 0x0, 0x0, 0x6}]})

0s ago: executing program 1 (id=629):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x10, 0x0, &(0x7f0000000500)=[@request_death], 0x0, 0x0, 0x0})
read$FUSE(r3, &(0x7f00000034c0)={0x2020}, 0x2020)

kernel console output (not intermixed with test programs):

t4_dirty_inode:6040: inode #15: comm syz.1.3: mark_inode_dirty error
[   58.960487][ T4304] EXT4-fs error (device loop1): ext4_do_update_inode:5204: inode #15: comm syz.1.3: corrupted inode contents
[   58.977921][ T4304] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #15: comm syz.1.3: mark_inode_dirty error
[   58.993122][ T4304] EXT4-fs error (device loop1): ext4_do_update_inode:5204: inode #15: comm syz.1.3: corrupted inode contents
[   59.010597][ T4304] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #15: comm syz.1.3: mark_inode_dirty error
[   59.024741][ T4304] EXT4-fs error (device loop1): ext4_do_update_inode:5204: inode #15: comm syz.1.3: corrupted inode contents
[   59.042050][ T4304] EXT4-fs error (device loop1): ext4_truncate:4273: inode #15: comm syz.1.3: mark_inode_dirty error
[   59.055714][ T4304] EXT4-fs error (device loop1): ext4_evict_inode:293: comm syz.1.3: couldn't truncate inode 15 (err -117)
[   59.211977][  T373] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.249335][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.284581][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   59.296462][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.310045][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.320352][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.332691][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.343437][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.357585][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.374941][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.397867][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.424843][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.435123][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.446028][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.457341][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.482072][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.492778][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.504058][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.507736][ T4308] loop1: detected capacity change from 0 to 512
[   59.520845][ T4182] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.566336][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   59.584151][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   59.593842][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   59.603293][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   59.632889][ T4315] loop3: detected capacity change from 0 to 512
[   59.640159][ T4308] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000002,,errors=continue. Quota mode: writeback.
[   59.657723][ T4186] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.667446][ T4308] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.671999][ T4186] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.686927][ T4186] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.696656][ T4186] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.704774][   T26] audit: type=1804 audit(1755808879.895:2): pid=4308 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.6" name="/newroot/1/file0/file1" dev="loop1" ino=15 res=1 errno=0
[   59.739291][ T4182] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.751006][ T4315] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #15: comm syz.3.8: iget: bad i_size value: 38620345925642
[   59.758300][ T4182] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.778643][ T4315] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.8: couldn't read orphan inode 15 (err -117)
[   59.810349][ T4182] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.818949][ T4315] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   59.820024][ T4182] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.063893][ T4322] loop1: detected capacity change from 0 to 128
[   60.099973][ T4322] =======================================================
[   60.099973][ T4322] WARNING: The mand mount option has been deprecated and
[   60.099973][ T4322]          and is ignored by this kernel. Remove the mand
[   60.099973][ T4322]          option from the mount to silence this warning.
[   60.099973][ T4322] =======================================================
[   60.155857][ T4305] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.202082][ T4322] EXT4-fs (loop1): Test dummy encryption mode enabled
[   60.212893][ T4267] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.226685][ T4305] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.239060][ T4267] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.249754][    T7] Bluetooth: hci2: command 0x0419 tx timeout
[   60.256187][    T7] Bluetooth: hci0: command 0x0419 tx timeout
[   60.276065][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   60.296958][    T7] Bluetooth: hci3: command 0x0419 tx timeout
[   60.306975][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   60.326464][ T4325] loop0: detected capacity change from 0 to 1024
[   60.333889][    T7] Bluetooth: hci4: command 0x0419 tx timeout
[   60.352236][    T7] Bluetooth: hci1: command 0x0419 tx timeout
[   60.401536][ T4325] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   60.459740][ T4322] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption=v1,max_dir_size_kb=0x0000000000000002,,errors=continue. Quota mode: none.
[   60.494412][ T4305] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.511149][ T4208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.546641][ T4208] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.580320][ T4305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.585771][ T4322] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   60.604550][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   60.646411][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   60.663261][ T4325] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[   60.800049][ T4208] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm kworker/u4:4: bg 0: block 5: invalid block bitmap
[   60.863547][ T4208] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   60.882877][ T4208] EXT4-fs (loop3): This should not happen!! Data will be lost
[   60.882877][ T4208] 
[   60.892421][ T4338] loop4: detected capacity change from 0 to 512
[   60.915144][ T4208] EXT4-fs (loop3): Total free blocks count 0
[   60.932695][ T4208] EXT4-fs (loop3): Free/Dirty block details
[   60.944655][ T4208] EXT4-fs (loop3): free_blocks=0
[   60.959871][ T4208] EXT4-fs (loop3): dirty_blocks=10760
[   60.959906][ T4208] EXT4-fs (loop3): Block reservation details
[   60.959917][ T4208] EXT4-fs (loop3): i_reserved_data_blocks=10760
[   60.994807][ T4338] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.5: casefold flag without casefold feature
[   60.995100][ T4338] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.5: couldn't read orphan inode 15 (err -117)
[   60.995284][ T4338] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobarrier,,errors=continue. Quota mode: writeback.
[   61.086874][ T4208] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[   61.100790][ T4208] EXT4-fs (loop3): This should not happen!! Data will be lost
[   61.100790][ T4208] 
[   61.125389][ T4346] loop2: detected capacity change from 0 to 512
[   61.157343][ T4338] overlayfs: invalid redirect (./file0/file1)
[   61.165000][ T4322] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[   61.261774][ T4346] EXT4-fs (loop2): inline encryption not supported
[   61.293224][ T4346] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[   61.361748][ T4322] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[   61.440285][ T4322] overlayfs: upper fs does not support tmpfile.
[   61.497646][ T4322] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[   61.582701][ T4368] loop0: detected capacity change from 0 to 512
[   61.585039][ T4346] EXT4-fs (loop2): Test dummy encryption mode enabled
[   61.598561][ T4346] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   61.629872][ T4346] EXT4-fs (loop2): orphan cleanup on readonly fs
[   61.636286][ T4346] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.13: inode #13: comm syz.2.13: iget: illegal inode #
[   61.651549][ T4346] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.13: couldn't read orphan inode 13 (err -117)
[   61.666844][ T4346] EXT4-fs (loop2): mounted filesystem without journal. Opts: lazytime,inlinecrypt,noblock_validity,abort,mblk_io_submit,dioread_nolock,max_dir_size_kb=0x000000000000222a,nouid32,test_dummy_encryption,bsdgroups,,errors=continue. Quota mode: none.
[   61.706877][ T4368] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[   61.734845][ T4368] EXT4-fs (loop0): orphan cleanup on readonly fs
[   61.746403][ T4346] EXT4-fs (loop2): shut down requested (2)
[   61.752484][ T4368] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[   61.820881][ T4368] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.16: attempt to clear invalid blocks 2 len 1
[   61.858258][ T4368] EXT4-fs (loop0): Remounting filesystem read-only
[   61.858476][ T4368] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   61.876678][ T4375] loop3: detected capacity change from 0 to 512
[   61.901495][ T4368] EXT4-fs (loop0): Remounting filesystem read-only
[   61.918523][ T4368] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.16: invalid indirect mapped block 1819239214 (level 0)
[   61.944741][ T4368] EXT4-fs (loop0): Remounting filesystem read-only
[   61.956296][ T4375] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.12: Parent and EA inode have the same ino 15
[   61.961595][ T4368] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.16: invalid indirect mapped block 1819239214 (level 1)
[   61.986426][ T4368] EXT4-fs (loop0): Remounting filesystem read-only
[   61.994341][ T4368] EXT4-fs (loop0): 1 truncate cleaned up
[   62.000388][ T4368] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,init_itable=0x0000000000000004,mblk_io_submit,minixdf,jqfmt=vfsv0,usrjquota=... Quota mode: writeback.
[   62.022368][ T4375] EXT4-fs (loop3): Remounting filesystem read-only
[   62.029303][ T4375] EXT4-fs (loop3): 1 orphan inode deleted
[   62.035163][ T4375] EXT4-fs (loop3): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000adb,bsdgroups,nobarrier,init_itable,errors=remount-ro,noinit_itable,nojournal_checksum,. Quota mode: none.
[   63.116176][ T4305] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.404605][ T4305] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.577026][ T4305] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.727288][ T4305] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.890194][ T4404] loop0: detected capacity change from 0 to 128
[   64.139200][ T4410] loop4: detected capacity change from 0 to 1024
[   64.191289][ T4410] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   64.365042][ T4410] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,dioread_nolock,jqfmt=vfsv1,debug_want_extra_isize=0x0000000000000070,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x00000000000003fe,user_xattr,noinit_itable,,errors=continue. Quota mode: none.
[   64.506149][ T4423] loop1: detected capacity change from 0 to 4096
[   64.541942][ T4410] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   64.675831][ T4423] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   64.695825][ T4410] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2825: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   64.751892][ T4423] fs-verity: sha256 using implementation "sha256-avx2"
[   64.843861][ T4428] EXT4-fs (loop4): Online defrag not supported with bigalloc
[   64.921791][ T4409] chnl_net:caif_netlink_parms(): no params data found
[   64.929049][ T4410] syz.4.27 (4410) used greatest stack depth: 20656 bytes left
[   64.993850][ T4441] loop0: detected capacity change from 0 to 1024
[   65.184607][ T4441] EXT4-fs (loop0): Ignoring removed bh option
[   65.268623][ T4453] loop4: detected capacity change from 0 to 1024
[   65.276145][ T4455] loop1: detected capacity change from 0 to 512
[   65.317974][ T4441] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodelalloc,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,stripe=0x0000000000000005,bh,init_itable,. Quota mode: none.
[   65.362109][ T4453] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   65.385438][ T4453] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869)
[   65.408468][ T4455] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   65.414537][ T4453] EXT4-fs (loop4): invalid journal inode
[   65.427505][ T4409] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.434899][ T4409] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.443437][ T4409] device bridge_slave_0 entered promiscuous mode
[   65.451223][ T4453] EXT4-fs (loop4): can't get journal size
[   65.460422][ T4455] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.506174][ T4453] EXT4-fs (loop4): mounted filesystem without journal. Opts: noload,,errors=continue. Quota mode: writeback.
[   65.527736][ T4409] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.555340][ T4409] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.602707][ T4455] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   65.633710][ T4453] EXT4-fs (loop4): Online resizing not supported with sparse_super2
[   65.636126][ T4468] loop3: detected capacity change from 0 to 512
[   65.648258][ T4409] device bridge_slave_1 entered promiscuous mode
[   65.687820][ T4441] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #12: block 7: comm syz.0.31: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[   65.754729][ T4409] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.805129][ T4468] EXT4-fs (loop3): inline encryption not supported
[   65.812253][ T4455] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 33 with error 28
[   65.845186][ T4468] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[   65.878462][ T4468] EXT4-fs (loop3): Test dummy encryption mode enabled
[   65.890435][ T4409] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.901017][ T4468] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   65.916386][ T4441] EXT4-fs (loop0): Remounting filesystem read-only
[   65.928181][ T4455] EXT4-fs (loop1): This should not happen!! Data will be lost
[   65.928181][ T4455] 
[   65.964396][ T4468] EXT4-fs (loop3): orphan cleanup on readonly fs
[   65.971341][ T4455] EXT4-fs (loop1): Total free blocks count 0
[   65.983367][ T4468] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.36: inode #13: comm syz.3.36: iget: illegal inode #
[   66.003889][ T4455] EXT4-fs (loop1): Free/Dirty block details
[   66.007068][ T4409] team0: Port device team_slave_0 added
[   66.020418][ T4409] team0: Port device team_slave_1 added
[   66.024566][ T4455] EXT4-fs (loop1): free_blocks=65280
[   66.048627][ T4468] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.36: couldn't read orphan inode 13 (err -117)
[   66.061505][ T4455] EXT4-fs (loop1): dirty_blocks=34
[   66.088698][ T4409] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.095765][ T4409] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.148214][ T4455] EXT4-fs (loop1): Block reservation details
[   66.154739][ T4468] EXT4-fs (loop3): mounted filesystem without journal. Opts: lazytime,inlinecrypt,noblock_validity,abort,mblk_io_submit,dioread_nolock,max_dir_size_kb=0x000000000000222a,nouid32,test_dummy_encryption,bsdgroups,,errors=continue. Quota mode: none.
[   66.175229][ T4409] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.191162][    T7] Bluetooth: hci1: command 0x0409 tx timeout
[   66.198706][ T4183] EXT4-fs error (device loop0): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /7/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   66.199438][ T4455] EXT4-fs (loop1): i_reserved_data_blocks=34
[   66.327741][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   66.336518][ T4409] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.344049][ T4409] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.352337][ T4468] EXT4-fs (loop3): shut down requested (2)
[   66.374167][ T4183] EXT4-fs error (device loop0): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /7/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   66.410428][  T144] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 159 with max blocks 1 with error 28
[   66.422285][ T4409] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.430215][  T144] EXT4-fs (loop1): This should not happen!! Data will be lost
[   66.430215][  T144] 
[   66.458590][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   66.519170][ T4183] EXT4-fs error (device loop0): empty_inline_dir:1855: inode #12: block 7: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0
[   66.590484][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   66.628454][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   66.650602][ T4409] device hsr_slave_0 entered promiscuous mode
[   66.673067][ T4183] EXT4-fs error (device loop0): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /7/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   66.697641][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   66.697766][ T4409] device hsr_slave_1 entered promiscuous mode
[   66.759388][ T4183] EXT4-fs error (device loop0): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /7/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   66.793421][ T4409] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.808202][ T4409] Cannot create hsr debugfs directory
[   66.883575][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   66.920708][ T4183] EXT4-fs error (device loop0): empty_inline_dir:1855: inode #12: block 7: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0
[   66.947277][ T4305] device hsr_slave_0 left promiscuous mode
[   66.951787][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   66.961918][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   66.977585][ T4305] device hsr_slave_1 left promiscuous mode
[   66.994077][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.997230][ T4183] EXT4-fs error (device loop0): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /7/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   67.012732][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.054789][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   67.064609][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.068205][ T4183] EXT4-fs error (device loop0): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /7/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   67.081660][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.095283][ T4493] mmap: syz.1.40 (4493) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[   67.114914][ T4305] device bridge_slave_1 left promiscuous mode
[   67.129289][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   67.132893][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.150440][ T4183] EXT4-fs error (device loop0): empty_inline_dir:1855: inode #12: block 7: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0
[   67.176867][ T4305] device bridge_slave_0 left promiscuous mode
[   67.187857][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.206845][ T4183] EXT4-fs (loop0): Remounting filesystem read-only
[   67.229243][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.245376][ T4305] device veth1_macvtap left promiscuous mode
[   67.254379][ T4305] device veth0_macvtap left promiscuous mode
[   67.266225][ T4305] device veth1_vlan left promiscuous mode
[   67.275637][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.281610][ T4305] device veth0_vlan left promiscuous mode
[   67.336486][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.400022][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.445940][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.493892][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.559980][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.631466][ T4183] EXT4-fs warning (device loop0): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   67.827275][ T4305] team0 (unregistering): Port device team_slave_1 removed
[   67.844162][ T4305] team0 (unregistering): Port device team_slave_0 removed
[   67.861303][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.906605][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   68.034958][ T4305] bond0 (unregistering): Released all slaves
[   68.248363][ T1325] Bluetooth: hci1: command 0x041b tx timeout
[   68.274572][ T4499] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   68.611699][ T4409] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   68.628202][ T4510] loop4: detected capacity change from 0 to 1024
[   68.656197][ T4409] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   68.686536][ T4409] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   68.715041][ T4409] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   68.726292][ T4510] EXT4-fs (loop4): Ignoring removed bh option
[   68.779084][ T4510] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,stripe=0x0000000000000005,bh,init_itable,. Quota mode: none.
[   68.966900][ T4519] loop1: detected capacity change from 0 to 1024
[   68.974885][ T4510] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #12: block 7: comm syz.4.48: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[   69.052349][ T4519] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   69.089133][ T4510] EXT4-fs (loop4): Remounting filesystem read-only
[   69.142247][ T4409] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.165561][ T4519] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,noquota,dioread_nolock,jqfmt=vfsv1,debug_want_extra_isize=0x0000000000000070,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x00000000000003fe,user_xattr,noinit_itable,,errors=continue. Quota mode: none.
[   69.309800][ T4186] EXT4-fs error (device loop4): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /11/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   69.333695][ T4519] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[   69.427610][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   69.452013][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   69.488818][ T4409] 8021q: adding VLAN 0 to HW filter on device team0
[   69.526406][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   69.535384][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.544221][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   69.554293][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.561435][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.578278][ T4186] EXT4-fs error (device loop4): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /11/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   69.642177][ T4518] chnl_net:caif_netlink_parms(): no params data found
[   69.651323][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.658944][ T4186] EXT4-fs error (device loop4): empty_inline_dir:1855: inode #12: block 7: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0
[   69.679099][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.687352][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.705403][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.715683][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.722897][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.737132][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.743842][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   69.769428][ T4186] EXT4-fs error (device loop4): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /11/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   69.791682][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.801307][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.807912][ T4186] EXT4-fs error (device loop4): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /11/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   69.810526][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   69.836300][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.847775][ T4186] EXT4-fs error (device loop4): empty_inline_dir:1855: inode #12: block 7: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0
[   69.859057][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   69.881375][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.894526][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   69.901646][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   69.911192][ T4186] EXT4-fs error (device loop4): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /11/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   69.939606][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   69.947135][ T4186] EXT4-fs error (device loop4): ext4_read_inline_dir:1600: inode #12: block 7: comm syz-executor: path /11/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[   69.994875][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.008226][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   70.012563][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   70.014996][ T4186] EXT4-fs error (device loop4): empty_inline_dir:1855: inode #12: block 7: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=20, inode=14, rec_len=40, size=60 fake=0
[   70.033937][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.072305][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   70.076617][ T4186] EXT4-fs (loop4): Remounting filesystem read-only
[   70.087024][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.098853][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.114290][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.138569][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.172100][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   70.181451][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.189008][  T373] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.205389][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.236569][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.238985][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   70.287060][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.328199][ T4294] Bluetooth: hci1: command 0x040f tx timeout
[   70.328367][ T4186] EXT4-fs warning (device loop4): empty_inline_dir:1862: bad inline directory (dir #12) - inode 14, rec_len 40, name_len 255inline size 60
[   70.398683][ T4518] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.462011][ T4518] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.487297][ T4518] device bridge_slave_0 entered promiscuous mode
[   70.590845][ T4518] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.599021][ T4518] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.618786][ T4518] device bridge_slave_1 entered promiscuous mode
[   70.733475][ T4518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.756265][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.766576][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.793966][ T4518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.891691][    T7] Bluetooth: hci0: command 0x0409 tx timeout
[   70.931526][ T4409] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.981507][ T4518] team0: Port device team_slave_0 added
[   70.991266][ T4518] team0: Port device team_slave_1 added
[   71.000340][ T4539] chnl_net:caif_netlink_parms(): no params data found
[   71.038987][ T4518] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.046051][ T4518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.077788][ T4518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.142163][ T4518] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.160919][ T4518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.208271][    T7] Bluetooth: hci2: command 0x0409 tx timeout
[   71.226110][ T4518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.341108][ T4539] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.367123][ T4539] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.377704][ T4539] device bridge_slave_0 entered promiscuous mode
[   71.385492][ T1429] ieee802154 phy0 wpan0: encryption failed: -22
[   71.392132][ T1429] ieee802154 phy1 wpan1: encryption failed: -22
[   71.399191][ T4539] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.406282][ T4539] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.425315][ T4539] device bridge_slave_1 entered promiscuous mode
[   71.512595][ T4518] device hsr_slave_0 entered promiscuous mode
[   71.529241][ T4518] device hsr_slave_1 entered promiscuous mode
[   71.556680][ T4518] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   71.570049][ T4518] Cannot create hsr debugfs directory
[   71.607627][ T4539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.663238][ T4539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.701190][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   71.718425][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   71.762888][ T4539] team0: Port device team_slave_0 added
[   71.802647][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   71.813934][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   71.825427][ T4539] team0: Port device team_slave_1 added
[   71.855310][ T4305] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.871397][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   71.880451][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   71.895980][ T4409] device veth0_vlan entered promiscuous mode
[   71.927834][ T4539] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.935412][ T4539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.963397][ T4539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.994511][ T4305] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.025672][ T4409] device veth1_vlan entered promiscuous mode
[   72.036895][ T4539] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.044235][ T4539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.071224][ T4539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.102117][ T4305] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.179521][ T4305] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.200942][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   72.213287][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   72.222634][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   72.238873][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   72.250774][ T4409] device veth0_macvtap entered promiscuous mode
[   72.276289][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   72.303893][ T4539] device hsr_slave_0 entered promiscuous mode
[   72.311016][ T4539] device hsr_slave_1 entered promiscuous mode
[   72.325611][ T4539] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   72.334390][ T4539] Cannot create hsr debugfs directory
[   72.344667][ T4409] device veth1_macvtap entered promiscuous mode
[   72.408538][ T4294] Bluetooth: hci1: command 0x0419 tx timeout
[   72.426322][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.437657][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.448487][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.459532][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.469657][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.480333][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.497317][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.508230][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.520039][ T4409] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.561846][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   72.570812][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   72.581674][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.592664][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.602665][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.613705][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.624412][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.635000][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.644905][ T4409] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.656218][ T4409] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.667163][ T4409] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.712691][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   72.722869][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   72.734927][ T4409] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.744900][ T4409] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.754530][ T4409] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.763520][ T4409] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.793223][ T4594] chnl_net:caif_netlink_parms(): no params data found
[   72.818873][ T4305] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.911617][ T4305] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.946180][ T4594] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.955223][ T4594] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.964186][ T4594] device bridge_slave_0 entered promiscuous mode
[   72.971490][ T1325] Bluetooth: hci0: command 0x041b tx timeout
[   73.017564][ T4305] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.065899][ T4594] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.077793][ T4594] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.093561][ T4594] device bridge_slave_1 entered promiscuous mode
[   73.139349][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.147607][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.166819][ T4617] kvm: pic: non byte read
[   73.172981][ T4617] kvm: pic: level sensitive irq not supported
[   73.173072][ T4617] kvm: pic: non byte read
[   73.188189][ T4594] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.197947][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   73.207711][ T4617] kvm: pic: level sensitive irq not supported
[   73.207767][ T4617] kvm: pic: non byte read
[   73.227305][ T4305] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.229917][ T4617] kvm: pic: level sensitive irq not supported
[   73.240873][ T4617] kvm: pic: non byte read
[   73.252456][ T4617] kvm: pic: level sensitive irq not supported
[   73.252520][ T4617] kvm: pic: non byte read
[   73.263906][ T4617] kvm: pic: level sensitive irq not supported
[   73.263962][ T4617] kvm: pic: non byte read
[   73.276050][  T373] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.276395][ T4594] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.288870][ T4294] Bluetooth: hci2: command 0x041b tx timeout
[   73.309089][ T4617] kvm: pic: level sensitive irq not supported
[   73.309143][ T4617] kvm: pic: non byte read
[   73.309157][  T373] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.385390][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   73.405054][ T4594] team0: Port device team_slave_0 added
[   73.525852][ T4594] team0: Port device team_slave_1 added
[   73.611188][ T4594] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.639306][ T4594] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.698091][ T4594] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.734699][ T4305] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.780333][ T4594] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.780349][ T4594] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.780369][ T4594] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.820017][ T4305] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.868742][   T21] Bluetooth: hci3: command 0x0409 tx timeout
[   73.997041][ T4594] device hsr_slave_0 entered promiscuous mode
[   74.006871][ T4594] device hsr_slave_1 entered promiscuous mode
[   74.026868][ T4594] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   74.037697][ T4594] Cannot create hsr debugfs directory
[   74.071641][ T4305] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.216833][ T4305] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.395652][ T4518] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   74.486854][ T4518] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   74.515792][ T4518] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   74.556250][ T4518] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   74.721536][ T4539] netdevsim netdevsim7 netdevsim0: renamed from eth0
[   74.759434][ T4539] netdevsim netdevsim7 netdevsim1: renamed from eth1
[   74.775422][ T4539] netdevsim netdevsim7 netdevsim2: renamed from eth2
[   74.877307][ T4539] netdevsim netdevsim7 netdevsim3: renamed from eth3
[   74.909669][ T4594] netdevsim netdevsim8 netdevsim0: renamed from eth0
[   74.998796][ T4594] netdevsim netdevsim8 netdevsim1: renamed from eth1
[   75.008238][ T4594] netdevsim netdevsim8 netdevsim2: renamed from eth2
[   75.053010][ T4594] netdevsim netdevsim8 netdevsim3: renamed from eth3
[   75.057176][ T4294] Bluetooth: hci0: command 0x040f tx timeout
[   75.177571][ T4703] autofs4:pid:4703:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a)
[   75.283470][ T4518] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.373360][   T13] Bluetooth: hci2: command 0x040f tx timeout
[   75.381673][ T4518] 8021q: adding VLAN 0 to HW filter on device team0
[   75.404096][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   75.419845][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   75.514974][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   75.524667][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   75.535943][ T4385] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.543107][ T4385] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.561448][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   75.575811][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   75.585007][ T4385] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.592137][ T4385] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.600338][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.610486][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   75.660726][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.671320][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   75.682078][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   75.691998][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   75.701151][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   75.735138][ T4518] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   75.746088][ T4518] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   75.761876][ T4539] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.772469][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   75.783431][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   75.795028][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   75.805162][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   75.818642][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   75.827289][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   75.840873][ T4594] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.906780][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   75.915145][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   75.928691][    T7] Bluetooth: hci3: command 0x041b tx timeout
[   75.933840][ T4539] 8021q: adding VLAN 0 to HW filter on device team0
[   75.946369][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   75.954908][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   75.966035][ T4594] 8021q: adding VLAN 0 to HW filter on device team0
[   75.999712][ T4173] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   76.034160][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.052054][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.066346][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.073538][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.136217][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   76.152557][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.169312][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.191933][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.199212][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.212351][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.221761][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   76.234855][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.242015][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.255964][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   76.263764][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   76.269174][ T4173] usb 2-1: Using ep0 maxpacket: 16
[   76.271712][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   76.295278][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.306549][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   76.315212][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.322356][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.344564][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   76.362409][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   76.398766][ T4173] usb 2-1: config 1 has an invalid descriptor of length 22, skipping remainder of the config
[   76.411795][ T4173] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   76.428267][ T4173] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[   76.447820][ T4518] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.480202][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   76.498688][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   76.500716][ T1110] cfg80211: failed to load regulatory.db
[   76.513589][   T23] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   76.529223][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   76.538368][ T4173] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   76.547425][ T4173] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   76.559680][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.573480][ T4173] usb 2-1: SerialNumber: syz
[   76.590418][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   76.617576][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.646282][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   76.675422][ T4173] hub 2-1:1.0: bad descriptor, ignoring hub
[   76.683538][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   76.698159][ T4173] hub: probe of 2-1:1.0 failed with error -5
[   76.706401][ T4173] cdc_ether: probe of 2-1:1.0 failed with error -22
[   76.716603][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   76.725633][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   76.752629][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   76.761975][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.802547][ T4594] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   76.828144][ T4594] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   76.859222][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   76.867182][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   76.909060][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   76.923910][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   76.932763][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   76.948287][   T23] usb 6-1: config index 0 descriptor too short (expected 39, got 27)
[   76.956524][   T23] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   76.967379][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   76.985037][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   76.993165][   T23] usb 6-1: config 0 interface 0 has no altsetting 0
[   77.000594][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   77.012293][ T4539] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   77.038472][ T4248] usb 2-1: USB disconnect, device number 2
[   77.079534][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   77.136936][    T7] Bluetooth: hci0: command 0x0419 tx timeout
[   77.199566][   T23] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   77.216454][   T23] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   77.258416][   T23] usb 6-1: Product: syz
[   77.262611][   T23] usb 6-1: Manufacturer: syz
[   77.267378][   T23] usb 6-1: SerialNumber: syz
[   77.303848][   T23] usb 6-1: config 0 descriptor??
[   77.358958][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   77.378821][   T23] hub 6-1:0.0: bad descriptor, ignoring hub
[   77.384866][   T23] hub: probe of 6-1:0.0 failed with error -5
[   77.388761][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   77.405856][   T23] usb 6-1: selecting invalid altsetting 0
[   77.449239][ T4294] Bluetooth: hci2: command 0x0419 tx timeout
[   77.637463][ T4594] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.679560][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   77.688490][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   77.696012][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   77.719637][   T23] usb 6-1: USB disconnect, device number 2
[   77.747698][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   77.794594][ T4518] device veth0_vlan entered promiscuous mode
[   77.818335][ T4539] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.825480][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   77.838431][ T1107] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   77.847304][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   77.878668][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   77.908325][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   77.935183][ T4518] device veth1_vlan entered promiscuous mode
[   78.007894][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   78.016026][ T4293] Bluetooth: hci3: command 0x040f tx timeout
[   78.095388][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   78.112009][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   78.158895][ T4518] device veth0_macvtap entered promiscuous mode
[   78.187227][ T4518] device veth1_macvtap entered promiscuous mode
[   78.256479][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.304900][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.333474][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.358285][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.368352][ T1107] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   78.368600][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.385129][ T1107] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   78.388619][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.396621][ T1107] usb 2-1: Product: syz
[   78.411291][ T1107] usb 2-1: Manufacturer: syz
[   78.414065][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.415966][ T1107] usb 2-1: SerialNumber: syz
[   78.431977][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.443255][ T1107] usb 2-1: config 0 descriptor??
[   78.450080][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.460774][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.472811][ T4518] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.485433][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.496694][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.508613][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.519673][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.529981][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.541974][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.558722][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.570229][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.580533][ T4518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.591596][ T4518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.604317][ T4518] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.623281][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   78.633165][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   78.641784][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   78.650919][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   78.661546][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   78.670628][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   78.710631][ T4518] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.747878][ T4518] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.763137][ T4518] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.773713][ T4518] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.829452][ T4293] usb 2-1: USB disconnect, device number 3
[   78.902573][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   78.920480][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   78.950586][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   78.965670][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   79.017717][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   79.033633][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   79.067507][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   79.085168][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   79.120439][ T4594] device veth0_vlan entered promiscuous mode
[   79.171734][ T4305] device hsr_slave_0 left promiscuous mode
[   79.187870][ T4305] device hsr_slave_1 left promiscuous mode
[   79.209838][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.236240][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.245355][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.267584][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.289348][ T4305] device bridge_slave_1 left promiscuous mode
[   79.308325][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.317322][ T4305] device bridge_slave_0 left promiscuous mode
[   79.323733][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.337380][ T4305] device hsr_slave_0 left promiscuous mode
[   79.344584][ T4305] device hsr_slave_1 left promiscuous mode
[   79.351730][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.360926][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.370885][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.379079][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.387582][ T4305] device bridge_slave_1 left promiscuous mode
[   79.394288][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.404042][ T4305] device bridge_slave_0 left promiscuous mode
[   79.411024][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.446489][ T4305] device hsr_slave_0 left promiscuous mode
[   79.453928][ T4305] device hsr_slave_1 left promiscuous mode
[   79.469697][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.477467][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.486633][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.494438][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.502364][ T4305] device bridge_slave_1 left promiscuous mode
[   79.508817][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.516935][ T4305] device bridge_slave_0 left promiscuous mode
[   79.523371][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.542792][ T4305] device veth1_macvtap left promiscuous mode
[   79.549166][ T4305] device veth0_macvtap left promiscuous mode
[   79.555206][ T4305] device veth1_vlan left promiscuous mode
[   79.561652][ T4305] device veth0_vlan left promiscuous mode
[   79.571414][ T4305] device veth1_macvtap left promiscuous mode
[   79.577455][ T4305] device veth0_macvtap left promiscuous mode
[   79.587998][ T4305] device veth1_vlan left promiscuous mode
[   79.594028][ T4305] device veth0_vlan left promiscuous mode
[   79.601690][ T4305] device veth1_macvtap left promiscuous mode
[   79.608415][ T4305] device veth0_macvtap left promiscuous mode
[   79.614600][ T4305] device veth1_vlan left promiscuous mode
[   79.620622][ T4305] device veth0_vlan left promiscuous mode
[   79.962100][ T4305] team0 (unregistering): Port device team_slave_1 removed
[   79.976640][ T4305] team0 (unregistering): Port device team_slave_0 removed
[   79.993764][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.022376][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.088236][ T4293] Bluetooth: hci3: command 0x0419 tx timeout
[   80.208092][ T4305] bond0 (unregistering): Released all slaves
[   80.372746][ T4305] team0 (unregistering): Port device team_slave_1 removed
[   80.386848][ T4305] team0 (unregistering): Port device team_slave_0 removed
[   80.399718][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.414040][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.479007][ T4305] bond0 (unregistering): Released all slaves
[   80.619733][ T4305] team0 (unregistering): Port device team_slave_1 removed
[   80.635475][ T4305] team0 (unregistering): Port device team_slave_0 removed
[   80.647932][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.663852][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.736624][ T4305] bond0 (unregistering): Released all slaves
[   80.778566][ T4539] device veth0_vlan entered promiscuous mode
[   80.786885][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   80.799257][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   80.807342][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   80.816008][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   80.843888][ T4810] netlink: 40 bytes leftover after parsing attributes in process `syz.1.74'.
[   80.866024][ T4539] device veth1_vlan entered promiscuous mode
[   80.878748][ T4810] Zero length message leads to an empty skb
[   80.931983][ T4594] device veth1_vlan entered promiscuous mode
[   81.039681][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   81.059337][ T4385] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.079181][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.098484][ T4385] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.116930][ T4539] device veth0_macvtap entered promiscuous mode
[   81.207279][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   81.238839][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   81.256582][ T4594] device veth0_macvtap entered promiscuous mode
[   81.277209][ T4539] device veth1_macvtap entered promiscuous mode
[   81.301700][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   81.310334][ T4385] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.327875][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   81.341648][ T4385] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.402207][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.416833][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   81.441418][ T4594] device veth1_macvtap entered promiscuous mode
[   81.635590][ T4822] netlink: 'syz.5.79': attribute type 4 has an invalid length.
[   81.908875][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   82.010376][ T4354] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   82.086598][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.188905][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.199533][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.214994][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.225545][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.236362][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.249300][ T4594] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.257748][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.296257][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.337243][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.367724][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.393938][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.423283][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.445163][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.466730][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.508100][ T4539] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.543202][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   82.577709][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   82.597769][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   82.609208][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   82.620350][ T4852] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   82.637630][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.652553][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.663916][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.674740][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.685990][ T4539] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.711052][ T4539] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.722637][ T4539] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.734838][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.748185][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.758519][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.779227][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.799335][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.818970][ T4857] loop6: detected capacity change from 0 to 4096
[   82.835273][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.845506][ T4594] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.860151][ T4594] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.873180][ T4594] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.886123][ T4857] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   82.907466][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   82.920560][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   82.929626][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   82.938546][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   82.949937][ T4539] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.959674][ T4539] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.969759][ T4539] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.978598][ T4539] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.074693][ T4354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.118658][ T4354] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.121400][ T4594] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.138462][ T4594] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.147579][ T4594] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.159442][ T4594] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.361794][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   83.732661][ T4354] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.757806][ T4354] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.789284][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   83.975171][ T4385] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.011320][ T4872] bridge0: port 3(syz_tun) entered blocking state
[   84.032289][ T4385] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.061510][ T4872] bridge0: port 3(syz_tun) entered disabled state
[   84.080310][ T4876] loop7: detected capacity change from 0 to 128
[   84.097920][ T4872] device syz_tun entered promiscuous mode
[   84.105720][ T4872] bridge0: port 3(syz_tun) entered blocking state
[   84.112797][ T4872] bridge0: port 3(syz_tun) entered forwarding state
[   84.134964][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   84.237893][ T4876] attempt to access beyond end of device
[   84.237893][ T4876] loop7: rw=2049, want=250, limit=128
[   84.248813][ T4208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.294372][ T4208] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.324724][ T4880] attempt to access beyond end of device
[   84.324724][ T4880] loop7: rw=2049, want=140, limit=128
[   84.361344][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   84.425768][ T4880] Buffer I/O error on dev loop7, logical block 69, lost async page write
[   84.502147][ T4880] attempt to access beyond end of device
[   84.502147][ T4880] loop7: rw=2049, want=146, limit=128
[   84.593883][ T4880] Buffer I/O error on dev loop7, logical block 72, lost async page write
[   84.602941][   T26] audit: type=1326 audit(1755808904.795:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.5.91" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3746bfebe9 code=0x0
[   84.828629][ T4901] netlink: 'syz.1.92': attribute type 4 has an invalid length.
[   85.128664][ T4293] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   85.498495][ T4293] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   85.543419][ T4293] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   85.586171][ T4293] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   85.620958][ T4293] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.698503][ T4899] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   86.165408][ T4913] syz.7.95 (4913): drop_caches: 2
[   86.664086][ T4956] netlink: 12 bytes leftover after parsing attributes in process `syz.1.104'.
[   86.864846][ T4961] bridge0: port 3(syz_tun) entered blocking state
[   86.912695][ T4961] bridge0: port 3(syz_tun) entered disabled state
[   86.961829][ T4961] device syz_tun entered promiscuous mode
[   87.001479][ T4961] bridge0: port 3(syz_tun) entered blocking state
[   87.008056][ T4961] bridge0: port 3(syz_tun) entered forwarding state
[   87.239801][ T4971] kvm: pic: single mode not supported
[   87.339964][   T21] usb 9-1: USB disconnect, device number 2
[   87.858628][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[   89.537614][ T5013] syz.6.114 uses obsolete (PF_INET,SOCK_PACKET)
[   91.548041][    C0] sched: RT throttling activated
[   93.498210][ T4663] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   93.901159][ T4663] usb 6-1: Using ep0 maxpacket: 16
[   95.348420][ T4663] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   96.149798][ T4663] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   96.288188][ T4663] usb 6-1: string descriptor 0 read error: -71
[   96.321316][ T4663] usb 6-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[   96.432832][ T4663] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.491545][ T4663] usb 6-1: config 0 descriptor??
[   96.538484][ T4663] usb 6-1: can't set config #0, error -71
[   96.552295][ T4663] usb 6-1: USB disconnect, device number 3
[   97.383973][ T5152] netlink: 'syz.5.150': attribute type 4 has an invalid length.
[   99.728273][ T4173] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   99.857148][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[   99.867095][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[   99.878041][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   99.887080][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   99.896108][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   99.905412][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   99.914428][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   99.923699][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   99.932913][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   99.955126][ T5203] netlink: 'syz.8.167': attribute type 4 has an invalid length.
[  100.051486][ T5211] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  100.318299][ T4173] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  100.345177][ T4173] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  100.396956][ T4173] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  100.437110][ T4173] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.468197][ T5227] vivid-001: disconnect
[  100.480547][ T5186] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  100.522946][ T5227] vivid-001: reconnect
[  100.620731][ T4198] Bluetooth: to_multiplier 0 < 10
[  103.057066][ T4173] Bluetooth: hci3: command 0x2021 tx timeout
[  103.137514][   T13] usb 8-1: USB disconnect, device number 2
[  105.700597][ T4234] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  106.098291][ T4234] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  106.123679][ T4234] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  106.134193][ T4173] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  106.163165][ T4234] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  106.195570][ T4234] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.228444][ T5310] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  106.679132][    C1] vcan0: j1939_tp_rxtimer: 0xffff888061925800: rx timeout, send abort
[  107.048289][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888061925800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  107.243849][ T5353] netlink: 'syz.1.202': attribute type 4 has an invalid length.
[  107.318491][ T4173] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  107.353888][ T4173] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  107.386666][ T4173] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  107.423692][ T4173] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.445940][ T5362] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  107.491252][ T5330] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  108.778266][    T7] usb 6-1: USB disconnect, device number 4
[  109.921864][ T5402] ieee802154 phy0 wpan0: encryption failed: -22
[  109.953536][ T5404] netlink: 'syz.7.215': attribute type 4 has an invalid length.
[  110.200876][ T5409] loop1: detected capacity change from 0 to 4096
[  110.283181][ T4663] usb 7-1: USB disconnect, device number 2
[  110.388616][ T5409] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  111.136202][ T5427] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  111.212080][ T5427] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  111.258319][ T4663] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  111.618498][ T5456] netlink: 'syz.5.230': attribute type 4 has an invalid length.
[  111.689071][ T4663] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  111.748056][ T4663] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  111.777539][ T4663] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  111.793284][ T4663] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.911215][   T21] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  112.682038][ T5425] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  113.015962][ T5482] loop1: detected capacity change from 0 to 4096
[  113.022830][   T21] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  113.045753][   T21] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  113.056670][   T21] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  113.073308][   T21] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.098460][ T5459] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  113.174486][ T5482] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  113.366453][   T21] usb 9-1: USB disconnect, device number 3
[  114.226405][ T4663] usb 7-1: USB disconnect, device number 3
[  114.253169][ T5508] netlink: 'syz.7.242': attribute type 4 has an invalid length.
[  115.837223][ T5555] netlink: 'syz.7.255': attribute type 4 has an invalid length.
[  116.141120][ T4663] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  116.948328][ T4198] Bluetooth: unknown link type 88
[  117.298472][ T4663] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  117.327862][ T4663] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  117.350748][ T4663] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  117.360846][ T4663] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.412837][ T5549] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  117.558388][   T21] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  118.508297][ T4234] usb 2-1: USB disconnect, device number 4
[  119.463022][   T21] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.504375][   T21] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.515031][   T21] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  119.556971][   T21] usb 9-1: New USB device found, idVendor=20d6, idProduct=cb17, bcdDevice= 0.00
[  119.566606][   T21] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.584136][   T21] usb 9-1: config 0 descriptor??
[  119.602300][ T4234] Bluetooth: hci2: command 0x0409 tx timeout
[  119.888584][ T5655] loop6: detected capacity change from 0 to 4096
[  119.979757][   T21] usbhid 9-1:0.0: can't add hid device: -71
[  119.985778][   T21] usbhid: probe of 9-1:0.0 failed with error -71
[  119.996506][ T5655] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  120.019418][   T21] usb 9-1: USB disconnect, device number 4
[  120.831265][ T5676] netlink: 28 bytes leftover after parsing attributes in process `syz.7.281'.
[  122.413386][ T5731] capability: warning: `syz.1.292' uses 32-bit capabilities (legacy support in use)
[  122.427083][ T5728] loop8: detected capacity change from 0 to 4096
[  122.505588][ T5728] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  123.474405][ T5752] binder: 5751:5752 unknown command 1074553620
[  123.506224][ T5752] binder: 5751:5752 ioctl c0306201 200000000380 returned -22
[  125.046899][ T5791] loop8: detected capacity change from 0 to 4096
[  125.367026][ T5791] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  126.458114][ T4248] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  126.708337][ T4248] usb 7-1: Using ep0 maxpacket: 16
[  126.828235][ T4248] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  126.851090][ T4248] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 75, changing to 10
[  127.019101][ T4248] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 25344, setting to 1024
[  127.031229][ T4248] usb 7-1: config 0 interface 0 has no altsetting 0
[  127.198676][ T4248] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  127.218224][ T4248] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.226258][ T4248] usb 7-1: Product: syz
[  127.236854][ T4248] usb 7-1: Manufacturer: syz
[  127.243573][ T4248] usb 7-1: SerialNumber: syz
[  127.377108][ T4248] usb 7-1: config 0 descriptor??
[  127.650903][ T4248] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input5
[  127.910829][ T4248] usb 7-1: USB disconnect, device number 4
[  127.923013][ T5500] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -19
[  128.050105][ T3545] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -19
[  129.288361][   T21] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  129.528069][    T7] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  129.548509][   T21] usb 7-1: Using ep0 maxpacket: 8
[  129.688462][   T21] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  129.706974][   T21] usb 7-1: config 0 has no interface number 0
[  129.756881][   T21] usb 7-1: config 0 interface 55 altsetting 0 has an invalid endpoint with address 0x80, skipping
[  129.823222][   T21] usb 7-1: config 0 interface 55 altsetting 0 has an invalid endpoint with address 0xAB, skipping
[  129.913501][   T21] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  129.918750][ T5887] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  129.971389][   T21] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  130.001185][   T21] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.035341][   T21] usb 7-1: config 0 descriptor??
[  130.085943][   T21] ldusb 7-1:0.55: Interrupt in endpoint not found
[  130.128396][    T7] usb 2-1: config index 0 descriptor too short (expected 39, got 27)
[  130.148710][ T4354] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.154605][    T7] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  130.180279][    T7] usb 2-1: config 0 interface 0 has no altsetting 0
[  130.220689][ T5875] chnl_net:caif_netlink_parms(): no params data found
[  130.297873][ T4227] usb 7-1: USB disconnect, device number 5
[  130.488335][    T7] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  130.511418][    T7] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  130.519199][   T21] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  130.533454][   T21] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  130.543302][    T7] usb 2-1: Product: syz
[  130.563909][    T7] usb 2-1: Manufacturer: syz
[  130.580668][    T7] usb 2-1: SerialNumber: syz
[  130.603088][    T7] usb 2-1: config 0 descriptor??
[  130.615558][ T4354] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.637979][ T5875] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.648221][ T5875] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.665386][    T7] hub 2-1:0.0: bad descriptor, ignoring hub
[  130.666138][ T5875] device bridge_slave_0 entered promiscuous mode
[  130.671616][    T7] hub: probe of 2-1:0.0 failed with error -5
[  130.692099][ T5875] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.697419][    T7] usb 2-1: selecting invalid altsetting 0
[  130.706626][ T5875] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.726237][ T5875] device bridge_slave_1 entered promiscuous mode
[  130.751506][ T4354] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.845096][    T7] usb 2-1: USB disconnect, device number 5
[  130.916615][ T5913] netlink: 4 bytes leftover after parsing attributes in process `syz.1.335'.
[  130.956660][ T5875] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  130.982649][ T4354] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.048295][ T5914] netlink: 12 bytes leftover after parsing attributes in process `syz.1.335'.
[  131.081704][ T5875] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.110620][ T5922] qfq: no options
[  131.189547][ T5921] netlink: 'syz.6.338': attribute type 4 has an invalid length.
[  131.319512][ T5875] team0: Port device team_slave_0 added
[  131.344334][ T5875] team0: Port device team_slave_1 added
[  131.608226][ T4234] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  131.626026][ T4227] Bluetooth: hci1: command 0x0409 tx timeout
[  131.868846][ T4234] usb 8-1: Using ep0 maxpacket: 8
[  132.027779][ T4234] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  132.241011][ T5875] batman_adv: batadv0: Adding interface: batadv_slave_0
[  132.279335][ T4234] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  132.289959][ T5875] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.378582][ T4234] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  132.417857][ T4234] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  132.446574][ T5875] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  132.465160][ T4234] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  132.512869][ T5875] batman_adv: batadv0: Adding interface: batadv_slave_1
[  132.549746][ T5875] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.554678][ T4234] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  132.591672][ T4234] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.659870][ T5875] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  132.717195][ T5945] team0: Device vlan0 is up. Set it down before adding it as a team port
[  132.813074][ T1429] ieee802154 phy0 wpan0: encryption failed: -22
[  132.819462][ T1429] ieee802154 phy1 wpan1: encryption failed: -22
[  132.868228][ T4234] usb 8-1: usb_control_msg returned -32
[  132.874084][ T4234] usbtmc 8-1:16.0: can't read capabilities
[  133.225311][ T5875] device hsr_slave_0 entered promiscuous mode
[  133.249952][ T5875] device hsr_slave_1 entered promiscuous mode
[  133.324334][ T5956] kernel profiling enabled (shift: 5)
[  133.463635][ T5959] hub 1-0:1.0: USB hub found
[  133.472853][ T5959] hub 1-0:1.0: 1 port detected
[  133.616270][ T5961] netlink: 'syz.1.352': attribute type 4 has an invalid length.
[  133.688357][ T4241] Bluetooth: hci1: command 0x041b tx timeout
[  133.741357][   T21] usb 8-1: USB disconnect, device number 3
[  133.776190][ T5969] 9pnet_virtio: no channels available for device syz
[  134.085729][ T5875] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  134.105746][ T5977] loop1: detected capacity change from 0 to 4096
[  134.117398][ T5875] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  134.172967][ T5875] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  134.190491][ T5977] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  134.207160][ T5875] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  135.005436][ T5875] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.062731][ T5875] 8021q: adding VLAN 0 to HW filter on device team0
[  135.138123][    T7] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  135.182720][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  135.219297][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  135.300052][ T4354] device hsr_slave_0 left promiscuous mode
[  135.306681][ T4354] device hsr_slave_1 left promiscuous mode
[  135.342161][ T4354] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.351892][ T4354] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.371625][ T4354] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.380306][ T4354] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.395230][ T4354] device bridge_slave_1 left promiscuous mode
[  135.401919][ T4354] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.417660][ T4354] device bridge_slave_0 left promiscuous mode
[  135.424498][ T4354] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.438224][    T7] usb 8-1: Using ep0 maxpacket: 8
[  135.454264][ T4354] device veth1_macvtap left promiscuous mode
[  135.463366][ T4354] device veth0_macvtap left promiscuous mode
[  135.477573][ T4354] device veth1_vlan left promiscuous mode
[  135.498512][ T4354] device veth0_vlan left promiscuous mode
[  135.598369][    T7] usb 8-1: config 0 interface 0 has no altsetting 0
[  135.605052][    T7] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  135.755968][    T7] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.775684][ T4241] Bluetooth: hci1: command 0x040f tx timeout
[  135.779291][    T7] usb 8-1: config 0 descriptor??
[  135.907006][ T4354] team0 (unregistering): Port device team_slave_1 removed
[  135.933817][ T4354] team0 (unregistering): Port device team_slave_0 removed
[  135.957345][ T4354] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.986282][ T4354] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  136.132760][ T4354] bond0 (unregistering): Released all slaves
[  136.193624][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  136.204430][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  136.214846][  T151] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.222006][  T151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.235985][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  136.247178][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  136.262888][  T151] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.263368][    T7] mcp2221 0003:04D8:00DD.0002: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.7-1/input0
[  136.270056][  T151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.272663][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  136.306901][ T6005] netlink: 'syz.1.362': attribute type 4 has an invalid length.
[  136.337703][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  136.352540][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  136.384694][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.441184][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.529522][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  136.545009][ T5116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.585839][ T5116] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.615443][ T6012] tipc: Started in network mode
[  136.628082][ T6012] tipc: Node identity 4, cluster identity 4711
[  136.634419][ T6012] tipc: Node number set to 4
[  136.640041][ T4663] usb 8-1: USB disconnect, device number 4
[  136.665808][ T6014] netlink: 40 bytes leftover after parsing attributes in process `syz.8.368'.
[  136.709858][ T5875] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  136.732824][ T5875] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  136.768803][ T5004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  136.789689][ T5004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  136.809210][ T5004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  136.859418][ T5004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  136.875699][ T5004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  136.891112][ T6020] loop1: detected capacity change from 0 to 4096
[  136.988777][ T6020] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  137.322360][ T6030] fuse: Bad value for 'fd'
[  137.853277][ T4663] Bluetooth: hci1: command 0x0419 tx timeout
[  138.109291][ T6047] netlink: 'syz.7.376': attribute type 4 has an invalid length.
[  138.117337][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  138.160781][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  138.293750][ T5875] 8021q: adding VLAN 0 to HW filter on device batadv0
[  138.780901][ T6076] tipc: Started in network mode
[  138.806702][ T6076] tipc: Node identity e672c15c986d, cluster identity 4711
[  138.838247][ T6076] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  138.862219][ T6079] device syzkaller0 entered promiscuous mode
[  138.916522][ T6076] tipc: Resetting bearer <eth:syzkaller0>
[  139.086878][ T6074] tipc: Resetting bearer <eth:syzkaller0>
[  139.163453][ T6074] tipc: Disabling bearer <eth:syzkaller0>
[  139.258296][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  139.277580][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  139.401749][ T6086] netlink: 'syz.1.384': attribute type 10 has an invalid length.
[  139.431178][ T4294] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  139.471262][ T6092] 9pnet_virtio: no channels available for device syz
[  139.503087][ T6086] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  139.600308][ T6086] syz.1.384 (6086) used greatest stack depth: 20480 bytes left
[  139.676200][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  139.692792][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  139.742213][ T5875] device veth0_vlan entered promiscuous mode
[  139.763907][ T6098] fuse: Bad value for 'fd'
[  139.775348][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  139.786354][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  139.810250][ T6096] netlink: 'syz.1.389': attribute type 4 has an invalid length.
[  139.834314][ T5875] device veth1_vlan entered promiscuous mode
[  139.878429][ T4294] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  139.888714][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  139.910558][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  139.928289][ T4294] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  139.939467][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  139.958475][ T4294] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  139.959649][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  139.991986][ T5875] device veth0_macvtap entered promiscuous mode
[  139.998765][ T4294] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.021232][ T5875] device veth1_macvtap entered promiscuous mode
[  140.058534][ T6084] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  140.071956][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.124299][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.152089][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.172916][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.183109][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.199363][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.214980][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.227284][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.248583][ T5875] batman_adv: batadv0: Interface activated: batadv_slave_0
[  140.274943][ T5041] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  140.285158][ T5041] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  140.309291][ T5041] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  140.319137][ T5041] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  140.339859][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.370988][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.392168][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.425173][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.447486][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.473616][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.494229][ T5875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.518629][ T5875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.543299][ T5875] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.557703][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  140.600062][  T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  140.644090][ T5875] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.672963][ T5875] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.699702][ T5875] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.717838][ T5875] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.005346][  T151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.044539][  T151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.094824][ T5116] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  141.141593][ T5004] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.176566][ T5004] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.213626][ T5116] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  142.276673][ T6133] netlink: 4 bytes leftover after parsing attributes in process `syz.1.398'.
[  142.320895][ T6129] netlink: 'syz.7.399': attribute type 4 has an invalid length.
[  142.345376][ T4293] usb 7-1: USB disconnect, device number 6
[  142.564189][   T26] audit: type=1326 audit(1755808962.765:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6143 comm="syz.8.403" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe2792d0be9 code=0x0
[  142.663990][ T6150] fuse: Bad value for 'fd'
[  143.451050][    C1] hrtimer: interrupt took 58146 ns
[  143.849809][ T6177] netlink: 'syz.7.412': attribute type 4 has an invalid length.
[  143.983157][ T6187] binder: 6186:6187 unknown command 1074553619
[  144.018076][ T6187] binder: 6186:6187 ioctl c0306201 200000000040 returned -22
[  144.046777][ T6191] binder: 6186:6191 ioctl 40044591 0 returned -22
[  144.068918][ T4293] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  144.110180][ T6191] binder: 6186:6191 unknown command 1074553620
[  144.116382][ T6191] binder: 6186:6191 ioctl c0306201 200000000640 returned -22
[  144.458273][ T4293] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  144.478213][ T4293] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  144.511722][ T4293] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  144.526181][ T4293] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.570067][ T6175] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  146.766913][ T4173] usb 9-1: USB disconnect, device number 5
[  147.376473][ T6248] syz.9.423 (6248): drop_caches: 2
[  147.609013][ T6294] binder: 6293:6294 ioctl c0306201 200000000080 returned -14
[  147.618996][ T6294] binder_alloc: 6293: pid 6293 spamming oneway? 1 buffers allocated for a total size of 4096
[  147.773832][ T6301] netlink: 'syz.6.431': attribute type 4 has an invalid length.
[  148.172814][ T6316] device syzkaller0 entered promiscuous mode
[  148.487549][ T6321] 9pnet_virtio: no channels available for device syz
[  148.594712][ T6330] 9pnet_virtio: no channels available for device syz
[  148.707225][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8880615ae800: rx timeout, send abort
[  148.716088][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff8880615ae800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  148.956940][ T6357] netlink: 'syz.1.444': attribute type 4 has an invalid length.
[  149.405231][ T6377] loop6: detected capacity change from 0 to 4096
[  149.670436][ T6377] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  150.345350][ T6407] netlink: 'syz.8.456': attribute type 4 has an invalid length.
[  150.483535][ T6413] device erspan0 entered promiscuous mode
[  150.569538][   T21] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  150.938206][   T21] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  150.962749][   T21] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  150.993506][   T21] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  151.019948][   T21] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.565611][ T6400] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  151.609164][ T4196] Bluetooth: hci0: link tx timeout
[  151.615745][ T4196] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  151.714689][ T6453] netlink: 'syz.6.466': attribute type 10 has an invalid length.
[  151.761343][ T6453] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  151.792892][ T6453] loop6: detected capacity change from 0 to 524287999
[  151.810983][    C0] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  151.821973][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  151.845504][    C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  151.847134][    C0] blk_update_request: I/O error, dev loop6, sector 1018 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  151.857017][    C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  151.880369][    C0] blk_update_request: I/O error, dev loop6, sector 1018 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  151.971712][    C0] blk_update_request: I/O error, dev loop6, sector 2042 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  151.983476][    C0] blk_update_request: I/O error, dev loop6, sector 2042 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  152.002830][ T6462] netlink: 'syz.7.467': attribute type 4 has an invalid length.
[  152.205344][    C1] blk_update_request: I/O error, dev loop6, sector 3066 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  152.217100][    C1] blk_update_request: I/O error, dev loop6, sector 3066 op 0x1:(WRITE) flags 0x8800 phys_seg 128 prio class 0
[  152.229352][    C1] blk_update_request: I/O error, dev loop6, sector 4090 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 0
[  152.241499][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.267135][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.276848][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.288828][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.297771][ T4385] nci: nci_rsp_packet: unknown rsp opcode 0x3f
[  152.297779][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.305069][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.321582][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.330828][ T6453] ldm_validate_partition_table(): Disk read failed.
[  152.361325][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.374617][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  152.407803][ T6453] Dev loop6: unable to read RDB block 0
[  152.422699][ T6453]  loop6: unable to read partition table
[  152.436714][ T6453] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  152.635509][ T6486] kvm: pic: non byte read
[  152.645527][ T6486] kvm: pic: non byte read
[  152.650806][ T6486] kvm: pic: non byte read
[  152.655539][ T6486] kvm: pic: single mode not supported
[  152.655595][ T6486] kvm: pic: non byte read
[  152.672313][ T6486] kvm: pic: non byte read
[  152.677156][ T6486] kvm: pic: non byte read
[  152.685241][ T6486] kvm: pic: non byte read
[  152.693751][ T6486] kvm: pic: single mode not supported
[  152.693770][ T6486] kvm: pic: level sensitive irq not supported
[  152.702666][ T6486] kvm: pic: non byte read
[  152.717249][ T6486] kvm: pic: non byte read
[  153.574401][ T1325] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  153.765493][   T21] usb 10-1: USB disconnect, device number 2
[  154.268216][ T1325] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  154.289870][ T1325] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  154.300210][   T13] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  154.323104][ T1325] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  154.341804][ T1325] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.378326][ T6526] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  154.658871][   T13] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  154.683859][   T13] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  154.720290][   T13] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  154.767939][   T13] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.838760][ T6558] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  155.017868][ T6591] loop7: detected capacity change from 0 to 4096
[  155.064513][ T6591] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  155.086336][   T21] usb 9-1: USB disconnect, device number 6
[  155.935214][ T6635] netlink: 1264 bytes leftover after parsing attributes in process `syz.7.490'.
[  156.218268][   T21] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  156.670040][ T4234] usb 7-1: USB disconnect, device number 7
[  156.846948][ T6652] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  156.914099][ T6652] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  156.939178][ T6662] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  156.947167][ T6662] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  156.998272][   T21] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  157.010029][   T21] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  157.010072][   T21] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  157.031480][   T21] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.096417][ T6630] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  157.219920][ T4234] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  157.357192][ T6677] loop7: detected capacity change from 0 to 4096
[  157.495334][ T6677] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  157.518278][ T4234] usb 7-1: Using ep0 maxpacket: 8
[  157.698558][ T4234] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  157.715520][ T4234] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  157.736919][ T4234] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.758414][ T4234] usb 7-1: config 0 descriptor??
[  158.077320][ T4234] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  158.346335][ T4293] usb 7-1: USB disconnect, device number 8
[  158.857874][   T13] usb 9-1: USB disconnect, device number 7
[  159.268367][ T4234] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  159.810561][ T6757] netlink: 'syz.7.513': attribute type 4 has an invalid length.
[  159.844757][ T4234] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  159.856625][ T4234] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  159.877453][ T4234] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  159.897177][ T4234] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.029036][ T6729] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  161.518174][ T4241] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  161.652628][ T6790] 9pnet_virtio: no channels available for device syz
[  161.858307][ T4241] usb 9-1: Using ep0 maxpacket: 8
[  162.008365][ T4241] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  162.041259][ T4241] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  162.073157][ T4241] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.089708][ T4241] usb 9-1: config 0 descriptor??
[  162.165144][   T13] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  162.195311][ T1110] usb 10-1: USB disconnect, device number 3
[  162.296109][ T6819] netlink: 'syz.9.525': attribute type 4 has an invalid length.
[  162.381149][ T6690] Set syz1 is full, maxelem 65536 reached
[  162.408898][ T4241] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  162.418190][   T13] usb 7-1: Using ep0 maxpacket: 8
[  162.548351][   T13] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  162.572535][   T13] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  162.590625][   T13] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  162.600794][   T13] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  162.618537][   T13] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  162.627781][   T13] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.646098][ T1325] usb 9-1: USB disconnect, device number 8
[  162.789067][ T1110] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  162.858878][ T4293] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  162.937965][   T13] usb 7-1: GET_CAPABILITIES returned 0
[  162.949854][   T13] usbtmc 7-1:16.0: can't read capabilities
[  163.195496][   T13] usb 7-1: USB disconnect, device number 9
[  163.208096][ T1110] usb 2-1: Using ep0 maxpacket: 8
[  163.278662][ T4293] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  163.303666][ T4293] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  163.338315][ T1110] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  163.338948][ T4293] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  163.357777][ T1110] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  163.378244][ T4293] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.384633][ T1110] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  163.415764][ T1110] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  163.418530][ T6828] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  163.448199][ T1110] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  163.462923][ T1110] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.474023][ T6868] tipc: Started in network mode
[  163.484535][ T6868] tipc: Node identity 1256267c6ff4, cluster identity 4711
[  163.492354][ T6868] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.507889][ T6866] tipc: Resetting bearer <eth:syzkaller0>
[  163.571473][ T6866] tipc: Disabling bearer <eth:syzkaller0>
[  163.732286][ T1110] usb 2-1: GET_CAPABILITIES returned 0
[  163.739170][ T1110] usbtmc 2-1:16.0: can't read capabilities
[  163.934900][   T26] audit: type=1326 audit(1755808983.131:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6830 comm="syz.1.529" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9022afebe9 code=0x0
[  163.956464][    C1] vkms_vblank_simulate: vblank timer overrun
[  164.034696][   T13] usb 2-1: USB disconnect, device number 6
[  164.375891][ T6907] kvm: pic: non byte write
[  164.392046][ T6902] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  164.423538][ T6897] kvm: pic: non byte write
[  165.224725][ T1110] usb 10-1: USB disconnect, device number 4
[  165.385814][ T4305] nci: nci_rx_work: unknown MT 0x1
[  165.562668][ T6962] tmpfs: Unknown parameter 'usrquota'
[  165.800489][ T6973] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  165.851589][ T6973] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  166.598177][ T1110] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  166.988294][ T1110] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  167.009996][ T1110] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  167.032064][ T1110] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  167.051784][ T1110] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.188548][ T6985] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  167.475605][ T7023] program syz.6.559 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  167.486706][ T4294] usb 10-1: USB disconnect, device number 5
[  168.028093][ T4294] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  168.788301][ T4294] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  168.812113][ T4294] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  168.834065][ T4294] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  168.854035][ T4294] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.898377][ T7036] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  168.997071][ T6944] Set syz1 is full, maxelem 65536 reached
[  171.177436][ T4294] usb 2-1: USB disconnect, device number 7
[  173.086093][ T4294] Bluetooth: hci1: command 0x0411 tx timeout
[  173.175430][ T7196] bridge: RTM_NEWNEIGH with invalid ether address
[  173.183760][ T7196] bridge: RTM_NEWNEIGH with invalid ether address
[  173.622435][ T1110] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  173.630468][ T4173] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  175.667816][ T7268] kvm: pic: non byte read
[  175.693842][ T7268] kvm: pic: non byte read
[  175.709820][ T7268] kvm: pic: non byte read
[  175.723931][ T7268] kvm: pic: single mode not supported
[  175.723989][ T7268] kvm: pic: non byte read
[  175.755030][ T7268] kvm: pic: non byte read
[  175.775193][ T7268] kvm: pic: non byte read
[  175.789844][ T7268] kvm: pic: non byte read
[  175.804933][ T7268] kvm: pic: single mode not supported
[  175.804951][ T7268] kvm: pic: level sensitive irq not supported
[  175.822702][ T7268] kvm: pic: non byte read
[  175.854245][ T7268] kvm: pic: non byte read
[  176.008444][ T4173] usb 10-1: Using ep0 maxpacket: 32
[  176.148820][ T4234] Bluetooth: hci4: command 0x0406 tx timeout
[  176.383213][ T4173] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  176.393305][ T1110] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  176.408269][ T4173] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  176.417351][ T1110] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  176.429129][ T4173] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  176.438545][ T1110] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  176.448086][ T4173] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  176.458692][ T1110] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.466901][ T4173] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  176.497056][ T4173] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  176.511952][ T1110] usb 9-1: can't set config #27, error -71
[  176.531194][ T1110] usb 9-1: USB disconnect, device number 9
[  176.550231][ T4173] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  176.562678][ T4173] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.719742][ T4173] usb 10-1: config 0 descriptor??
[  176.888157][ T4173] usb 10-1: can't set config #0, error -71
[  176.912541][ T4173] usb 10-1: USB disconnect, device number 6
[  177.415455][ T7306] loop9: detected capacity change from 0 to 4096
[  177.463996][ T7307] netlink: 'syz.6.624': attribute type 4 has an invalid length.
[  177.507677][ T7306] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  177.728108][ T4293] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  177.795670][ T7323] ------------[ cut here ]------------
[  178.072717][ T7323] WARNING: CPU: 0 PID: 7323 at mm/page_alloc.c:5449 __alloc_pages+0x391/0x470
[  178.089693][ T7323] Modules linked in:
[  178.094569][ T7323] CPU: 1 PID: 7323 Comm: syz.6.628 Not tainted 5.15.189-syzkaller #0
[  178.108558][ T7323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  178.168322][ T4293] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  178.179566][ T7323] RIP: 0010:__alloc_pages+0x391/0x470
[  178.193701][ T7323] Code: 31 ff e9 b2 fe ff ff e8 7d b2 f5 07 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 50 fd ff ff 4c 89 e7 e8 44 ac 09 00 e9 43 fd ff ff <0f> 0b 45 31 ff e9 ef fe ff ff 65 44 8b 2d 35 9a 4f 7e 41 83 fd 08
[  178.283642][ T7323] RSP: 0018:ffffc9000318f9e0 EFLAGS: 00010246
[  178.290053][ T4293] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  178.305143][ T4293] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  178.337152][ T7323] RAX: ffffc9000318fa20 RBX: 1ffff92000631f40 RCX: 0000000000000000
[  178.344899][ T4293] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.350158][ T7323] RDX: 0000000000000028 RSI: 0000000000000000 RDI: ffffc9000318fa48
[  178.401976][ T7323] RBP: ffffc9000318fad8 R08: dffffc0000000000 R09: ffffc9000318fa20
[  178.410753][ T7299] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  178.450650][ T7323] R10: fffff52000631f49 R11: 1ffff92000631f44 R12: dffffc0000000000
[  178.474550][ T7323] R13: 0000000000000000 R14: 0000000000040dc0 R15: 0000000000000019
[  178.483316][ T7323] FS:  00007ff3e17456c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  178.493682][ T7323] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  178.530414][ T7323] CR2: 0000563024636950 CR3: 000000005aae3000 CR4: 00000000003506e0
[  178.547604][ T7323] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  178.576886][ T7323] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  178.586392][ T7323] Call Trace:
[  178.595226][ T7323]  <TASK>
[  178.598761][ T7323]  ? zone_statistics+0x170/0x170
[  178.604766][ T7323]  ? alloc_pages+0x438/0x550
[  178.615307][ T7323]  kmalloc_order+0x40/0x150
[  178.621204][ T7323]  ? __might_fault+0xb3/0x110
[  178.626099][ T7323]  kmalloc_order_trace+0x14/0xf0
[  178.636728][ T7323]  comedi_unlocked_ioctl+0x98b/0xe90
[  178.646346][ T7323]  ? comedi_poll+0x8b0/0x8b0
[  178.664452][ T7323]  ? tomoyo_path_number_perm+0x4d4/0x5d0
[  178.675419][ T7323]  ? verify_lock_unused+0x140/0x140
[  178.683075][ T7323]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  178.692120][ T7323]  ? bpf_lsm_file_ioctl+0x5/0x10
[  178.697205][ T7323]  ? security_file_ioctl+0x7c/0xa0
[  178.705867][ T7323]  ? comedi_poll+0x8b0/0x8b0
[  178.714544][ T7323]  __se_sys_ioctl+0xfa/0x170
[  178.721635][ T7323]  do_syscall_64+0x4c/0xa0
[  178.726233][ T7323]  ? clear_bhb_loop+0x30/0x80
[  178.741810][ T7323]  ? clear_bhb_loop+0x30/0x80
[  178.746556][ T7323]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  178.754118][ T7323] RIP: 0033:0x7ff3e34ddbe9
[  178.769296][ T7323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.796528][ T7323] RSP: 002b:00007ff3e1745038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  178.805495][ T7323] RAX: ffffffffffffffda RBX: 00007ff3e3704fa0 RCX: 00007ff3e34ddbe9
[  178.821309][ T7323] RDX: 00002000000000c0 RSI: 000000008010640b RDI: 0000000000000003
[  178.830757][ T7323] RBP: 00007ff3e3560e19 R08: 0000000000000000 R09: 0000000000000000
[  178.844158][ T7323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  178.853697][ T7323] R13: 00007ff3e3705038 R14: 00007ff3e3704fa0 R15: 00007ffc2306cf38
[  178.866506][ T7323]  </TASK>
[  178.878158][ T7323] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  178.885470][ T7323] CPU: 1 PID: 7323 Comm: syz.6.628 Not tainted 5.15.189-syzkaller #0
[  178.893545][ T7323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  178.903608][ T7323] Call Trace:
[  178.906903][ T7323]  <TASK>
[  178.909845][ T7323]  dump_stack_lvl+0x168/0x230
[  178.914625][ T7323]  ? show_regs_print_info+0x20/0x20
[  178.920000][ T7323]  ? load_image+0x3b0/0x3b0
[  178.924884][ T7323]  panic+0x2c9/0x7f0
[  178.928801][ T7323]  ? bpf_jit_dump+0xd0/0xd0
[  178.933331][ T7323]  ? __alloc_pages+0x391/0x470
[  178.938242][ T7323]  __warn+0x248/0x2b0
[  178.942273][ T7323]  ? __alloc_pages+0x391/0x470
[  178.947039][ T7323]  report_bug+0x1b7/0x2e0
[  178.951639][ T7323]  handle_bug+0x3a/0x70
[  178.955840][ T7323]  exc_invalid_op+0x16/0x40
[  178.960616][ T7323]  asm_exc_invalid_op+0x16/0x20
[  178.965467][ T7323] RIP: 0010:__alloc_pages+0x391/0x470
[  178.970822][ T7323] Code: 31 ff e9 b2 fe ff ff e8 7d b2 f5 07 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 50 fd ff ff 4c 89 e7 e8 44 ac 09 00 e9 43 fd ff ff <0f> 0b 45 31 ff e9 ef fe ff ff 65 44 8b 2d 35 9a 4f 7e 41 83 fd 08
[  178.990413][ T7323] RSP: 0018:ffffc9000318f9e0 EFLAGS: 00010246
[  178.996491][ T7323] RAX: ffffc9000318fa20 RBX: 1ffff92000631f40 RCX: 0000000000000000
[  179.004455][ T7323] RDX: 0000000000000028 RSI: 0000000000000000 RDI: ffffc9000318fa48
[  179.012423][ T7323] RBP: ffffc9000318fad8 R08: dffffc0000000000 R09: ffffc9000318fa20
[  179.020465][ T7323] R10: fffff52000631f49 R11: 1ffff92000631f44 R12: dffffc0000000000
[  179.028505][ T7323] R13: 0000000000000000 R14: 0000000000040dc0 R15: 0000000000000019
[  179.036675][ T7323]  ? zone_statistics+0x170/0x170
[  179.041598][ T7323]  ? alloc_pages+0x438/0x550
[  179.046186][ T7323]  kmalloc_order+0x40/0x150
[  179.050683][ T7323]  ? __might_fault+0xb3/0x110
[  179.055340][ T7323]  kmalloc_order_trace+0x14/0xf0
[  179.060442][ T7323]  comedi_unlocked_ioctl+0x98b/0xe90
[  179.065870][ T7323]  ? comedi_poll+0x8b0/0x8b0
[  179.070678][ T7323]  ? tomoyo_path_number_perm+0x4d4/0x5d0
[  179.076351][ T7323]  ? verify_lock_unused+0x140/0x140
[  179.081563][ T7323]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  179.087159][ T7323]  ? bpf_lsm_file_ioctl+0x5/0x10
[  179.092170][ T7323]  ? security_file_ioctl+0x7c/0xa0
[  179.097380][ T7323]  ? comedi_poll+0x8b0/0x8b0
[  179.101985][ T7323]  __se_sys_ioctl+0xfa/0x170
[  179.106667][ T7323]  do_syscall_64+0x4c/0xa0
[  179.111180][ T7323]  ? clear_bhb_loop+0x30/0x80
[  179.115851][ T7323]  ? clear_bhb_loop+0x30/0x80
[  179.120518][ T7323]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  179.126551][ T7323] RIP: 0033:0x7ff3e34ddbe9
[  179.130959][ T7323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.150780][ T7323] RSP: 002b:00007ff3e1745038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  179.159372][ T7323] RAX: ffffffffffffffda RBX: 00007ff3e3704fa0 RCX: 00007ff3e34ddbe9
[  179.167570][ T7323] RDX: 00002000000000c0 RSI: 000000008010640b RDI: 0000000000000003
[  179.175771][ T7323] RBP: 00007ff3e3560e19 R08: 0000000000000000 R09: 0000000000000000
[  179.183739][ T7323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.191708][ T7323] R13: 00007ff3e3705038 R14: 00007ff3e3704fa0 R15: 00007ffc2306cf38
[  179.199791][ T7323]  </TASK>
[  179.203037][ T7323] Kernel Offset: disabled
[  179.207790][ T7323] Rebooting in 86400 seconds..