last executing test programs: 3m55.870547449s ago: executing program 0 (id=35): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000001c0)={[{@usrquota}, {@nombcache}, {@minixdf}, {@errors_remount}, {@nouid32}]}, 0x1, 0x51c, &(0x7f0000000580)="$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") syz_mount_image$exfat(0x0, &(0x7f0000001080)='./bus/file0\x00', 0x870083, 0x0, 0x1, 0x0, &(0x7f0000001040)) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_complete={{0x5, 0x4}, {0x1, 0xc9, 0x2}}}, 0x7) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='./bus/file0\x00') io_uring_setup(0x650b, &(0x7f0000000180)={0x0, 0x2c3f, 0x0, 0x21, 0xab}) r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94) close(r3) r4 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) recvfrom$inet_nvme(0xffffffffffffffff, 0x0, 0x0, 0x40000002, 0x0, 0x0) 3m53.946257033s ago: executing program 0 (id=43): r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000a80)={{{@in6=@loopback, @in6=@loopback, 0x4e21, 0x10, 0x4e20, 0x40, 0xa, 0x20, 0x20, 0xc}, {0xa7d4, 0x962e, 0xfffffffffffffff9, 0x56, 0x2, 0x2, 0x100, 0xc}, {0x59d, 0x7, 0x5, 0x9}, 0x1, 0x6e6bb6, 0x0, 0x0, 0x3, 0x2}, {{@in6=@loopback, 0x4d2, 0x2b}, 0xa, @in=@local, 0x3502, 0x2, 0x2, 0x5, 0x7, 0xfff, 0x7}}, 0xe8) 3m53.504912441s ago: executing program 0 (id=46): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0xff, 0x4a1, &(0x7f00000004c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) quotactl_fd$Q_SETINFO(r0, 0xffffffff80000602, 0x0, &(0x7f0000000280)={0x5, 0x2, 0x1, 0x7}) 3m52.336186811s ago: executing program 32 (id=47): creat(&(0x7f0000000080)='./file0\x00', 0xc7) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002240), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x2000}}) read$FUSE(r0, &(0x7f0000000200)={0x2020, 0x0, 0x0}, 0x2092) listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f00000046c0)={0x50, 0xfffffffffffffffe, r1, {0x7, 0x9, 0x0, 0x41aa1850, 0x0, 0x1, 0x4000, 0x40000000, 0x0, 0x0, 0x10}}, 0x50) 3m52.303642203s ago: executing program 0 (id=50): syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$eJzs3V1oXOl5B/DnnSOtRto00WYTb9Jm04GUxCi18VdsBZcgZxW1AccbIit0r6LRh51h5ZGR5MabtkFtSQu9Cd2b0psimi4t5KJX3V5WabaQUAol5CK9KAiaLHvRC10ECi0bhXPmHWlky7ayXlvS7u+3zP7PnHnO+P0YnzkCvzoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER89nOXTp1OB90KAOBxujL5pVNnff8DwLvKVT//AwAAAAAAAAAAAADAYZeiiGORYujVzTRdPe+oX261b92eGp/Y+7DBFClqUVT15aN++szZc586f2G0m/c//u324Xh+8uqlxnOLN24uzS8vz881ptqt2cW5+X2/w8Mef6eRagAaN168NXft2nLjzMmzu16+Pfz6wJPHhi9eOHF+tFs7NT4xMdlT09f/lv/0u9xrhccTUUQzUrw5/EZqRkQtHn4sHvDZedQGq06MVJ2YGp+oOrLQarZXyhdTLVfVIho9B411x+gxzMVDGYtYLZtfNnik7N7kzeZSc2ZhvvHF5tJKa6W12E61TmvL/jSiFqMpYi0iNgbufrv+KOKjkeLlU5tpJiKK7jh8sloY/OD21B5BH/ehbGejP2KtdgTm7BAbiCKuRIqfvXY8Zssxy4/4eMQXynw14pUyPxORyg/GuYif7vE54mjqiyL+PVIsps00V50PuueVy19ufL59bbGntnteOfLfD4/TIT831aOImeqMv5ne+sUOAAAAAAAAAAAAAAAAAG+3wSji25HiT579vWpdcVTr0t93cfQ9L/x275rxZx7wPmXtyYhYre1vTW5/XjqcauV/j6Bj7Es9ivhGXv/3RwfdGAAAAAAAAAAAAAAAAAAAgHe1Il6IFF85cTytRe89xVvt642rzZmFzl1hu/f+7d4zfWtra6uROjmWczrnas61nOs5N3JGLR+fcyzndM7VnGs513Nu5IwiH59zLOd0ztWcaznXc27kjL58fM6xnNM5V3Ou5VzPuZEzDsm9ewEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3klqUcTPI8W3vraZIkXEWMR0dHJ94KBbBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACU6qmIk5Fi/YV69XytFnE1In6+tbXVfUTEZpkP66D7CgAAAAAAAAAAAAAAAAAAAIdWKuJjkeLp/9tMjYi4Pfz6wJPHhi9eOHF+tIgiUlnSW//85NVLjecWb9xcml9enp9rTLVbs4tz8/v94+qXW+1bt6fGJx5JZx5o8BG3f7D+3OLNl5Za17+6sufrQ/VLM8srS83ZvV+OwahFTPfuGakaPDU+UTV6odVsV4em2j0aWIsY229nAAAAAAAAAAAAAAAAAAAAODSGUhGfixQ/+a9zqbtuvK+z5v9XOs+K7dpX/mDndwEs3JFdvb8/YD/bab8NHakW3jemxicmJnt29/XfXVq2KaUinokUn3j5Q9V6+BRDe66NL+veW9bdOJfrhn+trFvdVVUfmRqfaFxZbJ+4tLCwONtcac4szDcmbzZn9/2LAwAAAAAAAAAAAAAAAAAAAOA+hlIRP4oU//P3/5G6953P6//7Os961v//VrWEvlJPu3Nbtbb/vdXa/s72+y6ODn302XvtfxTr/8s2pVTENyPF2R99qLqffnf9//QdtWXdn0WKN579SK6rPVHWNbvd6bzjtdbC/Kmy9q8jxa+/2a2NqvZ6rn16p/Z0WTsYKf5yc3ftV3PtB3Zqz5S1xyPF9/5779oP7tSeLWt/Ein+6e8a3dqhsvb3c+2xndqTs4sLcw8a1nL+vxMp/vbK76Run+85/z2//2H1jtx215zff/vtmv/hnn2reV7/NM9/8wHzfz5SfKf+kVzXGfuZ/PpT1f935v8TkeI//2137bVc+/6d2tP77dZBK+f/25Hiu3/14+0+5/nPI7szQ73z/6t9u3P7U3JA8/9Uz77h3K7ZX3Is3o2WX/r6i82FhfklGzZs2NjeOOgzE49D+f3/55Hi/48VqXsdk7//39N5tnP997/f2Pn+v3hHbjug7//39+y7mK9a+vsi6is3bvY/E1FffunrJ1o3mtfnr8+3z5w+9elPnz996vT5/ie6F3c7W/seu3eCcv5/ECl++A8/3P45Zvf1397X/0N35LYDmv+ne/u067pm30PxrlTO/99Eiqc+++Ptnzfvd/3f/fn/+Md25/bfvwOa/w/07BvO7Wr9kmMBAAAAAAAAAABwlAylIv4iUvzuH/9m6q4h2s+//5u7I7cd0L//Otazb+4xrWvY9yADABwi5fXfByPFP299f3st9+7rv/iNbm3v9d+9HIb7/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFGXoog/jBRDr26m9YHyeUf9cqt96/bU+MTehw2mSFGLoqovH/XTZ86e+9T5C6PdvP/xb7cPx/OTVy81nlu8cXNpfnl5fq4x1W7NLs7N7/sdHvb4O41UA9C48eKtuWvXlhtnTp7d9fLt4dcHnjw2fPHCifOj3dqp8YmJyZ6avv63/KffJd1j/xNRxPcjxZvDb6TvDkTU4uHH4gGfnUdtsOrESNWJqfGJqiMLrWZ7pXwx1XJVLaLRc9BYd4wew1w8lLGI1bL5ZYNHyu5N3mwuNWcW5htfbC6ttFZai+1U67S27E8jajGaItYiYmPg7rfrjyK+GSlePrWZ/mUgouiOwyevTH7p1NkHt6f2CPq4D2U7G/0Ra7UjMGeH2EAU8Y+R4mevHY/vDUT0RecRH4/4QpmvRrxS5mciUvnBOBfx0z0+RxxNfVHEuUixmDbTawPl+aB7Xrn85cbn29cWe2q755Uj//3wOB3yc1M9ivhBdcbfTP/q7zUAAAAAAAAAAAAAAADAIVLEWqT4yonjqVofvL2muNW+3rjanFnoLOvrrv3rrpne2traaqROjuWczrmacy3nes6NnFHLx+ccyzmdczXnWs71nBs5o8jH5xzLOZ1zNedazvWcGzmjLx+fcyzndM7VnGs513Nu5IxDsnYPAAAAAAAAAAAAAAAAAAB4Z6lFUd3F/Vtf20xbA537S09HJ9fdD/Qd7xcBAAD//0kCdPc=") setrlimit(0x1, 0x0) open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2, 0x8000, 0x0, 0x0, 0x17, 0xe, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200, 0x6]}) creat(&(0x7f00000000c0)='./file1\x00', 0x0) 3m48.985364845s ago: executing program 0 (id=60): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f000000a880), 0x2, 0x0) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f000000b240)={0x8, {"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", 0x1000}}, 0x1006) ioctl$KVM_SET_REGS(r1, 0x4090ae82, 0x0) 3m48.469917197s ago: executing program 0 (id=67): mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000005, 0x12, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0) 3m45.350019151s ago: executing program 33 (id=67): mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000005, 0x12, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0) 3m42.727098524s ago: executing program 1 (id=79): symlinkat(&(0x7f0000003200)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00') creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file3\x00', &(0x7f0000000080)={0x8080, 0x0, 0x30}, 0x18) 3m42.410406737s ago: executing program 1 (id=80): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@noblock_validity}, {}, {@sysvgroups}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@grpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, 0x0, 0x1) truncate(&(0x7f0000000900)='./file1\x00', 0x3000000) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0) pipe2(&(0x7f0000000000), 0x80800) 3m41.804581253s ago: executing program 1 (id=82): rseq(&(0x7f0000000180)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) semget$private(0x0, 0x6, 0x0) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f00000002c0)={[{@shortname_winnt}, {@utf8no}, {@fat=@sys_immutable}, {@fat=@time_offset={'time_offset', 0x3d, 0x161}}, {@shortname_winnt}, {@fat=@tz_utc}, {@fat=@check_normal}, {@utf8no}, {@utf8}]}, 0xfd, 0x2c7, &(0x7f0000000480)="$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") setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x13, 0x0, 0x0) r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x1a4201, 0x0) process_mrelease(r0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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") r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r1) sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000004001b0000000c00228059fe0080040000800600210071e6"], 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x24000000) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f00000003c0)={0x2, {0x2, 0xe, 0x8, 0xc1e6, 0x1ff}}) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x0, 0x3b12, 0x0, 0x4}}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001240)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000440)) getresuid(&(0x7f0000000780), &(0x7f00000007c0), &(0x7f0000000840)) stat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000940), &(0x7f0000000980)=0xc) getegid() writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1) syz_usb_connect(0x0, 0x0, 0x0, 0x0) 3m39.686901004s ago: executing program 1 (id=90): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000300)={0x4000000, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x2, 0xf, 0x8, 0x0, 0x10, 0x0, 0x0, 0x25dfdbfe, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x20, @empty}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@dev={0xac, 0x14, 0x14, 0x1c}, @in6=@dev={0xfe, 0x80, '\x00', 0x18}}}, @sadb_address={0x3, 0x6, 0x2b, 0x20, 0x0, @in={0x2, 0x4e24, @loopback}}]}, 0x80}}, 0x0) 3m39.497748712s ago: executing program 1 (id=92): syz_mount_image$erofs(&(0x7f0000000280), &(0x7f0000000140)='./file0\x00', 0x1000801, &(0x7f0000000040)=ANY=[], 0x0, 0x1ca, &(0x7f00000008c0)="$eJzsmb+uEkEUxr+Z3QvcG2NiY2GjiTfxmlyW3UUNjQU+gQn4r5PIStAFDGwBJBbExsbH8BUsqCzs7Gy1UBMTCymt18xw2B35J8QQSTy/hNlvZs7MnDnAVwAYhvlv+frl5+dXt0rVUwBncIwsjX+30hhpxH/Kkfj4+l377PPx/H4CQBxvfr4N4G3ZQkT9OP599TE9q5CJvgOJq6TvQcAh/RASd0kHEHhA+omhO4ckwsB51Anrj5th4KrGU42vmuJ8fpORQB1AjvITxnxvMHxaC8OgOy8O4tk5C1Pbij/Uz56UJW4a9VPv1/2XL0aqP6uNa9TPg4RHugiBCukSsnAcJy2Jcf8Ldrq/tcn990Gcy6+LOd2DDFn8AyGMkUMl1Bc6GTk/Gb9fXPVtl4ld2u2VQZ69MPXh6O92zpAJLI1J/VNZ7hXDn2zYiX8UotazQm8wzDdbtUbQCNq+X7zhXnPd635BG9G0XeN/Oe1PR8b+BytiMyKDfi2Kul4fiLpe0venreG4lTedH3qN1P4ncXJ5uof6qOhrZ5efIegl9VOpE2tl8gzDMAzDMAzDMAzDMAzDMFtxEUL/Ckp/VMUr8G/r6F8BAAD///ckZMc=") chdir(&(0x7f0000000240)='./file0\x00') r0 = syz_clone(0x81000, 0x0, 0x0, &(0x7f0000000080), 0x0, 0x0) sched_setscheduler(0x0, 0x2, 0x0) read$msr(0xffffffffffffffff, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000004c0)={0x0, 0x0}) signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000) process_vm_writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000ac0)=""/4096, 0x1000}, {0x0}], 0x2, &(0x7f0000000180)=[{&(0x7f0000000300)=""/250, 0xfa}, {0x0}], 0x2, 0x0) 3m39.135241058s ago: executing program 1 (id=95): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x6, 0x10, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2000000}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8006}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5c298795369ca04f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 3m23.257819468s ago: executing program 34 (id=95): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x6, 0x10, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2000000}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8006}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5c298795369ca04f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 2m46.162915601s ago: executing program 2 (id=210): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setscheduler(0x0, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x18, 0x9, 0x81, 0x9, 0x1}, 0x50) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000007e80)={'syztnl2\x00', 0x0}) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x27) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000003540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10}, 0x94) r5 = shmget$private(0x0, 0x2000, 0x2, &(0x7f0000ffb000/0x2000)=nil) shmat(r5, &(0x7f0000ffc000/0x1000)=nil, 0x2000) shmat(r5, &(0x7f0000ffe000/0x1000)=nil, 0x6000) 2m42.936387019s ago: executing program 2 (id=213): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a02fa560186d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f68530c2b21a100efb76cba37ff3111d6847e0c7f719e169a596e5fc008daefba68f6222103472bc55704cdb72b4b996ed82ccb1eaae27969d008ba7d34171113d806726615380fe65a6a0a72e19c2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13e4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe3635b2ee97c143f28def4b73905ca14d90d1f6"}) ioctl$USBDEVFS_ALLOW_SUSPEND(r2, 0x5522) ioctl$USBDEVFS_SETINTERFACE(r2, 0x80045510, &(0x7f0000000000)) write$UHID_CREATE2(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119) syz_mount_image$ext4(&(0x7f0000000780)='ext3\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000500)={[], [{@fsmagic={'fsmagic', 0x3d, 0x7}}, {@flag='sync'}]}, 0x0, 0x7ca, &(0x7f0000001740)="$eJzs3c9rG9kdAPDvyHZkO2ntQmmbm6GQGkLkOnWTFnpI6aEUGgi05yZCVkxq2QqWHGJjaEIp9FJoyx4Wdi8574/sbW/L/oA97f4Xe1gSshsnrJccFi8jjWzHlvwj/qHs+vOBsd6befJ733lvNE+aQQrg2BpJ/+QiTkfEf5OIoWx9EhF9jVRvxKVmuZXlpf6IKCWxuvqXL5NGmafLS6XY8JzUySzzs4j48F8RZ3Nb660tLE4XK5XyXJYfq8/cHKstLJ67MVOcKk+VZy+MT0ycv/jrixcOLtavPl089fB/f/zF25ee/fOn9//zURKX4lS2bWMcB2UkRrJ90pfuwuf84aAr67JkxxLPjqQd7E16aPY0j/I4HUPR00h1MHCULQMADss/ImIVADhmEud/ADhmWp8DPF1eKrWW7n4icbQe/T4i+pvxr2RLc0tvds2uv3EddPBp8tyVkSQihg+g/pGIeP3dv53pyfJpO3a+lgawf3fuRsS14ZGtr//JlnsW9uqX221czTceRjatPm7nH+im99P5z2/azf9ya/OfaDP/yTeP3Z/st/6dj//cg/3WsZ10/ve75r1tm+Z/azetDfdkuR805nx9yfUblXL62vbDiBiNvnyaH28UbT9zG33yzZNO9WfzvzfT5XG6g5eXSo////c31kvkHvTmn3/OZLHe+/F+A888uhuDWXJT/Mla/ycd5r9XdlnHn37779eaqa1nlDT+NN7WsrIl/sO1ei/iTNv+X+/LZNv7E8caw2GsNSjaeOezVwc71b+x/9MlrT99PPhI23t0NxoDIEnW90Fzy1r8w8nG+zVre6/jk3tDH3TatnP8bcd/8UTy10b6RLbudrFenxuPOJH8eev68+vPbeVb5dP4R3/e/vhvVtt+/KfvCa/tMv7eh1+89eLxH640/sntx/+m/u/PVq+v2Slxf2W6p1P9u+v/iUZqNFuT9v9Oce2mXS82mgEAAAAAAAAAAAAAAAAAAAAAAABg73IRcSqSXGEtncsVCs3f8P5xFN+LqNXPXq/Oz05G47eyh6Mv1/qqy6EN34c6nn0ffit/flP+VxHxo4h4JT/QyBdK1cpkt4MHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgMzJDr//n/o83+3WAQCHpr/bDQAAjpzzPwAcP3s7/w8cWjsAgKPj/T8AHD+7Pv9fO9x2AABHx/t/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADtmVy5fTZfXr5aVSmp+8tTA/Xb11brJcmy7MzJcKperczcJUtTpVKRdK1ZmO/+hO86FSrd6ciNn522P1cq0+VltYvDpTnZ+tX70xU5wqXy33HVlkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB7tYXF6WKlUp77XiTurAd2wP95oKtxDb4cu3dDojdeimZ0M5HfqUw+Xpamvkhi46vEQBdemQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC+G74NAAD//7P4Fc8=") r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042) readv(r4, &(0x7f0000000100)=[{&(0x7f0000000080)=""/20, 0x14}], 0x1) close_range(r0, 0xffffffffffffffff, 0x0) 2m40.267646774s ago: executing program 2 (id=219): recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0xfffffffd, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c) close(0xffffffffffffffff) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x2) fcntl$setlease(r1, 0x400, 0x0) setxattr$trusted_overlay_redirect(&(0x7f0000000400)='./file0\x00', 0x0, 0x0, 0x0, 0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0x18, 0x0, 0x2, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x10, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fcntl$getflags(0xffffffffffffffff, 0x401) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x0) 2m39.215856198s ago: executing program 2 (id=224): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000000f40)={[{@iocharset={'iocharset', 0x3d, 'ascii'}}, {@noadinicb}, {@adinicb}, {@uid_forget}, {@uid_forget}, {@umask={'umask', 0x3d, 0x2}}, {@longad}, {@gid}, {@nostrict}]}, 0xfe, 0xc22, &(0x7f00000002c0)="$eJzs3UFsHNd9B+D/Gy1FSm4rJk5Uu43bTVukMmO5sqSYilW4q5pmG0CWiVDMLQBX5EpdmCIJkmpkI22YXnroIUBR9JATgdYokKKB0RRBj2zrAsnFhyKnnogWNoKiB7YIkFPAYGbfikuKsmhTpCj7+2zqNzvz3sx7M+sZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxO+/fOnMc+lhtwIAOEhXxr985qznPwB8rFz1//8AAAAAAAAAAAAAAHDYpSji8Ugxf2U9TVafOwYut2dv3Z4YGd252rFU1TxSlS9/Bp47e+78F54fvtDN96//oD0Zr45fvVR/ae7m/EJrcbE1XZ+YbU/NTbd2vYe91t9uqDoB9Zuv3Zq+fn2xfvbZc1s23x58r/+xk4MXh58+/VS37MTI6Oh4T5la34c++l3uNcLjaBRxOlI8890fp2ZEFLH3c3Gf785+O1Z1YqjqxMTIaNWRmXZzdqncONY9EUVEvadSo3uODuBa7EkjYrlsftngobJ74/PNhea1mVZ9rLmw1F5qz82OpU5ry/7Uo4gLKWIlItb6795dXxRRixTfPrGerkXEke55+Hw1MPje7Sj2sY+7ULaz3hexUjwC1+wQ648iXokUP3m7iKnynOWf+FzEK2V+P+LNMl+MSOUX43zEuzt8j3g01aKIvyiv/8X1NB0RGyc660frl79S/9Ls9bmest37yiP/fDhIh/zeNBBFNKs7/nr68L/ZAQAAAAAAAAAAAAAAAOBBOxZFPBkpXv6PP67GFUc1Lv3ExeE/GPzF3jHjT9xnP2XZZyNiudjdmNyjeQjxWBpL6SGPJf44G4gi/iSP//vmw24MAAAAAAAAAAAAAAAAAADAx1oRP4oUL7xzKq1E75zi7dkb9avNazOdWWG7c/9250zf2NjYqKdONnJO5lzOuZJzNedazihy/ZyNnJM5l3Ou5FzNuZYzjuT6ORs5J3Mu51zJuZpzLWfUcv2cjZyTOZdzruRczbmWMw7J3L0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8lRRTxs0jxra+tp0gR0YiYjE6u9nfLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPU38q4nuRov6HjTvrahGRqn87TpW/nI/G0TI/GY3hMl+MxqWczSprjW/e92hpX/rAh9eXivhhpOgfeOvO1cnXv6/zafOavfn1zU+/Uuvkke7Gwff6Hzt54uLw6K89ca/lHa/+0OX27K3b9YmR0dHxntW1fPRP9qwbzMctHkzXiYjF1994rTkz01qw8PFYqHUWanFI2nNQC/l+FYelPdsXGoejGZsLD/nGxIEon//vRorfeec/uw/87vP/Fzqf7jzh46d/uvn8f2H7jvbp+f94z7oX8u9G+moRA0s35/tORgwsvv7G6fbN5o3Wjdbs+TNnvjg8/MVzZ/qORgxcb8+0epb2fKoAAAAAAAAAAAAAAAAADlYq4vciRfOH66keEber8VqDF4efPv3UkThSjbfaMm7r1fGrl+ovzd2cX2gtLram6xOz7am56dZuDzdQDfeaGBndl87c17F9bv+xgZfm5l9faN/4o6Udtx8fuHRtcWmhObXz5jgWRUSjd81Q1eCJkdGq0TPt5mxVdewBvUqhLxXxX5Fi6nw9fTavy+P/to/w3zL+f3n7jvZp/N8netaVx0ypiJ9Git/+yyfis1U7j8dd5yyX+9tIMXThM7lcHC3LddvQea9AZ2RgWfb/IsU//mxr2e54yMc3yz636xP7iCiv/4lI8b0//078Rl639f0PO1//49t3tE/X/1M9645veV/BnrtOvv6nI8WLj78Vv5nXvd/7P4rY2Nj4RsSpXPjO+zn26fp/umfdYHSO+1sPrvsAAAAAAAAAAACPrL5UxN9FiqdGa+n5vG43f/9vevuO9unvf/1yz7rpA5qvaM8nFQAAAAAOib5UxI8ixY2lt+6Mod46/rtn/Ofvbs69PpK2ba3+nO+XqvcGPMg//+s1mI87ufduAwAAAAAAAAAAAAAAAAAAwKGSUhHP5/nUJ+8zn/pqpHj5f57J5dLJslx3HvjB6teBK3Ozpy/NzMxNNZea12Za9fH55lSrrPupSLH+N5/JdYtqfvXufPOdOd4HNrpzsS9EitG/75btzMXenZu8Mx94Zy72suwnIsV//8PWst15rD+9WfZsWfavI8VX/3nnsic3y54ry34nUvzgq/Vu2eNl2e77UTvvJB2oxUzr2am5mbtehQoAAAAAAAAAAAAAAAAAAAAfVF8q4s8ixf/eXInlPOw/z//fnYG/1i375td75vvf5nY1z/9gNf//vZY/zPz/gw+spwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8OhIUcQbkWL+ynpa7S8/dwxcbs/euj0xMrpztWOpqnmkKl/+DDx39tz5Lzw/fKGb71//QXsyXh2/eqn+0tzN+YXW4mJruj4x256am27teg97rb956jqGqhNQv/narenr1xfrZ589t2Xz7cH3+h87OXhx+OnTT3XLToyMjo73lKn1fYCjf6DGbToaRfxVpHjmuz9O/9IfUcTez8V9vjv77VjViaGqExMjo1VHZtrN2aVy41j3RBQR9Z5Kje45OoBrsSeNiOWy+WWDh8rujc83F5rXZlr1sebCUnupPTc7ljqtLftTjyIupIiViFjrv3t3fVHEa5Hi2yfW07/2RxzpnofPXxn/8pmz925HsY993IWynfW+iJXiEbhmh1h/FPFPkeInb5+Kf+uPqEXnJz4X8UqZ3494s8wXI1KK2PhGxLs7fI94NNWiiP8vr//F9fR2f3k/6N5XLn+l/qXZ63M9Zbv3lV09H3793sd86M+Hg3TI700DUcQPqjv+evp3/10DAAAAAAAAAAAAAAAAHCJF/GqkeOGdU6kaH3xnTHF79kb9avPaTGdYX3fsX3fM9MbGxkY9dbKRczLncs6VnKs513JGkevnbOSczLmccyXnas61nHEk18/ZyDmZcznnSs7VnGs5o5br52zknMy5nHMl52rOtZxxSMbuAQAAAAAAAAAAAAAAAAAAHy1F9U+Kb31tPW30d+aXnoxOrpoP9CPv5wEAAP//N4D+uw==") creat(&(0x7f0000000000)='./bus\x00', 0x0) mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f00000001c0)='./bus\x00', 0x40403, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac6390b86fa00000000004faa2ae2c084a0ea000000000000008000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]}) r1 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0) getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) 2m33.852831128s ago: executing program 2 (id=233): recvmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}], 0x1}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@getqdisc={0x24, 0x26, 0x8, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x1, 0x5}, {0x10, 0xd}, {0x3, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x8000) socket$netlink(0x10, 0x3, 0x7) syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000780)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}}, 0x120) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'lo\x00'}) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000030c0), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000000000)={0x3, 0x0, 0xfffffffe, 0xfdfdffff, 0xfffc}) 2m30.954849793s ago: executing program 6 (id=237): r0 = shmget$private(0x0, 0x2000, 0x2, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x2000) shmat(r0, &(0x7f0000ffe000/0x1000)=nil, 0x6000) 2m30.78483312s ago: executing program 6 (id=238): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x2, 0x14fe, &(0x7f0000002180)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==") mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)) 2m30.733354592s ago: executing program 2 (id=239): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x36}, 0x4}, 0x1c) setsockopt$inet6_buf(r0, 0x29, 0x32, &(0x7f00000000c0), 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="a800000010000104000000000300000000000000", @ANYRES32=0x0, @ANYBLOB="fab0817dbcb5f31a2c001280110001006272696467655f736c617665000000001400058005001b00010000000500090001000000140003006272696467655f736c6176655f30000008000400ff"], 0xa8}, 0x1, 0x0, 0x0, 0x20044810}, 0x4040) 2m29.6184662s ago: executing program 35 (id=239): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x36}, 0x4}, 0x1c) setsockopt$inet6_buf(r0, 0x29, 0x32, &(0x7f00000000c0), 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="a800000010000104000000000300000000000000", @ANYRES32=0x0, @ANYBLOB="fab0817dbcb5f31a2c001280110001006272696467655f736c617665000000001400058005001b00010000000500090001000000140003006272696467655f736c6176655f30000008000400ff"], 0xa8}, 0x1, 0x0, 0x0, 0x20044810}, 0x4040) 2m29.612617171s ago: executing program 6 (id=241): syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000100)='./file1\x00', 0x2, &(0x7f00000005c0)=ANY=[@ANYRES32, @ANYRES64, @ANYRES32], 0xff, 0x2e7, &(0x7f0000000280)="$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") r0 = socket$inet_icmp(0x2, 0x2, 0x1) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000005c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_OCB(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000ffdbdf256c00000008000300", @ANYRES32=r3, @ANYBLOB="0800a000620900000800270002000500080026006c09"], 0x34}, 0x1, 0x0, 0x0, 0x4048000}, 0x4048010) 2m27.75956192s ago: executing program 6 (id=244): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000000f40)={[{@iocharset={'iocharset', 0x3d, 'ascii'}}, {@noadinicb}, {@adinicb}, {@uid_forget}, {@uid_forget}, {@umask={'umask', 0x3d, 0x2}}, {@longad}, {@gid}, {@nostrict}]}, 0xfe, 0xc22, &(0x7f00000002c0)="$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") creat(&(0x7f0000000000)='./bus\x00', 0x0) mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f00000001c0)='./bus\x00', 0x40403, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac6390b86fa00000000004faa2ae2c084a0ea000000000000008000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]}) r1 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0) getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) 2m26.59783882s ago: executing program 6 (id=249): setresuid(0x0, 0xee01, 0x0) setuid(0x0) openat$userfaultfd(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0) r0 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2a6680, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) r1 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00') fchdir(r1) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) syz_open_procfs(r0, &(0x7f0000000280)='net/ip6_tables_matches\x00') bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000680)=0x1) 2m24.275768409s ago: executing program 6 (id=252): timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004}, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x2) fcntl$setlease(r0, 0x400, 0x1) open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000005580)=""/102392, 0x18ff8) connect$netlink(0xffffffffffffffff, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="a60a00000000000061118000000000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_type(r2, &(0x7f0000000100), 0x2, 0x0) write$cgroup_type(r3, &(0x7f0000000280), 0x9) r4 = openat$cgroup_procs(r2, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r4, &(0x7f0000000c40), 0x12) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0) r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r6, &(0x7f0000000200)=0x1, 0x12) ioctl$VHOST_VDPA_SET_GROUP_ASID(r6, 0x4008af7c, &(0x7f00000000c0)={0x1, 0xfffff3e5}) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_procs(r7, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0) 2m21.959080339s ago: executing program 36 (id=252): timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004}, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x2) fcntl$setlease(r0, 0x400, 0x1) open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000005580)=""/102392, 0x18ff8) connect$netlink(0xffffffffffffffff, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="a60a00000000000061118000000000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_type(r2, &(0x7f0000000100), 0x2, 0x0) write$cgroup_type(r3, &(0x7f0000000280), 0x9) r4 = openat$cgroup_procs(r2, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r4, &(0x7f0000000c40), 0x12) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0) r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r6, &(0x7f0000000200)=0x1, 0x12) ioctl$VHOST_VDPA_SET_GROUP_ASID(r6, 0x4008af7c, &(0x7f00000000c0)={0x1, 0xfffff3e5}) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_procs(r7, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0) 2m21.940021859s ago: executing program 3 (id=255): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) futex_waitv(0x0, 0x0, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) ioctl(r4, 0x1, &(0x7f0000001300)) 2m20.06383552s ago: executing program 3 (id=258): bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xf, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="850000000f000000630a00ff000000005500000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="000000000000000005000000000000009500000000000000"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x8, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d) 2m19.939800325s ago: executing program 3 (id=259): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setscheduler(0x0, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x18, 0x9, 0x81, 0x9, 0x1}, 0x50) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000007e80)={'syztnl2\x00', 0x0}) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x27) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000003540)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10}, 0x94) r5 = shmget$private(0x0, 0x2000, 0x2, &(0x7f0000ffb000/0x2000)=nil) shmat(r5, &(0x7f0000ffe000/0x1000)=nil, 0x6000) 2m18.459850729s ago: executing program 3 (id=260): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000000f40)={[{@iocharset={'iocharset', 0x3d, 'ascii'}}, {@noadinicb}, {@adinicb}, {@uid_forget}, {@uid_forget}, {@umask={'umask', 0x3d, 0x2}}, {@longad}, {@gid}, {@nostrict}]}, 0xfe, 0xc22, &(0x7f00000002c0)="$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") creat(&(0x7f0000000000)='./bus\x00', 0x0) mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f00000001c0)='./bus\x00', 0x40403, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac6390b86fa00000000004faa2ae2c084a0ea000000000000008000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]}) r1 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0) getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) 2m15.342877852s ago: executing program 3 (id=266): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000140)={[{@dax_inode}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@grpjquota}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}}) write$FUSE_DIRENTPLUS(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="10000000", @ANYRES64=r0], 0x10) 2m9.514973373s ago: executing program 3 (id=276): ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f00000000c0)) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x2, 0x9, 0x0, 0x9, 0x2}, 0x10}}, 0x0) 2m8.836985872s ago: executing program 37 (id=276): ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f00000000c0)) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x2, 0x9, 0x0, 0x9, 0x2}, 0x10}}, 0x0) 21.993291606s ago: executing program 9 (id=461): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=@newqdisc={0x94, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {0x700}, {0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xe, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0x8, 0xf, 0x6, 0x6, 0x1, 0x7, 0x4, 0x10, 0x4], 0x3, [0xb, 0x101, 0x7fff, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x7, 0x9, 0x5, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1]}}]}}, @TCA_RATE={0x6, 0x5, {0x3, 0x4}}]}, 0x94}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) 21.699731729s ago: executing program 5 (id=462): r0 = userfaultfd(0x80001) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20004000, &(0x7f0000000080)={0xa, 0x4e22, 0x40000000, @empty, 0x6}, 0x1c) close(0x3) r2 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c0000001200130628b57000fdd3df2506ff01fc00004e2200239e8927000600000009000000090000007d00014afb909eac16394b7e7100e61e70783e85d29f65c6c92e1f"], 0x4c}, 0x1, 0x0, 0x0, 0xc0c0}, 0x4000000) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x309}) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r2, 0x942e, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0xc, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @sock_ops=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000050a000/0x13000)=nil, 0x13000}, 0x1}) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/224, 0x20}], 0x1000000000000108) 21.270897927s ago: executing program 4 (id=463): socketpair$unix(0x1, 0x2, 0x0, 0x0) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f00000001c0)={0x77359400}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000340), &(0x7f0000000380)}, 0x20) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) recvmsg$unix(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000200)=""/122, 0x7a}], 0x1, 0x0, 0x7a}, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}}], 0x1, 0x24048080) 21.075179335s ago: executing program 5 (id=464): r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000f0ffffff7a0af0ff0200000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe000000008500000009000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87881c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f85db47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f37f3e2c25a61ec45c3af97a8f17da954aff3fc8c108755f75ca13fb7c8bbd8b6e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ab99dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7f9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c183c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b9d3fa02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d00000020000000ef19349ee7f31abc11c800000000000000000000000928ee53595a779d243a48cea769470424d28804c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2cf7908b6d7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da202274f20675eb781925441578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec7ffff35e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b7e508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d7fcd116bce9c764c714c9402c21d181aac59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000749efd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c41ab004321610b857e8717764b633b21cb32f0e03280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0e2e9120be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c525708a13d115b43f8b1894c8fa8a14dc4810f61ae96c18cc7130000000000002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42cea68bef67422ecc13968a27ef6a1296dfff4a979369b0e8ebc62887aa46e824d86869ec4ab392b0a74f91381dcc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f78fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb3c035fc6846abe389b25c988f0bbb889560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a412a9b7d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac090000000000000084d8223edbccbf9258b7374e79a1f8bf3fb73c8c6dbb7bbdfc399847a11921f97eba0ea14c4fed9a71eedb97c02461792e3a49dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ca2a4583f3d40e817433d0f4f25cfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f381ba6e0363d0a4a8a813edaa626f0000000000000000004f9e02a3b51a97c4b1c1b411cc6bee2a56f29c55a6aac46a0cfc318fae02922a403431d4e5a4396cad2c8dd34037bc041a2ba1505ba2c4889122ca04e85881aad5f8bfc12e6741872aad21bf5301cd4c60"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0xd}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000140)="13ca0d813f6326f51b588bb6281d", 0x0, 0xa3d8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 20.666968143s ago: executing program 4 (id=465): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, &(0x7f0000000080)}) r0 = fanotify_init(0x0, 0x0) writev(r0, &(0x7f0000000500)=[{&(0x7f0000000080)="88", 0x1}], 0x1) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x80, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r2, 0x0, 0x40) sendmsg$NFT_MSG_GETSETELEM(r3, 0x0, 0x88c1) eventfd(0x101) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f00000001c0)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x20000090) socket(0x10, 0x3, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000002280)='oom_adj\x00') writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000140)='1', 0x1}], 0x1) 19.684110325s ago: executing program 5 (id=466): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$TIOCPKT(r2, 0x5420, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r4 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x0, 0x0) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000032680)=""/102400, 0x19000) socket$inet6_tcp(0xa, 0x1, 0x0) socket$igmp6(0xa, 0x3, 0x2) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e26, 0x2, @loopback, 0x7}, 0x1c) write(0xffffffffffffffff, &(0x7f0000000200)="89", 0xffe3) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0x7fff, 0x1, 0x1, 0x0, @irqchip={0x0, 0x9}}]}) connect$inet(0xffffffffffffffff, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) splice(r0, 0x0, r6, 0x0, 0x39000, 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfffffe3e) 17.592973955s ago: executing program 5 (id=470): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@quota}, {@bsdgroups}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$eJzs3M1vFOUfAPDvzLbw+/HWivgColaJsfGlpQWVgxeNJh4wmugB9VTbQgiFGloTIUSqMXgxMSR6Vo8m/gXevBj1ZGLiSe+GhCgX0FPNzM5Ad9ltt3TZrd3PJxl4nn2e7TzfPvPMPDPPbgPoWUPZP0nEtoj4LSIGqtnaCkPV/65dOTf595Vzk0ksLr72Z5LXu3rl3GRZtXzf1iIznEakHyXFTmrNnTl7YmJmZvp0kR+dP/nO6NyZs08ePzlxbPrY9KnxQ4cOHhh75unxp9oSZxbX1T3vz+7d/dIbF1+ePHLx7R+/ydq7rShfGsct2XTzS0NZ4H8t5urLHon/r2l36832Jemkr4sNYVUqEZF1V38+/geiEjc6byBe/LCrjQNuq+zatLl58cIisIEl0e0WAN1RXuiz+99y69DUY124/Fz1BiiL+1qxVUv6Ii3q9Nfd37bTUEQcWfjni2yLdjyHAABYwSeTnx+OJxrN/9K4e0m9HcUaymBE3BEROyPizojYFRF3ReR174mIe1e5//qloZvnP+mlWwqsRdn879libat2/lfO/mKwUuS25/H3J0ePz0zvL34nw9G/OcuPLbOP71745dNmZUvnf9mW7b+cCxbtuNRX94BuamJ+Ip+UtsHlDyL29DWKP7m+EpBExO6I2LO6H72jTBx/7Ou9zSqtHP8y2rDOtPhVxKPV/l+IuvhLyfLrk6P/i5np/aPlUXGzn36+8Gqz/a8p/jbI+n9L7fFflHx5pkgMvrV0vXYuVr1yeeH3j5ve09zq8b8peT0/H5XLru9NzM+fHovYlBzO8zWvj994b5kv62fxD+9rPP53Fu/J+v++iMgO4vsj4oGIeLBo+0MR8XBE7Fsm/h+eb162Hvp/quH57/rxP5jU9P/qE5UT33/bbP+t9f/BPDVcvJKf/1bQagPX8rsDAACA/4o0/wx8ko5cT6fpyEj1M/y7Yks6Mzs3//jR2XdPTVU/Kz8Y/Wn5pGtgyfPQsWSh+InV/HjxrLgsP1A8N/6sEnl+ZHJ2ZqrLsUOv29pk/Gf+qHS7dcBt12gdbbzBF9qAjad+/Ke12fOvdLIxQEf5vjb0rhXGf9qpdgCd5/oPvavR+D9fl7cWABuT6z/0LuMfepfxD72rbvxX4tdutQTooLV8r1+ilxORrotmtJRo/e9B3O7Em+ujGS0kun1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI9/AwAA//9sbvBf") openat(0xffffffffffffff9c, 0x0, 0x10000, 0x5c) r0 = open(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85100000010000009500000000000000850000007600000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0xa6, &(0x7f0000000340)=""/166}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000) socket$inet6_tcp(0xa, 0x1, 0x0) r4 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2}) io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001400)=""/4103, 0x1007}], 0x1) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0}, 0x20) r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r5, 0x80045505, &(0x7f0000000040)) r6 = socket$nl_route(0x10, 0x3, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000fc0)={'wlan1\x00'}) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) 15.893304758s ago: executing program 4 (id=471): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setscheduler(0x0, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x18, 0x9, 0x81, 0x9, 0x1}, 0x50) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000007e80)={'syztnl2\x00', 0x0}) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x27) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x6000) getuid() 11.900544049s ago: executing program 8 (id=477): rseq(&(0x7f0000000180)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) semget$private(0x0, 0x6, 0x0) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f00000002c0)={[{@shortname_winnt}, {@utf8no}, {@fat=@sys_immutable}, {@fat=@time_offset={'time_offset', 0x3d, 0x161}}, {@shortname_winnt}, {@fat=@tz_utc}, {@fat=@check_normal}, {@utf8no}, {@utf8}]}, 0xfd, 0x2c7, &(0x7f0000000480)="$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") setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x13, 0x0, 0x0) r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x1a4201, 0x0) process_mrelease(r0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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") r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r1) sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000004001b0000000c00228059fe0080040000800600210071e6"], 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x24000000) stat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)) 11.710789577s ago: executing program 7 (id=478): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) mount(0x0, 0x0, &(0x7f0000000000)='proc\x00', 0x800000, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000004c0)={0x2c, &(0x7f00000000c0)={0x0, 0x11, 0x90, {0x90, 0x9, "16cbe331f8aaa9bab9a6919493eec6620ba4c1a74cdb8bb6d8c7c8d02666cba3a3958c8846e3dffc047d0c33ae0703ff24e313be6f949087dd743031e374044027236ad6eb6f2a178e323aaf572091f482b0ffe9b08b6157b0a0b550bc97aa8759197216f5e81be5afabeffdd34c84be55ddb87bd31a5739ca47b589d6c7e9d6515906e14c2aa6172e610bddbb19"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 10.226284161s ago: executing program 9 (id=479): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$TCXONC(r0, 0x540a, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)) 9.660840635s ago: executing program 9 (id=480): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed, 0x40000000000}]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x88800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x0, @loopback=0x7f000000}}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000001c0)={[0x599, 0x6, 0x0, 0x4, 0x10003, 0x0, 0x400200cc4, 0x1, 0x7d, 0x0, 0x0, 0x0, 0x2, 0x1, 0xb9, 0x8b], 0xeeee8000, 0x2011c0}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 9.610838337s ago: executing program 4 (id=481): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x50) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = dup(r3) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}}) ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0xc0105500, &(0x7f0000000000)=ANY=[]) 9.582997978s ago: executing program 7 (id=482): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x1}, 0x50) bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0)={0x0, r0}, 0x8) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_adj\x00') writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000440)='15', 0x2}], 0x1) 9.114849918s ago: executing program 7 (id=483): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/net\x00') ioctl$NS_GET_USERNS(r0, 0xb701, 0x0) 7.597289514s ago: executing program 4 (id=484): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680)) close(r1) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) 6.73865443s ago: executing program 5 (id=485): r0 = socket$inet6_udp(0xa, 0x2, 0x0) pipe(&(0x7f0000000d00)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) r4 = socket$inet6(0x10, 0x3, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r5) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000c80)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000240)=@ipv4_newaddr={0x20, 0x14, 0x509, 0x70bd2b, 0x25dfdbfd, {0x2, 0x10, 0x8c, 0xcb, r6}, [@IFA_LOCAL={0x8, 0x2, @multicast2}]}, 0x20}, 0x1, 0x0, 0x0, 0x48020}, 0x4020) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'syztnl0\x00', 0x0}) syz_emit_vhci(0x0, 0x7) socket(0x10, 0x3, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) write$binfmt_misc(r2, &(0x7f0000000240), 0xfffffecc) splice(r1, 0x0, r3, 0x0, 0x714f, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x109080, 0x0) syz_usb_connect(0x6, 0x7d, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0xe3, 0x88, 0x87, 0x8, 0x403, 0xf06e, 0x9498, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6b, 0x1, 0x7f, 0x5, 0x0, 0x7, [{{0x9, 0x4, 0xaf, 0x8, 0x5, 0x66, 0x3e, 0x49, 0x4, [], [{{0x9, 0x5, 0x9, 0x0, 0x3ff, 0x0, 0x8, 0xf3, [@generic={0x1e, 0x22, "9cedfaae30e68b76c21feef4abd832d1225832f513fe8d3a8fee5ed0"}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x7, 0x5}]}}, {{0x9, 0x5, 0x6, 0x0, 0x20, 0x2, 0x4, 0x90}}, {{0x9, 0x5, 0x5, 0x2, 0x20, 0xf4, 0x4, 0x5}}, {{0x9, 0x5, 0xb, 0x10, 0x10, 0x1, 0x7, 0xf7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xe, 0x68a}]}}, {{0x9, 0x5, 0xf, 0x1d, 0x20, 0x9d, 0x0, 0x81}}]}}]}}]}}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000013c0)={'wlan1\x00'}) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r7, @ANYBLOB], 0x6f4}}, 0x0) renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x2) 6.552583289s ago: executing program 7 (id=486): openat$userfaultfd(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x70, 0x0, 0x0, 0xee01}, {}, {0x0, 0x0, 0x0, 0x800000}, 0x4, 0x6e6bb8}}, 0xb8}}, 0x8004) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x60, 0x30, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x4}}}, 0xb8}}, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000080)={[{@dax_always}, {@grpjquota}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@oldalloc}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noinit_itable}, {@noauto_da_alloc}]}, 0x1, 0x451, &(0x7f0000000780)="$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") 6.354360117s ago: executing program 9 (id=487): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) r4 = socket(0x400000000010, 0x3, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd24, 0x25dfdafd, {0x0, 0x0, 0x0, r6, {0xc, 0xc}, {0x2, 0xfff1}, {0x99d411631b5903aa, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080) 5.483513684s ago: executing program 8 (id=488): socketpair$unix(0x1, 0x2, 0x0, 0x0) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f00000001c0)={0x77359400}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000340), &(0x7f0000000380)}, 0x20) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) recvmsg$unix(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000200)=""/122, 0x7a}], 0x1, 0x0, 0x7a}, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}}], 0x1, 0x24048080) 5.242745125s ago: executing program 7 (id=489): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@bh}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==") r0 = socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000280)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x58, r4, 0x8, 0x70bd25, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xffff, 0x2d}}}}, [@NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x2}, @NL80211_ATTR_STA_FLAGS={0x20, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_WME={0x4}]}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, r5}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x10) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) r6 = io_uring_setup(0x3538, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1}) close(r6) clock_nanosleep(0x8, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00089aafc727346c3e0d8728525a2641b3b31621730c58dcf8e0ca2e6767a45a978776e9d2c689feab83a160d00a77ae5112cd4e7141cad333d7cbb69dc6b314609d3827059c11066ba0b4b95c12d2d9ff9c8896d9e247bd55f9ff578a14e0e9d0ca07693396b00d2ef44adb4858475a07d5e8fa3ef5b306fe8a5d1cd2d8e06e7f88226ece092c6aabf8870e140124d5a48670513e0c419c99b7c5105959e7a535f12694634cf272490e0000"], 0x81, 0x4ac, &(0x7f00000011c0)="$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") link(&(0x7f0000000940)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$exfat(0x0, &(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3890c25, 0x0, 0x3, 0x0, &(0x7f0000000000)) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x42, &(0x7f0000000080)=0xffff7b6e, 0x4) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000000)=""/21, &(0x7f0000000240)=0x15) pwrite64(r7, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) 5.059681583s ago: executing program 8 (id=490): bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x21dd, &(0x7f00000001c0)={0x0, 0x1fffff, 0x0, 0x2, 0xd5}) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000080), 0x1) 4.633875361s ago: executing program 9 (id=491): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setscheduler(0x0, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x18, 0x9, 0x81, 0x9, 0x1}, 0x50) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000007e80)={'syztnl2\x00', 0x0}) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x27) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x6000) getuid() 4.43100432s ago: executing program 8 (id=492): r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000340)={0x0, 0x4, 0x0, 0x8002, '\x00', '\x00', '\x00', 0x4, 0xfffffffe, 0x100, 0x0, "abd206a1ebd7cedfd17ebd65400ed41b"}) 469.879749ms ago: executing program 9 (id=493): socket$nl_generic(0x10, 0x3, 0x10) preadv(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}, {&(0x7f00000001c0)=""/47, 0x2f}], 0x2, 0x4, 0x3) openat(0xffffffffffffff9c, 0x0, 0x2c040, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000002480)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5, &(0x7f0000000040), 0xfffffffffffffeff}, 0x0) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000040), 0x4) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000180)={0x6, 0x9, 0x1, 'queue1\x00', 0xfffff5a0}) 469.507329ms ago: executing program 7 (id=494): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) write$usbip_server(r2, &(0x7f0000001600)=ANY=[@ANYBLOB="00000003000000020000000000000001000000060000a86f0000000000000000000000090000000600000000000000006ae5a0360000000100000000000000080000000500000006000000070000000afffffffd0000000100000703"], 0xc0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(0xffffffffffffffff, 0x0, 0x4000000) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x2}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 362.922934ms ago: executing program 8 (id=495): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x81000, 0x3a, 0x7ff, 0xf83, 0x40006}, 0x1c) 164.848812ms ago: executing program 5 (id=496): socket$nl_xfrm(0x10, 0x3, 0x6) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084) r4 = socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x3) sched_setaffinity(0x0, 0xfffffd10, &(0x7f0000000200)=0x2000000000006) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000004c00)=""/102392, 0x18ff8) r6 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x4e0, 0x0, 0x18c, 0x203, 0x320, 0x19030000, 0x410, 0x2e0, 0x2e0, 0x410, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x2d8, 0x320, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0xe}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x3}, {0x2, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x8}, {}, {0x16}, {0x0, 0xff}, {}, {0x7}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0x101}, {}, {0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x9}, {0xfffc, 0x0, 0x0, 0x6}, {}, {0xfffe}, {}, {}, {}, {0xfffe, 0xfb}, {}, {0x7a04}, {}, {}, {0x20, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x800}, {}, {0xb8c, 0x0, 0x0, 0xf00}, {0x0, 0x1, 0x0, 0x3}, {0x3}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0xfd}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0xb}, {0x4, 0x2}]}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x2, 'syz0\x00', {0x8001}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz0\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x540) socket$unix(0x1, 0x1, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=@newqdisc={0x94, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x700}, {0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xe, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0x8, 0xf, 0x6, 0x6, 0x1, 0x7, 0x4, 0x10, 0x4], 0x3, [0xb, 0x101, 0x7fff, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x7, 0x9, 0x5, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1]}}]}}, @TCA_RATE={0x6, 0x5, {0x3, 0x4}}]}, 0x94}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) 106.842025ms ago: executing program 4 (id=497): prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000) prctl$PR_MCE_KILL(0x35, 0x0, 0x8) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00') read$FUSE(r1, &(0x7f0000003240)={0x2020}, 0x2020) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) 0s ago: executing program 8 (id=498): rseq(&(0x7f0000000180)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) semget$private(0x0, 0x6, 0x0) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f00000002c0)={[{@shortname_winnt}, {@utf8no}, {@fat=@sys_immutable}, {@fat=@time_offset={'time_offset', 0x3d, 0x161}}, {@shortname_winnt}, {@fat=@tz_utc}, {@fat=@check_normal}, {@utf8no}, {@utf8}]}, 0xfd, 0x2c7, &(0x7f0000000480)="$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") setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x13, 0x0, 0x0) r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x1a4201, 0x0) process_mrelease(r0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ") r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r1) sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000004001b0000000c00228059fe0080040000800600210071e6"], 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x24000000) stat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)) kernel console output (not intermixed with test programs): rofs_fill_dentries: bogus dirent @ nid 36 [ 120.249213][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.274547][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.284614][ T4591] 8021q: adding VLAN 0 to HW filter on device bond0 [ 120.302542][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.323370][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.333808][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.349610][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.375206][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.387167][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.396651][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.407556][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 120.416630][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.426397][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.431647][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 120.437361][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.453761][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.474434][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.486648][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.504868][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.527971][ T4591] 8021q: adding VLAN 0 to HW filter on device team0 [ 120.531532][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.575045][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.594468][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.607665][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.619135][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.635336][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.648533][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.661181][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.683816][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.704004][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.712293][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 120.724152][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 120.738695][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.756211][ T1069] bridge0: port 1(bridge_slave_0) entered blocking state [ 120.764193][ T1069] bridge0: port 1(bridge_slave_0) entered forwarding state [ 120.779877][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.791085][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 120.807334][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.817663][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.832996][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 120.845889][ T1069] bridge0: port 2(bridge_slave_1) entered blocking state [ 120.853086][ T1069] bridge0: port 2(bridge_slave_1) entered forwarding state [ 120.867839][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.877200][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.892812][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 120.908664][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.922624][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 120.937734][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.953575][ T1069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 120.967770][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 120.978573][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.037703][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.087640][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.097224][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.109051][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.119109][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.130242][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.141339][ T4265] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 36 [ 121.211319][ T4823] Zero length message leads to an empty skb [ 121.333501][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 121.352724][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 121.426027][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 121.443945][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 121.462632][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 121.482855][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 121.503418][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 121.552348][ T4831] loop2: detected capacity change from 0 to 8 [ 121.573194][ T75] device hsr_slave_0 left promiscuous mode [ 121.596125][ T75] device hsr_slave_1 left promiscuous mode [ 121.624221][ T4831] SQUASHFS error: Failed to read block 0x4e8: -5 [ 121.637333][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 121.643703][ T4831] SQUASHFS error: Failed to read block 0x4de: -5 [ 121.647455][ T75] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 121.671810][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 121.677369][ T4831] SQUASHFS error: Failed to read block 0x4de: -5 [ 121.690515][ T75] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 121.706754][ T75] device bridge_slave_1 left promiscuous mode [ 121.709193][ T4831] SQUASHFS error: Failed to read block 0x4de: -5 [ 121.721329][ T75] bridge0: port 2(bridge_slave_1) entered disabled state [ 121.745449][ T75] device bridge_slave_0 left promiscuous mode [ 121.752374][ T27] kauditd_printk_skb: 126 callbacks suppressed [ 121.752388][ T27] audit: type=1800 audit(1764389904.307:143): pid=4831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.117" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 121.766529][ T75] bridge0: port 1(bridge_slave_0) entered disabled state [ 121.837376][ T75] device veth1_macvtap left promiscuous mode [ 121.843673][ T75] device veth0_macvtap left promiscuous mode [ 121.849802][ T75] device veth1_vlan left promiscuous mode [ 121.861455][ T75] device veth0_vlan left promiscuous mode [ 122.114476][ T4838] loop3: detected capacity change from 0 to 128 [ 122.141652][ T4838] FAT-fs (loop3): Unrecognized mount option "0177777777777777777777718446744073709551615017777777777777777777770000000000000000000000401777777777777777777777ÿ0000000000000000000301777777777777777777777" or missing value [ 123.191770][ T4845] loop3: detected capacity change from 0 to 128 [ 123.241766][ T4845] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 123.581498][ T4479] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 123.727660][ T75] team0 (unregistering): Port device team_slave_1 removed [ 123.768771][ T4852] hfs: can't find a HFS filesystem on dev nullb0 [ 123.802601][ T75] team0 (unregistering): Port device team_slave_0 removed [ 123.929355][ T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 123.993473][ T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 124.399147][ T75] bond0 (unregistering): Released all slaves [ 124.479529][ T4591] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 124.491949][ T4591] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 124.506821][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 124.515688][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 124.692191][ T4855] loop2: detected capacity change from 0 to 2048 [ 124.734306][ T4855] EXT4-fs: Ignoring removed i_version option [ 124.751722][ T4855] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 124.822259][ T4633] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 124.852762][ T4633] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 124.919554][ T4633] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 124.967927][ T4860] loop3: detected capacity change from 0 to 256 [ 124.972430][ T4633] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 124.980100][ T4860] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d) [ 125.063734][ T4860] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 125.875993][ T4633] 8021q: adding VLAN 0 to HW filter on device bond0 [ 126.001858][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 126.031002][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 126.047812][ T4633] 8021q: adding VLAN 0 to HW filter on device team0 [ 126.109127][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 126.127993][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 126.170507][ T51] bridge0: port 1(bridge_slave_0) entered blocking state [ 126.177711][ T51] bridge0: port 1(bridge_slave_0) entered forwarding state [ 126.231970][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 126.282449][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 126.299793][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 126.326448][ T4355] bridge0: port 2(bridge_slave_1) entered blocking state [ 126.333651][ T4355] bridge0: port 2(bridge_slave_1) entered forwarding state [ 126.393906][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 126.416022][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 126.449837][ T4591] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 126.529820][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 126.561726][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 126.596631][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 126.618476][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 126.635919][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 126.675739][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 126.775835][ T75] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.076149][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 127.097827][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 127.107558][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 127.117082][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 127.125845][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 127.247853][ T75] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.315828][ T4633] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 127.540004][ T75] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.705928][ T75] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.742708][ T4901] loop3: detected capacity change from 0 to 4096 [ 127.767180][ T4901] EXT4-fs: Ignoring removed mblk_io_submit option [ 127.830973][ T4901] ext4: Bad value for 'debug_want_extra_isize' [ 128.188908][ T4274] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 128.200071][ T4274] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 128.208240][ T4274] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 128.226608][ T4274] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 128.235482][ T4274] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 128.251151][ T4274] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 128.565482][ T4890] loop2: detected capacity change from 0 to 32768 [ 128.716895][ T4890] gfs2: fsid=localflocks: Trying to join cluster "lock_nolock", "localflocks" [ 128.718933][ T4633] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 128.756837][ T4890] gfs2: fsid=localflocks: Now mounting FS (format 1801)... [ 128.782334][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 128.807329][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 128.841434][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 128.870163][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 128.928262][ T4890] gfs2: fsid=localflocks.s: journal 0 mapped with 5 extents in 0ms [ 129.048918][ T4890] gfs2: fsid=localflocks.s: first mount done, others may mount [ 129.125268][ T4591] device veth0_vlan entered promiscuous mode [ 129.181512][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 129.204777][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 129.331674][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 129.346189][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 129.383095][ T4591] device veth1_vlan entered promiscuous mode [ 129.494879][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 129.509020][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 129.597040][ T4591] device veth0_macvtap entered promiscuous mode [ 129.633392][ T4906] chnl_net:caif_netlink_parms(): no params data found [ 129.716922][ T4591] device veth1_macvtap entered promiscuous mode [ 129.815866][ T4937] loop2: detected capacity change from 0 to 256 [ 129.848739][ T4937] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 129.882279][ T27] audit: type=1326 audit(1764389912.437:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 129.914540][ T4937] exFAT-fs (loop2): error, tried to truncate zeroed cluster. [ 129.926027][ T4937] exFAT-fs (loop2): Filesystem has been set read-only [ 129.933475][ T27] audit: type=1326 audit(1764389912.467:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.008859][ T27] audit: type=1326 audit(1764389912.517:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.038487][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.049798][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.086121][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.160695][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.171105][ T27] audit: type=1326 audit(1764389912.517:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.222461][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.234842][ T4946] loop3: detected capacity change from 0 to 8 [ 130.246618][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.257075][ T27] audit: type=1326 audit(1764389912.517:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.283191][ T4946] squashfs image failed sanity check [ 130.294021][ T4591] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 130.340996][ T4274] Bluetooth: hci0: command 0x0409 tx timeout [ 130.355220][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 130.381486][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 130.403875][ T27] audit: type=1326 audit(1764389912.517:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.434560][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 130.443771][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 130.455995][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.476602][ T27] audit: type=1326 audit(1764389912.517:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.478199][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.519561][ T27] audit: type=1326 audit(1764389912.517:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.2.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 130.541103][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.554127][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.575322][ T4591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.590711][ T4591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.609656][ T4591] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 130.627849][ T4591] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.637196][ T4591] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.646068][ T4591] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.655014][ T4591] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.758500][ T4906] bridge0: port 1(bridge_slave_0) entered blocking state [ 130.773110][ T4906] bridge0: port 1(bridge_slave_0) entered disabled state [ 130.789429][ T4906] device bridge_slave_0 entered promiscuous mode [ 130.807174][ T4906] bridge0: port 2(bridge_slave_1) entered blocking state [ 130.816839][ T4906] bridge0: port 2(bridge_slave_1) entered disabled state [ 130.837083][ T4906] device bridge_slave_1 entered promiscuous mode [ 130.850028][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 130.865881][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 130.974157][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 130.984092][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 131.760945][ T75] device hsr_slave_0 left promiscuous mode [ 131.767365][ T75] device hsr_slave_1 left promiscuous mode [ 131.781993][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 131.789457][ T75] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 131.826538][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 131.836988][ T75] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 131.850470][ T75] device bridge_slave_1 left promiscuous mode [ 131.850500][ T27] audit: type=1326 audit(1764389914.397:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4962 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1fb8f749 code=0x7ffc0000 [ 131.858758][ T75] bridge0: port 2(bridge_slave_1) entered disabled state [ 131.894734][ T4960] loop2: detected capacity change from 0 to 8192 [ 131.895267][ T27] audit: type=1326 audit(1764389914.437:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4962 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f4a1fb8f749 code=0x7ffc0000 [ 131.931786][ T75] device bridge_slave_0 left promiscuous mode [ 131.938070][ T75] bridge0: port 1(bridge_slave_0) entered disabled state [ 131.996788][ T4960] loop2: p1 p2 [ 132.000558][ T4960] loop2: partition table partially beyond EOD, truncated [ 132.018627][ T75] device veth1_macvtap left promiscuous mode [ 132.019441][ T4960] loop2: p1 start 16777216 is beyond EOD, truncated [ 132.032167][ T4960] loop2: p2 size 515840 extends beyond EOD, truncated [ 132.039115][ T75] device veth0_macvtap left promiscuous mode [ 132.055174][ T75] device veth1_vlan left promiscuous mode [ 132.063976][ T75] device veth0_vlan left promiscuous mode [ 132.267752][ T4385] udevd[4385]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 132.420854][ T4274] Bluetooth: hci0: command 0x041b tx timeout [ 132.515267][ T4975] loop2: detected capacity change from 0 to 1024 [ 132.560164][ T4975] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 132.753877][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.760275][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.917997][ T75] team0 (unregistering): Port device team_slave_1 removed [ 132.933386][ T4979] loop3: detected capacity change from 0 to 512 [ 132.944499][ T4979] EXT4-fs: Ignoring removed bh option [ 132.967699][ T4979] EXT4-fs (loop3): DAX unsupported by block device. [ 133.005802][ T75] team0 (unregistering): Port device team_slave_0 removed [ 133.076852][ T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 133.177744][ T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 133.697564][ T75] bond0 (unregistering): Released all slaves [ 133.804411][ T4906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 133.835626][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 133.879071][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 133.889609][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 133.898829][ T4355] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 133.930212][ T4906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 133.950036][ T4633] device veth0_vlan entered promiscuous mode [ 134.087594][ T4633] device veth1_vlan entered promiscuous mode [ 134.116902][ T4906] team0: Port device team_slave_0 added [ 134.351927][ T4997] loop2: detected capacity change from 0 to 4096 [ 134.364420][ T4997] EXT4-fs: Ignoring removed mblk_io_submit option [ 134.390093][ T4997] EXT4-fs (loop2): Test dummy encryption mode enabled [ 134.551066][ T4274] Bluetooth: hci0: command 0x040f tx timeout [ 134.593824][ T4906] team0: Port device team_slave_1 added [ 134.626907][ T4997] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 135.108323][ T4997] syz.2.152 (4997) used greatest stack depth: 19584 bytes left [ 135.246629][ T5000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.298092][ T5000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.414126][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 135.439139][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 135.501319][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 135.570623][ T4633] device veth0_macvtap entered promiscuous mode [ 135.630955][ T4906] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 135.638313][ T4906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 135.678369][ T4687] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.717825][ T4687] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.826878][ T4906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 135.900503][ T4633] device veth1_macvtap entered promiscuous mode [ 135.937913][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 135.996678][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 136.053535][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 136.060624][ C1] sched: RT throttling activated [ 136.086922][ T4906] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 136.117310][ T4906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.210026][ T5012] loop3: detected capacity change from 0 to 164 [ 136.237016][ T4906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 136.344573][ T4633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 136.390374][ T4633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.400411][ T4633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 136.410933][ T4633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.427219][ T4633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 136.437777][ T4633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.449942][ T4633] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 136.463243][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 136.525458][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 136.561602][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 136.581886][ T4274] Bluetooth: hci0: command 0x0419 tx timeout [ 136.606437][ T4633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 136.667389][ T4633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.720751][ T4633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 136.746140][ T4633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.791093][ T4633] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 136.812284][ T27] kauditd_printk_skb: 5 callbacks suppressed [ 136.812299][ T27] audit: type=1326 audit(1764389919.367:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 136.850698][ T4633] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 136.867592][ T5026] loop2: detected capacity change from 0 to 128 [ 136.872957][ T4633] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 136.919201][ T27] audit: type=1326 audit(1764389919.367:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 136.921539][ T5026] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1) [ 136.974377][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 136.986594][ T27] audit: type=1326 audit(1764389919.407:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 136.988325][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 137.023372][ T5026] FAT-fs (loop2): Filesystem has been set read-only [ 137.034457][ T27] audit: type=1326 audit(1764389919.407:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.063251][ T4633] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.080370][ T4633] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.089615][ T4633] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.103983][ T4633] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.146749][ T27] audit: type=1326 audit(1764389919.407:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.173872][ T4906] device hsr_slave_0 entered promiscuous mode [ 137.190497][ T5026] loop2: detected capacity change from 0 to 512 [ 137.201549][ T4906] device hsr_slave_1 entered promiscuous mode [ 137.208483][ T4906] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 137.214882][ T27] audit: type=1326 audit(1764389919.407:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.220455][ T4906] Cannot create hsr debugfs directory [ 137.255459][ T27] audit: type=1326 audit(1764389919.407:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.294746][ T27] audit: type=1326 audit(1764389919.407:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.349898][ T5026] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 137.376601][ T27] audit: type=1326 audit(1764389919.407:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.399439][ T27] audit: type=1326 audit(1764389919.407:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5025 comm="syz.2.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2cd0d8f749 code=0x7ffc0000 [ 137.412243][ T5026] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 137.633121][ T4687] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.673659][ T4687] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.714420][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 137.739885][ T4412] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.774235][ T4412] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.803368][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 137.888145][ T4906] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 137.944547][ T4906] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 137.973670][ T4906] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 138.002053][ T4906] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 138.119709][ T5049] netlink: 12 bytes leftover after parsing attributes in process `syz.5.160'. [ 138.243410][ T4906] 8021q: adding VLAN 0 to HW filter on device bond0 [ 138.317623][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 138.374628][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 138.379766][ T5057] loop6: detected capacity change from 0 to 256 [ 138.408084][ T4906] 8021q: adding VLAN 0 to HW filter on device team0 [ 138.417058][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 138.474477][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 138.500152][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 138.555637][ T4412] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.562845][ T4412] bridge0: port 1(bridge_slave_0) entered forwarding state [ 138.605368][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 138.633938][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 138.647537][ T5063] loop2: detected capacity change from 0 to 1024 [ 138.663606][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 138.706559][ T4412] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.713842][ T4412] bridge0: port 2(bridge_slave_1) entered forwarding state [ 138.757242][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 138.812154][ T5063] hfsplus: bad catalog folder thread [ 138.841170][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 138.882354][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 138.923368][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 138.969384][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 139.028633][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 139.045965][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 139.074816][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 139.120939][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 139.357519][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 139.373228][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 139.564933][ T4906] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 139.611361][ T5077] loop6: detected capacity change from 0 to 256 [ 140.628094][ T5087] loop2: detected capacity change from 0 to 128 [ 142.168265][ T4274] Bluetooth: hci0: command 0x0405 tx timeout [ 142.234744][ T5087] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 142.243999][ T5087] ext4 filesystem being mounted at /55/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 142.582718][ T27] kauditd_printk_skb: 127 callbacks suppressed [ 142.582733][ T27] audit: type=1326 audit(1764389925.137:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 142.626857][ T5101] loop6: detected capacity change from 0 to 128 [ 142.687332][ T5101] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1) [ 142.709688][ T27] audit: type=1326 audit(1764389925.177:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 142.743413][ T5101] FAT-fs (loop6): Filesystem has been set read-only [ 142.792650][ T27] audit: type=1326 audit(1764389925.177:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 142.848949][ T5101] loop6: detected capacity change from 0 to 512 [ 142.886794][ T27] audit: type=1326 audit(1764389925.177:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 142.926980][ T4570] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 142.943178][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 142.949710][ T27] audit: type=1326 audit(1764389925.177:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 142.970995][ T4570] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 142.989941][ T5101] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 143.038780][ T5101] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 143.055288][ T4906] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 143.128022][ T27] audit: type=1326 audit(1764389925.177:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 143.176343][ T27] audit: type=1326 audit(1764389925.177:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 143.309145][ T27] audit: type=1326 audit(1764389925.177:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 143.389157][ T27] audit: type=1326 audit(1764389925.177:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe94158f749 code=0x7ffc0000 [ 143.493391][ T27] audit: type=1326 audit(1764389925.177:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.6.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe94158f783 code=0x7ffc0000 [ 143.691748][ T5117] loop2: detected capacity change from 0 to 512 [ 145.136825][ T4633] EXT4-fs (loop6): unmounting filesystem. [ 145.188432][ T5117] EXT4-fs (loop2): Test dummy encryption mode enabled [ 145.201814][ T5117] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 145.309400][ T5117] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 145.388313][ T5117] EXT4-fs (loop2): 1 truncate cleaned up [ 145.400698][ T5117] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 146.492984][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 146.649876][ T5141] loop6: detected capacity change from 0 to 256 [ 147.379147][ T5141] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 147.453210][ T5141] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 150.691744][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 150.711610][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 150.797162][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 150.827112][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 150.858183][ T4906] device veth0_vlan entered promiscuous mode [ 150.867972][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 150.891979][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 150.926727][ T4906] device veth1_vlan entered promiscuous mode [ 151.021859][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 151.061040][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 151.085009][ T5163] loop6: detected capacity change from 0 to 1024 [ 151.101107][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 151.133487][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 151.157504][ T4906] device veth0_macvtap entered promiscuous mode [ 151.192169][ T5163] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 151.207062][ T4906] device veth1_macvtap entered promiscuous mode [ 151.303252][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 151.380679][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 151.390565][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 151.460884][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 151.500317][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 151.528431][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 151.595840][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 151.717080][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 151.849479][ T4906] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 151.881193][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 151.950311][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 152.037802][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 152.069710][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 152.102749][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.113919][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.141383][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.175173][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.274469][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.400621][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.470666][ T4906] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.532020][ T4906] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.602130][ T4906] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 152.678689][ T4906] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.804027][ T4906] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.819835][ T5181] loop3: detected capacity change from 0 to 128 [ 152.841864][ T5181] FAT-fs (loop3): Unrecognized mount option "00000000000000000000003" or missing value [ 152.900163][ T4906] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.026409][ T4906] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.465906][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 153.558379][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 154.060843][ T27] kauditd_printk_skb: 86 callbacks suppressed [ 154.060879][ T27] audit: type=1800 audit(1764389936.607:392): pid=5163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.189" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 154.082032][ T5190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.191'. [ 154.359314][ T5186] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 154.384767][ T5186] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 154.419411][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 154.424712][ T4633] EXT4-fs (loop6): unmounting filesystem. [ 154.463973][ T5000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 154.494202][ T5000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 154.555236][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 154.679281][ T5200] loop2: detected capacity change from 0 to 8 [ 155.018289][ T4377] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 155.361874][ T4377] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 155.376423][ T4377] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 155.572652][ T4377] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 155.615217][ T4377] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 155.633692][ T4377] usb 7-1: SerialNumber: syz [ 155.657780][ T5214] loop3: detected capacity change from 0 to 256 [ 155.734031][ T5214] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d) [ 155.846478][ T5214] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 155.887181][ T4377] usb 7-1: 0:2 : does not exist [ 155.909970][ T4377] usb 7-1: unit 24 not found! [ 157.420416][ T4377] usb 7-1: unit 41 not found! [ 157.454529][ T4377] usb 7-1: unit 255 not found! [ 157.478545][ T27] audit: type=1800 audit(1764389940.027:393): pid=5214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.196" name="file2" dev="loop3" ino=1048620 res=0 errno=0 [ 157.632778][ T4377] usb 7-1: USB disconnect, device number 2 [ 158.260047][ T4385] udevd[4385]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 158.267547][ T5226] loop5: detected capacity change from 0 to 512 [ 158.301566][ T5226] EXT4-fs: Ignoring removed i_version option [ 158.340832][ T5226] EXT4-fs: Mount option(s) incompatible with ext2 [ 161.538383][ T5239] loop2: detected capacity change from 0 to 512 [ 161.626867][ T5239] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 161.636598][ T5239] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.634618][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 163.819667][ T5259] loop6: detected capacity change from 0 to 256 [ 163.864211][ T5259] FAT-fs (loop6): Directory bread(block 64) failed [ 163.880734][ T5259] FAT-fs (loop6): Directory bread(block 65) failed [ 163.887380][ T5259] FAT-fs (loop6): Directory bread(block 66) failed [ 163.901062][ T5259] FAT-fs (loop6): Directory bread(block 67) failed [ 163.908339][ T5259] FAT-fs (loop6): Directory bread(block 68) failed [ 163.930822][ T5259] FAT-fs (loop6): Directory bread(block 69) failed [ 163.937585][ T5259] FAT-fs (loop6): Directory bread(block 70) failed [ 165.390713][ T5259] FAT-fs (loop6): Directory bread(block 71) failed [ 165.397466][ T5259] FAT-fs (loop6): Directory bread(block 72) failed [ 166.891056][ T5259] FAT-fs (loop6): Directory bread(block 73) failed [ 167.520854][ T4347] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 167.751987][ T4347] usb 8-1: Using ep0 maxpacket: 8 [ 167.773427][ T4347] usb 8-1: config 0 has an invalid interface number: 24 but max is 0 [ 167.885591][ T4347] usb 8-1: config 0 has no interface number 0 [ 167.894802][ T5274] loop5: detected capacity change from 0 to 2048 [ 167.916384][ T4347] usb 8-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65 [ 167.952659][ T5274] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found! [ 167.970847][ T4347] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 167.989157][ T4347] usb 8-1: Product: syz [ 168.017329][ T5274] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 168.026812][ T4347] usb 8-1: Manufacturer: syz [ 168.045289][ T4347] usb 8-1: SerialNumber: syz [ 168.071486][ T4347] usb 8-1: config 0 descriptor?? [ 168.579478][ T5288] loop5: detected capacity change from 0 to 512 [ 168.661676][ T5288] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 168.705818][ T5288] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.818054][ T5288] EXT4-fs (loop5): re-mounted. Quota mode: writeback. [ 168.900190][ T4414] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 169.010175][ T5295] loop2: detected capacity change from 0 to 2048 [ 169.072737][ T4414] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 169.117093][ T5295] ext3: Unknown parameter 'fsmagic' [ 169.153508][ T4347] pegasus: probe of 8-1:0.24 failed with error -32 [ 169.211834][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 169.439508][ T5297] fido_id[5297]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 169.498970][ T5306] loop5: detected capacity change from 0 to 2048 [ 169.527896][ T5306] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 169.547340][ T5306] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 169.560880][ T5308] loop6: detected capacity change from 0 to 1024 [ 169.632014][ T5308] hfsplus: xattr searching failed [ 169.699965][ T5308] hfsplus: catalog searching failed [ 169.905144][ T33] hfsplus: bad catalog file entry [ 169.912532][ T33] hfsplus: b-tree write err: -5, ino 3 [ 170.116067][ T4327] usb 8-1: USB disconnect, device number 2 [ 172.391100][ T5332] loop2: detected capacity change from 0 to 2048 [ 172.443783][ T5332] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 172.482120][ T5332] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 174.985774][ T5332] loop2: detected capacity change from 2048 to 0 [ 175.023703][ C1] I/O error, dev loop2, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 176.009554][ C1] I/O error, dev loop2, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 177.477434][ C1] I/O error, dev loop2, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 177.589899][ T5228] loop: Write error at byte offset 9223372036854841343, length 512. [ 177.612932][ C1] I/O error, dev loop2, sector 128 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 177.622587][ C1] Buffer I/O error on dev loop2, logical block 128, lost sync page write [ 179.276868][ T5368] loop6: detected capacity change from 0 to 256 [ 179.305724][ T4570] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.344538][ T5368] exfat: Unknown parameter '00000000000000000000003' [ 179.617585][ T4570] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.283185][ T4570] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.285084][ T5378] loop6: detected capacity change from 0 to 128 [ 180.360952][ T5378] FAT-fs (loop6): Unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ" or missing value [ 180.516453][ T4570] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.253868][ T5394] loop5: detected capacity change from 0 to 1024 [ 182.283179][ T5394] EXT4-fs: Ignoring removed mblk_io_submit option [ 182.332845][ T5394] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 182.733038][ T5397] loop6: detected capacity change from 0 to 2048 [ 182.746037][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 182.832402][ T5397] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 182.872049][ T5397] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 183.065231][ T5397] loop6: detected capacity change from 2048 to 0 [ 183.089213][ C1] I/O error, dev loop6, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 183.255149][ C1] I/O error, dev loop6, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 183.262157][ T4272] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 183.274253][ T4272] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 183.284056][ C1] I/O error, dev loop6, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 183.284821][ T4272] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 183.347196][ T4272] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 183.354881][ T4272] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 183.363573][ T4272] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 183.459746][ T11] loop: Write error at byte offset 9223372036854841343, length 512. [ 183.524583][ C1] I/O error, dev loop6, sector 128 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 183.534296][ C1] Buffer I/O error on dev loop6, logical block 128, lost sync page write [ 185.461261][ T4274] Bluetooth: hci1: command 0x0409 tx timeout [ 185.592505][ T5422] netlink: 'syz.5.250': attribute type 19 has an invalid length. [ 185.660961][ T5421] input: syz1 as /devices/virtual/input/input5 [ 187.562032][ T4274] Bluetooth: hci1: command 0x041b tx timeout [ 187.806410][ T5410] chnl_net:caif_netlink_parms(): no params data found [ 188.500786][ T4347] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 188.539009][ T5410] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.559240][ T5410] bridge0: port 1(bridge_slave_0) entered disabled state [ 188.581451][ T5410] device bridge_slave_0 entered promiscuous mode [ 188.700996][ T4347] usb 6-1: Using ep0 maxpacket: 32 [ 188.719431][ T4347] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 188.730805][ T4320] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 188.747472][ T4347] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 188.767698][ T4347] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 188.797673][ T4347] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 188.833819][ T5410] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.846391][ T5410] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.857486][ T5410] device bridge_slave_1 entered promiscuous mode [ 188.871704][ T4347] usb 6-1: config 0 descriptor?? [ 188.906638][ T4347] hub 6-1:0.0: USB hub found [ 188.920757][ T4320] usb 8-1: Using ep0 maxpacket: 8 [ 188.929560][ T4320] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 188.937817][ T4274] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 188.961123][ T4284] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 188.970799][ T4284] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 188.979905][ T4284] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 188.988404][ T4284] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 188.997258][ T4284] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 189.036609][ T4320] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 189.052078][ T4320] usb 8-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 189.071621][ T4320] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 189.712061][ T4284] Bluetooth: hci1: command 0x040f tx timeout [ 189.718293][ T4347] hub 6-1:0.0: 1 port detected [ 189.725894][ T4320] usb 8-1: config 0 descriptor?? [ 189.810912][ T4570] device hsr_slave_0 left promiscuous mode [ 189.838247][ T4570] device hsr_slave_1 left promiscuous mode [ 189.857420][ T4570] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 189.876934][ T4570] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 189.927215][ T4570] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 189.939985][ T4570] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 191.359213][ T4284] Bluetooth: hci2: command 0x2016 tx timeout [ 191.366350][ T4284] Bluetooth: hci4: command 0x0409 tx timeout [ 191.407698][ T4570] device bridge_slave_1 left promiscuous mode [ 191.433073][ T4570] bridge0: port 2(bridge_slave_1) entered disabled state [ 191.457094][ T4347] usb 6-1: USB disconnect, device number 2 [ 191.457092][ T4327] usb 8-1: USB disconnect, device number 3 [ 191.517691][ T4570] device bridge_slave_0 left promiscuous mode [ 191.560846][ T4570] bridge0: port 1(bridge_slave_0) entered disabled state [ 191.619256][ T5475] loop5: detected capacity change from 0 to 512 [ 191.644346][ T4570] device veth1_macvtap left promiscuous mode [ 191.661240][ T4570] device veth0_macvtap left promiscuous mode [ 191.671226][ T4570] device veth1_vlan left promiscuous mode [ 191.677093][ T4570] device veth0_vlan left promiscuous mode [ 191.779087][ T5475] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 191.791021][ T4272] Bluetooth: hci1: command 0x0419 tx timeout [ 191.811902][ T5475] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.842992][ T5475] EXT4-fs (loop5): re-mounted. Quota mode: writeback. [ 191.947046][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 193.772052][ T4272] Bluetooth: hci4: command 0x041b tx timeout [ 194.106675][ T5490] loop3: detected capacity change from 0 to 2048 [ 194.137247][ T5490] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 194.175967][ T5490] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 194.189028][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.189117][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.361119][ T5490] loop3: detected capacity change from 2048 to 0 [ 194.387844][ C0] I/O error, dev loop3, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 194.501385][ C0] I/O error, dev loop3, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 194.521625][ C0] I/O error, dev loop3, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 194.601361][ T4413] loop: Write error at byte offset 9223372036854841343, length 512. [ 194.640395][ C1] I/O error, dev loop3, sector 128 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 194.650073][ C1] Buffer I/O error on dev loop3, logical block 128, lost sync page write [ 196.052562][ T4284] Bluetooth: hci4: command 0x040f tx timeout [ 196.604838][ T4570] team0 (unregistering): Port device team_slave_1 removed [ 196.710186][ T4570] team0 (unregistering): Port device team_slave_0 removed [ 196.801327][ T4570] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 196.816419][ T5501] loop7: detected capacity change from 0 to 512 [ 197.095380][ T5501] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 197.283293][ T5501] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 197.302776][ T4570] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 197.385473][ T4906] EXT4-fs (loop7): unmounting filesystem. [ 197.515752][ T5507] loop5: detected capacity change from 0 to 1024 [ 197.888024][ T5511] netlink: 64 bytes leftover after parsing attributes in process `syz.7.269'. [ 198.897728][ T4284] Bluetooth: hci4: command 0x0419 tx timeout [ 199.065434][ T5519] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not security [ 199.086297][ T5519] loop7: detected capacity change from 0 to 1024 [ 199.112506][ T5519] hfsplus: failed to load catalog file [ 199.460299][ T4570] bond0 (unregistering): Released all slaves [ 200.148167][ T5410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 200.205978][ T5410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 200.296064][ T5410] team0: Port device team_slave_0 added [ 200.320137][ T5410] team0: Port device team_slave_1 added [ 200.511351][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 200.518356][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 200.562905][ T5410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 200.657468][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 200.667234][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 200.693900][ T5410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 200.806870][ T5410] device hsr_slave_0 entered promiscuous mode [ 200.866029][ T5410] device hsr_slave_1 entered promiscuous mode [ 200.890839][ T5410] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 200.908255][ T5410] Cannot create hsr debugfs directory [ 200.917918][ T5453] chnl_net:caif_netlink_parms(): no params data found [ 201.085751][ T27] audit: type=1326 audit(1764389983.637:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 201.164688][ T5540] loop5: detected capacity change from 0 to 1024 [ 201.227230][ T27] audit: type=1326 audit(1764389983.667:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 201.249582][ T27] audit: type=1326 audit(1764389983.667:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9d62d8f783 code=0x7ffc0000 [ 201.281051][ T27] audit: type=1326 audit(1764389983.677:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9d62d8e1ff code=0x7ffc0000 [ 201.320825][ T27] audit: type=1326 audit(1764389983.717:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f9d62d8f7d7 code=0x7ffc0000 [ 201.344687][ T27] audit: type=1326 audit(1764389983.717:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9d62d8df90 code=0x7ffc0000 [ 201.373264][ T27] audit: type=1326 audit(1764389983.717:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d62d8f34b code=0x7ffc0000 [ 201.420960][ T27] audit: type=1326 audit(1764389983.847:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d62d8e3aa code=0x7ffc0000 [ 201.422100][ T5453] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.452346][ T27] audit: type=1326 audit(1764389983.847:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9d62d8e3aa code=0x7ffc0000 [ 201.482953][ T5540] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 201.489010][ T27] audit: type=1326 audit(1764389983.847:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5538 comm="syz.5.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f9d62d8de97 code=0x7ffc0000 [ 201.514563][ T5453] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.543696][ T5453] device bridge_slave_0 entered promiscuous mode [ 201.626580][ T5453] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.637830][ T5453] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.671973][ T5453] device bridge_slave_1 entered promiscuous mode [ 201.704843][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 203.363575][ T5453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 203.951566][ T4272] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 203.963208][ T4272] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 203.975008][ T4272] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 203.989385][ T4272] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 203.997666][ T4272] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 204.005025][ T4272] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 204.136143][ T5572] loop5: detected capacity change from 0 to 256 [ 204.140794][ T4570] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.152014][ T5572] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 204.204833][ T5453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 204.302007][ T4570] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.458002][ T4570] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.488828][ T5453] team0: Port device team_slave_0 added [ 204.606012][ T4570] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.666342][ T5453] team0: Port device team_slave_1 added [ 204.710031][ T5410] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 204.889550][ T5453] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 204.920631][ T5453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.980680][ T5453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 205.010109][ T5410] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 205.070743][ T5453] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 205.079306][ T5453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 205.138820][ T5453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 205.203201][ T5410] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 205.264217][ T5410] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 206.992800][ T4284] Bluetooth: hci3: command 0x0409 tx timeout [ 208.575176][ T4570] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.636418][ T5453] device hsr_slave_0 entered promiscuous mode [ 208.651859][ T5453] device hsr_slave_1 entered promiscuous mode [ 208.690990][ T5453] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 208.698705][ T5453] Cannot create hsr debugfs directory [ 208.845652][ T4570] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.903613][ T5569] chnl_net:caif_netlink_parms(): no params data found [ 209.007824][ T5613] loop5: detected capacity change from 0 to 512 [ 209.055042][ T4570] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 209.070684][ T4274] Bluetooth: hci3: command 0x041b tx timeout [ 209.167037][ T5613] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 209.185714][ T5613] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.261250][ T5613] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 209.283699][ T4570] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 209.331594][ T5613] EXT4-fs error (device loop5): __ext4_remount:6618: comm syz.5.292: Abort forced by user [ 209.376852][ T5613] EXT4-fs (loop5): re-mounted. Quota mode: writeback. [ 209.422698][ T5410] 8021q: adding VLAN 0 to HW filter on device bond0 [ 209.488793][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 209.565152][ T5410] 8021q: adding VLAN 0 to HW filter on device team0 [ 209.656767][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 209.671551][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 209.704582][ T5569] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.712998][ T5569] bridge0: port 1(bridge_slave_0) entered disabled state [ 211.140651][ T4274] Bluetooth: hci3: command 0x040f tx timeout [ 211.170516][ T5626] loop5: detected capacity change from 0 to 128 [ 211.177725][ T5569] device bridge_slave_0 entered promiscuous mode [ 211.195738][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 211.212564][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 211.230228][ T5186] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.237521][ T5186] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.245827][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 211.255726][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 211.265551][ T5186] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.272764][ T5186] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.289833][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 211.291737][ T5626] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 211.366193][ T5626] ext4 filesystem being mounted at /42/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 211.398424][ T5569] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.410861][ T5569] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.419920][ T5569] device bridge_slave_1 entered promiscuous mode [ 211.704520][ T5569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 211.852977][ T5635] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 211.872854][ T5635] EXT4-fs (loop5): re-mounted. Quota mode: none. [ 212.239913][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 212.258242][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 212.296450][ T5569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 212.469404][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 212.516898][ T5410] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 212.560839][ T5410] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 212.611403][ T5453] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 212.644075][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 212.667033][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 212.710984][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 212.741753][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 212.778866][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 212.807544][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 212.844231][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 212.856777][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 213.106298][ T5569] team0: Port device team_slave_0 added [ 213.119566][ T5569] team0: Port device team_slave_1 added [ 213.137604][ T5653] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 213.158398][ T5453] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 213.170243][ T5453] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 213.188438][ T5453] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 213.200333][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 213.221122][ T4274] Bluetooth: hci3: command 0x0419 tx timeout [ 213.270073][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 216.361853][ T5672] netlink: 64 bytes leftover after parsing attributes in process `syz.5.296'. [ 217.321226][ T5453] 8021q: adding VLAN 0 to HW filter on device bond0 [ 217.388511][ T5453] 8021q: adding VLAN 0 to HW filter on device team0 [ 217.398906][ T5569] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 217.440815][ T5569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 217.478053][ T5569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 217.501015][ T5569] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 217.508020][ T5569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 217.578663][ T5569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 217.608191][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 217.621488][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 217.772261][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 217.783306][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 217.797322][ T4412] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.804629][ T4412] bridge0: port 1(bridge_slave_0) entered forwarding state [ 217.831770][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 217.851227][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 217.870330][ T4412] bridge0: port 2(bridge_slave_1) entered blocking state [ 217.877563][ T4412] bridge0: port 2(bridge_slave_1) entered forwarding state [ 217.901255][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 217.920536][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 217.967532][ T5410] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 218.064207][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 218.081859][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 218.132905][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 218.151710][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 218.170920][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 219.684161][ T5569] device hsr_slave_0 entered promiscuous mode [ 219.714848][ T5569] device hsr_slave_1 entered promiscuous mode [ 219.726006][ T5569] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 219.740969][ T5569] Cannot create hsr debugfs directory [ 219.803005][ T5687] loop5: detected capacity change from 0 to 128 [ 219.807009][ T5453] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 219.871624][ T5453] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 219.912116][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 219.931546][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 219.954491][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 220.000350][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 220.034359][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 220.043455][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 220.052889][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 220.067445][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 222.644304][ T5703] loop7: detected capacity change from 0 to 512 [ 222.677728][ T5703] EXT4-fs: Ignoring removed oldalloc option [ 222.722878][ T5703] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 222.894966][ T5703] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 222.971323][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 222.978897][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 223.011082][ T5703] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.299: bg 0: block 248: padding at end of block bitmap is not set [ 223.048177][ T5703] __quota_error: 9 callbacks suppressed [ 223.048190][ T5703] Quota error (device loop7): write_blk: dquota write failed [ 223.088665][ T5703] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota [ 223.131212][ T5703] EXT4-fs error (device loop7): ext4_acquire_dquot:6809: comm syz.7.299: Failed to acquire dquot type 1 [ 223.187040][ T5703] EXT4-fs (loop7): 1 truncate cleaned up [ 223.210363][ T5703] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 223.367538][ T5453] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 223.423435][ T4906] EXT4-fs (loop7): unmounting filesystem. [ 223.427730][ T5719] loop5: detected capacity change from 0 to 512 [ 223.471402][ T5719] EXT4-fs: Ignoring removed i_version option [ 223.663391][ T5719] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 223.692977][ T5719] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 223.803060][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 223.814403][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 223.860286][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 224.276848][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 224.288126][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 224.308100][ T5410] device veth0_vlan entered promiscuous mode [ 224.320389][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 224.338737][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 224.547423][ T5410] device veth1_vlan entered promiscuous mode [ 224.618544][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 224.626976][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 224.638991][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 224.648980][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 224.731170][ T4570] device hsr_slave_0 left promiscuous mode [ 224.737871][ T4570] device hsr_slave_1 left promiscuous mode [ 224.746369][ T4570] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 224.754121][ T4570] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.762600][ T4570] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 224.770109][ T4570] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 224.778252][ T4570] device bridge_slave_1 left promiscuous mode [ 224.784692][ T4570] bridge0: port 2(bridge_slave_1) entered disabled state [ 224.793290][ T4570] device bridge_slave_0 left promiscuous mode [ 224.799615][ T4570] bridge0: port 1(bridge_slave_0) entered disabled state [ 224.814204][ T4570] device hsr_slave_0 left promiscuous mode [ 224.820841][ T4570] device hsr_slave_1 left promiscuous mode [ 224.827477][ T4570] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 224.835559][ T4570] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.844986][ T4570] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 224.852999][ T4570] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 224.863721][ T4570] device bridge_slave_1 left promiscuous mode [ 224.869961][ T4570] bridge0: port 2(bridge_slave_1) entered disabled state [ 224.878499][ T4570] device bridge_slave_0 left promiscuous mode [ 224.885496][ T4570] bridge0: port 1(bridge_slave_0) entered disabled state [ 224.929194][ T4570] device veth1_macvtap left promiscuous mode [ 224.936042][ T4570] device veth0_macvtap left promiscuous mode [ 224.942541][ T4570] device veth1_vlan left promiscuous mode [ 224.948437][ T4570] device veth0_vlan left promiscuous mode [ 224.956447][ T4570] device veth1_macvtap left promiscuous mode [ 224.962644][ T4570] device veth0_macvtap left promiscuous mode [ 224.968893][ T4570] device veth1_vlan left promiscuous mode [ 224.976201][ T4570] device veth0_vlan left promiscuous mode [ 225.614428][ T4570] team0 (unregistering): Port device team_slave_1 removed [ 225.668575][ T4570] team0 (unregistering): Port device team_slave_0 removed [ 225.716904][ T4570] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 225.763833][ T4570] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 227.507393][ T4274] Bluetooth: hci2: command 0x0406 tx timeout [ 227.937567][ T4570] bond0 (unregistering): Released all slaves [ 228.628886][ T5757] loop5: detected capacity change from 0 to 2048 [ 228.670476][ T4570] team0 (unregistering): Port device team_slave_1 removed [ 228.727252][ T4570] team0 (unregistering): Port device team_slave_0 removed [ 228.788714][ T4570] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 228.835612][ T4570] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 229.863229][ T4570] bond0 (unregistering): Released all slaves [ 229.945868][ T5453] device veth0_vlan entered promiscuous mode [ 229.957455][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 229.967898][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 229.976648][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 229.985854][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 229.996913][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 230.006631][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 230.018326][ T5765] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 230.063909][ T5410] device veth0_macvtap entered promiscuous mode [ 230.132072][ T5453] device veth1_vlan entered promiscuous mode [ 230.149213][ T5410] device veth1_macvtap entered promiscuous mode [ 230.222437][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 231.657121][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 231.686831][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 231.705492][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 231.719475][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 231.744569][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 231.761530][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 231.778047][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 231.809102][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 231.820625][ T4414] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 231.829093][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 231.840074][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 231.858082][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 231.869915][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 231.886358][ T5410] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.895889][ T5410] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.905216][ T5410] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.919513][ T5410] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.948025][ T5453] device veth0_macvtap entered promiscuous mode [ 231.968114][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 231.979347][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 231.997104][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 232.017313][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 232.025844][ T4414] usb 8-1: Using ep0 maxpacket: 16 [ 232.037480][ T4414] usb 8-1: config 0 has an invalid interface number: 29 but max is 0 [ 232.048553][ T4414] usb 8-1: config 0 has no interface number 0 [ 232.060091][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 232.075270][ T4414] usb 8-1: config 0 interface 29 altsetting 0 bulk endpoint 0xA has invalid maxpacket 16 [ 232.088355][ T4414] usb 8-1: config 0 interface 29 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024 [ 232.094591][ T5569] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 232.118837][ T4414] usb 8-1: config 0 interface 29 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 232.147811][ T4414] usb 8-1: New USB device found, idVendor=050d, idProduct=2102, bcdDevice=70.d0 [ 232.177909][ T5453] device veth1_macvtap entered promiscuous mode [ 232.197654][ T4414] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 232.232104][ T4414] usb 8-1: Product: syz [ 232.236336][ T4414] usb 8-1: Manufacturer: syz [ 232.239478][ T5569] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 232.250814][ T4414] usb 8-1: SerialNumber: syz [ 232.257764][ T4414] usb 8-1: config 0 descriptor?? [ 232.271687][ T5768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22 [ 232.279453][ T5768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22 [ 232.293954][ T5569] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 232.383546][ T5569] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 232.406379][ T5453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 232.427907][ T5453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.442741][ T5453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 232.453608][ T5453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.465285][ T5453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 232.476482][ T5453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.488301][ T5453] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.521181][ T5768] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 232.537823][ T5768] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 232.550454][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 232.564325][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 232.583182][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 232.658344][ T14] usb 8-1: USB disconnect, device number 4 [ 232.669614][ T5453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 232.694022][ T5453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.706011][ T5453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 232.717036][ T5453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.727396][ T5453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 232.737928][ T5453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 232.749751][ T5453] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.775652][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 232.785152][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 232.818679][ T5453] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.838150][ T5453] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.847529][ T5453] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.856411][ T5453] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.889510][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.910379][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.957880][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 233.015245][ T5569] 8021q: adding VLAN 0 to HW filter on device bond0 [ 233.036761][ T5000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.045924][ T5000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.060053][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 233.076711][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 233.090228][ T5569] 8021q: adding VLAN 0 to HW filter on device team0 [ 233.104729][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 233.119573][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.137103][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.153837][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 233.176231][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 233.186086][ T4687] bridge0: port 1(bridge_slave_0) entered blocking state [ 233.193287][ T4687] bridge0: port 1(bridge_slave_0) entered forwarding state [ 233.209037][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 233.217691][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 233.262758][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 233.285993][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 233.337133][ T4687] bridge0: port 2(bridge_slave_1) entered blocking state [ 233.344332][ T4687] bridge0: port 2(bridge_slave_1) entered forwarding state [ 233.357598][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 233.392892][ T4402] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.413652][ T5000] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 233.425394][ T4402] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.456301][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 233.558833][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 233.768175][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 233.879194][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 233.889372][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 233.974309][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 234.023225][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 234.069083][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 234.146639][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 234.181574][ T5186] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 234.523202][ T5798] loop9: detected capacity change from 0 to 256 [ 234.567967][ T5798] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 234.644443][ T5801] loop7: detected capacity change from 0 to 128 [ 234.705496][ T5801] FAT-fs (loop7): invalid media value (0x00) [ 234.735294][ T5801] FAT-fs (loop7): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 234.786002][ T5801] FAT-fs (loop7): Can't find a valid FAT filesystem [ 234.794964][ T5804] loop8: detected capacity change from 0 to 128 [ 234.833777][ T5804] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 234.944125][ T5804] FAT-fs (loop8): FAT read failed (blocknr 4128) [ 237.575375][ T5818] loop9: detected capacity change from 0 to 256 [ 237.806608][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 237.828690][ T4402] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 237.868384][ T5569] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 240.292403][ T5801] loop7: detected capacity change from 0 to 128 [ 240.832607][ T5835] loop9: detected capacity change from 0 to 764 [ 240.869800][ T5835] rock: directory entry would overflow storage [ 240.900296][ T5835] rock: sig=0x4654, size=5, remaining=4 [ 241.648518][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 241.680482][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 241.746857][ T5569] device veth0_vlan entered promiscuous mode [ 241.759486][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 241.776881][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 241.806219][ T5569] device veth1_vlan entered promiscuous mode [ 241.821550][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 241.833519][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 241.852462][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 241.923322][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 241.942570][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 241.961986][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 241.984363][ T5569] device veth0_macvtap entered promiscuous mode [ 242.006771][ T5569] device veth1_macvtap entered promiscuous mode [ 242.099635][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.143832][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.153790][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.165659][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.185672][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.199939][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.241551][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 242.371560][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.508452][ T5569] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.725288][ T5705] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 242.851137][ T5705] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 242.892516][ T5705] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 242.930630][ T5705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 242.943785][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 242.977925][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 242.999084][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.020965][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.037851][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.059533][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.072952][ T5569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 243.084785][ T5569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.096703][ T5569] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 243.117182][ T5874] Driver unsupported XDP return value 0 on prog (id 36) dev N/A, expect packet loss! [ 243.131416][ T5228] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 243.148568][ T5228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 243.176938][ T5569] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.218025][ T5569] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.245765][ T5569] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.254890][ T5569] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.268161][ T5878] loop7: detected capacity change from 0 to 512 [ 243.341217][ T5878] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 243.481603][ T5878] EXT4-fs error (device loop7): ext4_orphan_get:1400: inode #15: comm syz.7.338: inode has both inline data and extents flags [ 243.601463][ T5878] EXT4-fs error (device loop7): ext4_orphan_get:1405: comm syz.7.338: couldn't read orphan inode 15 (err -117) [ 243.668263][ T5878] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 244.110775][ T5892] loop8: detected capacity change from 0 to 16 [ 244.141934][ T5892] erofs: (device loop8): mounted with root inode @ nid 36. [ 244.183536][ T4687] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.241401][ T4687] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.284827][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 244.301992][ T4906] EXT4-fs (loop7): unmounting filesystem. [ 244.367199][ T4570] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.385000][ T4570] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.418596][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 244.462963][ T5898] netlink: 'syz.7.342': attribute type 12 has an invalid length. [ 248.862630][ T5934] loop4: detected capacity change from 0 to 512 [ 249.735515][ T5934] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 249.746895][ T5934] EXT4-fs (loop4): Test dummy encryption mode enabled [ 249.770146][ T5933] loop5: detected capacity change from 0 to 512 [ 249.777634][ T5934] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.348: iget: bad i_size value: -3674898675588399094 [ 249.792128][ T5934] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.348: couldn't read orphan inode 15 (err -117) [ 249.804706][ T5934] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 249.904142][ T5569] EXT4-fs (loop4): unmounting filesystem. [ 250.002534][ T5933] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 250.094414][ T5933] EXT4-fs (loop5): orphan cleanup on readonly fs [ 250.121026][ T5933] EXT4-fs error (device loop5): ext4_orphan_get:1426: comm syz.5.349: bad orphan inode 15 [ 250.219729][ T5933] ext4_test_bit(bit=14, block=18) = 1 [ 250.225799][ T5933] is_bad_inode(inode)=0 [ 250.244228][ T5933] NEXT_ORPHAN(inode)=1023 [ 250.256092][ T5933] max_ino=32 [ 250.266218][ T5933] i_nlink=0 [ 250.285900][ T5933] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2935: inode #15: comm syz.5.349: corrupted xattr block 19 [ 250.350858][ T5933] EXT4-fs warning (device loop5): ext4_evict_inode:299: xattr delete (err -117) [ 250.549122][ T5933] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 251.330306][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 251.415479][ T5957] loop7: detected capacity change from 0 to 2048 [ 251.534186][ T5957] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 251.638658][ T5959] loop8: detected capacity change from 0 to 256 [ 252.160427][ T5970] loop4: detected capacity change from 0 to 256 [ 252.229278][ T5970] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d) [ 252.396233][ T5974] capability: warning: `syz.5.360' uses deprecated v2 capabilities in a way that may be insecure [ 255.624593][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.631130][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.658987][ T6008] loop9: detected capacity change from 0 to 16 [ 257.170687][ T6008] erofs: (device loop9): EXPERIMENTAL compressed fragments feature in use. Use at your own risk! [ 257.203134][ T6014] __vm_enough_memory: pid: 6014, comm: syz.7.370, no enough memory for the allocation [ 257.256505][ T27] audit: type=1326 audit(1764390039.807:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 257.278879][ T6008] erofs: (device loop9): EXPERIMENTAL global deduplication feature in use. Use at your own risk! [ 257.301503][ T6016] loop5: detected capacity change from 0 to 128 [ 257.351004][ T6008] erofs: (device loop9): mounted with root inode @ nid 36. [ 257.394175][ T27] audit: type=1326 audit(1764390039.807:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 257.436016][ T6016] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 1) [ 257.486722][ T6016] FAT-fs (loop5): Filesystem has been set read-only [ 257.495138][ T27] audit: type=1326 audit(1764390039.807:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 257.603546][ T27] audit: type=1326 audit(1764390039.807:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 257.648589][ T6016] loop5: detected capacity change from 0 to 512 [ 257.749078][ T27] audit: type=1326 audit(1764390039.847:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 257.812213][ T27] audit: type=1326 audit(1764390039.847:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 259.210883][ T27] audit: type=1326 audit(1764390039.847:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 259.234215][ T6016] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 259.254444][ T6016] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 259.270635][ T14] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 260.102989][ T27] audit: type=1326 audit(1764390039.847:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 260.128087][ T27] audit: type=1326 audit(1764390039.847:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 260.164311][ T14] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 260.179019][ T27] audit: type=1326 audit(1764390039.847:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6015 comm="syz.5.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9d62d8f749 code=0x7ffc0000 [ 260.213715][ T14] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 260.231008][ T14] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 260.239145][ T14] usb 8-1: Product: syz [ 260.250770][ T14] usb 8-1: Manufacturer: syz [ 260.288791][ T14] usb 8-1: SerialNumber: syz [ 260.389883][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 260.850899][ T4377] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 261.052445][ T4377] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16 [ 261.072932][ T4377] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 261.116170][ T4377] usb 6-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32 [ 261.141587][ T4377] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.174365][ T4377] usb 6-1: Product: syz [ 261.178787][ T4377] usb 6-1: Manufacturer: syz [ 261.200671][ T4377] usb 6-1: SerialNumber: syz [ 261.231268][ T4377] usb 6-1: config 0 descriptor?? [ 261.248736][ T6041] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 261.261166][ T6041] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 261.351435][ T14] cdc_ncm 8-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 261.357946][ T14] cdc_ncm 8-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 261.371807][ T14] cdc_ncm 8-1:1.0: setting rx_max = 2048 [ 261.499933][ T6041] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 261.530902][ T6041] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 261.555646][ T14] cdc_ncm 8-1:1.0: setting tx_max = 184 [ 261.593062][ T14] cdc_ncm 8-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.7-1, CDC NCM (NO ZLP), 42:42:42:42:42:42 [ 261.595855][ T6061] loop4: detected capacity change from 0 to 1024 [ 261.634501][ T6061] hfsplus: extend alloc file! (8192,8,110) [ 261.715898][ T14] usb 8-1: USB disconnect, device number 5 [ 261.728655][ T14] cdc_ncm 8-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.7-1, CDC NCM (NO ZLP) [ 261.966474][ T6068] loop9: detected capacity change from 0 to 1024 [ 261.984146][ T6068] EXT4-fs warning (device loop9): read_mmp_block:115: Error -117 while reading MMP block 64 [ 262.260266][ T6076] loop8: detected capacity change from 0 to 512 [ 262.279191][ T6076] EXT4-fs: Mount option(s) incompatible with ext2 [ 262.286721][ T954] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 263.640647][ T27] kauditd_printk_skb: 80 callbacks suppressed [ 263.640665][ T27] audit: type=1326 audit(1764390045.147:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.8.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 263.750852][ T954] usb 10-1: Using ep0 maxpacket: 32 [ 263.756836][ T27] audit: type=1326 audit(1764390045.147:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.8.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 263.758823][ T954] usb 10-1: config 0 has an invalid interface number: 2 but max is 0 [ 263.828438][ T4377] dm9601 6-1:0.0 (unnamed net_device) (uninitialized): Error reading MODE_CTRL [ 263.895365][ T4377] usb 6-1: USB disconnect, device number 3 [ 263.917592][ T27] audit: type=1326 audit(1764390045.147:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.8.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 263.969961][ T954] usb 10-1: config 0 has no interface number 0 [ 263.995779][ T954] usb 10-1: config 0 interface 2 altsetting 2 endpoint 0x82 has invalid maxpacket 49455, setting to 1024 [ 264.262281][ T954] usb 10-1: config 0 interface 2 has no altsetting 0 [ 264.292196][ T954] usb 10-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f [ 264.310647][ T954] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 264.318791][ T954] usb 10-1: Product: syz [ 264.345592][ T954] usb 10-1: Manufacturer: syz [ 264.350472][ T954] usb 10-1: SerialNumber: syz [ 264.357439][ T27] audit: type=1326 audit(1764390045.147:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.8.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 265.879695][ T954] usb 10-1: config 0 descriptor?? [ 265.912543][ T954] usb 10-1: can't set config #0, error -71 [ 265.951078][ T954] usb 10-1: USB disconnect, device number 2 [ 266.580854][ T27] audit: type=1326 audit(1764390045.147:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.8.384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 268.298324][ T6111] loop9: detected capacity change from 0 to 256 [ 268.421810][ T6111] FAT-fs (loop9): Directory bread(block 1285) failed [ 268.783332][ T6117] loop5: detected capacity change from 0 to 16 [ 268.893901][ T6117] erofs: (device loop5): mounted with root inode @ nid 36. [ 268.956903][ T6119] loop9: detected capacity change from 0 to 2048 [ 269.101552][ T6119] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none. [ 269.211009][ T6119] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 269.253714][ T6119] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 28 [ 269.310435][ T6119] EXT4-fs (loop9): This should not happen!! Data will be lost [ 269.310435][ T6119] [ 269.398010][ T6119] EXT4-fs (loop9): Total free blocks count 0 [ 269.447517][ T6124] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 270.397715][ T6119] EXT4-fs (loop9): Free/Dirty block details [ 270.407741][ T6124] EXT4-fs (loop9): This should not happen!! Data will be lost [ 270.407741][ T6124] [ 270.627033][ T6124] EXT4-fs (loop9): Total free blocks count 0 [ 270.744065][ T6124] EXT4-fs (loop9): Free/Dirty block details [ 270.750066][ T6124] EXT4-fs (loop9): free_blocks=2415919104 [ 275.604235][ T6173] binder: 6170:6173 unknown command 0 [ 276.302985][ T6175] binder: 6170:6175 ioctl c0306201 2000000003c0 returned -14 [ 276.627947][ T6173] binder: 6170:6173 ioctl c0306201 200000000080 returned -22 [ 280.325035][ T6194] loop7: detected capacity change from 0 to 1024 [ 281.782668][ T6194] EXT4-fs warning (device loop7): read_mmp_block:115: Error -117 while reading MMP block 64 [ 282.280441][ T4274] Bluetooth: hci3: Invalid handle: 0x3165 > 0x0eff [ 282.391335][ T6206] loop7: detected capacity change from 0 to 512 [ 282.457126][ T6206] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 282.466595][ T6206] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 282.479840][ T6206] EXT4-fs (loop7): unmounting filesystem. [ 283.142000][ T6221] loop5: detected capacity change from 0 to 512 [ 284.187419][ T6221] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 284.199372][ T6221] EXT4-fs (loop5): Test dummy encryption mode enabled [ 284.252326][ T6221] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.415: iget: bad i_size value: -3674898675588399094 [ 284.266117][ T6221] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.415: couldn't read orphan inode 15 (err -117) [ 284.278536][ T6221] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 284.385612][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 286.365887][ T6242] netlink: 16 bytes leftover after parsing attributes in process `syz.7.426'. [ 288.910714][ T7] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 289.130986][ T7] usb 8-1: Using ep0 maxpacket: 8 [ 289.142977][ T7] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 289.187303][ T7] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 290.615158][ T7] usb 8-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 290.624358][ T7] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 290.636912][ T7] usb 8-1: config 0 descriptor?? [ 291.141959][ T6270] loop9: detected capacity change from 0 to 1024 [ 291.149318][ T6270] EXT4-fs: Ignoring removed nobh option [ 291.217591][ T6270] EXT4-fs: Ignoring removed bh option [ 291.260713][ T6270] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 291.274005][ T6251] loop7: detected capacity change from 0 to 32768 [ 291.288527][ T6274] loop5: detected capacity change from 0 to 1024 [ 291.354903][ T6251] loop7: p1 p2 p3 < > p4 < p5 p6 > [ 291.365732][ T6251] loop7: p1 start 460800 is beyond EOD, truncated [ 291.378275][ T6270] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 291.388636][ T6251] loop7: p2 size 83886080 extends beyond EOD, truncated [ 291.460066][ T6251] loop7: p5 start 460800 is beyond EOD, truncated [ 291.468683][ T6251] loop7: p6 size 83886080 extends beyond EOD, truncated [ 291.499268][ T6270] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:3836: comm syz.9.432: Allocating blocks 417-513 which overlap fs metadata [ 291.515745][ T4320] usb 8-1: USB disconnect, device number 6 [ 291.526323][ T27] audit: type=1800 audit(1764390074.077:508): pid=6274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.433" name="file1" dev="loop5" ino=20 res=0 errno=0 [ 291.649024][ T6270] EXT4-fs (loop9): pa ffff88807435b1c0: logic 80, phys. 209, len 19 [ 291.657543][ T6270] EXT4-fs error (device loop9): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 6 [ 291.833756][ T5453] EXT4-fs (loop9): unmounting filesystem. [ 294.553568][ T5717] udevd[5717]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory [ 294.553746][ T6284] udevd[6284]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory [ 294.569186][ T6311] loop7: detected capacity change from 0 to 512 [ 294.577700][ T5973] udevd[5973]: inotify_add_watch(7, /dev/loop7p6, 10) failed: No such file or directory [ 294.608246][ T5893] udevd[5893]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory [ 294.629214][ T6309] loop4: detected capacity change from 0 to 1024 [ 294.848644][ T6309] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 294.877711][ T6309] hfsplus: xattr searching failed [ 295.177158][ T6311] EXT4-fs: Ignoring removed bh option [ 295.601798][ T6311] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 295.720655][ T6311] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 295.791618][ T6311] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended [ 295.811168][ T6311] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 295.855321][ T6311] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none. [ 296.070078][ T6313] loop9: detected capacity change from 0 to 8192 [ 296.127715][ T4906] EXT4-fs (loop7): unmounting filesystem. [ 296.804119][ T6313] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 301.952574][ T6362] loop8: detected capacity change from 0 to 128 [ 302.059848][ T6362] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 302.078550][ T6362] FAT-fs (loop8): Filesystem has been set read-only [ 302.121081][ T6362] syz.8.453: attempt to access beyond end of device [ 302.121081][ T6362] loop8: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 302.218272][ T6362] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 302.291159][ T6362] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 302.321348][ T6362] syz.8.453: attempt to access beyond end of device [ 302.321348][ T6362] loop8: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 302.408423][ T6366] Bluetooth: MGMT ver 1.22 [ 302.499850][ T27] audit: type=1800 audit(1764390085.047:509): pid=6362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.453" name="file2" dev="loop8" ino=1048636 res=0 errno=0 [ 302.618455][ T6366] process 'syz.9.452' launched './file0' with NULL argv: empty string added [ 306.316276][ T6394] loop5: detected capacity change from 0 to 256 [ 307.808061][ T27] audit: type=1326 audit(1764390090.357:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 307.837935][ T6399] loop7: detected capacity change from 0 to 128 [ 308.018743][ T6399] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 1) [ 308.187827][ T6399] FAT-fs (loop7): Filesystem has been set read-only [ 308.282991][ T27] audit: type=1326 audit(1764390090.387:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 308.432238][ T6399] loop7: detected capacity change from 0 to 512 [ 308.470339][ T27] audit: type=1326 audit(1764390090.387:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 308.611419][ T6399] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 308.620896][ T27] audit: type=1326 audit(1764390090.387:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 308.680168][ T6399] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.808858][ T27] audit: type=1326 audit(1764390090.387:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 308.925601][ T27] audit: type=1326 audit(1764390090.387:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 309.080678][ T27] audit: type=1326 audit(1764390090.387:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 309.160592][ T27] audit: type=1326 audit(1764390090.387:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 309.831960][ T27] audit: type=1326 audit(1764390090.387:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 309.870969][ T4284] Bluetooth: hci1: command 0x0406 tx timeout [ 310.047236][ T27] audit: type=1326 audit(1764390090.387:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.7.448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7efeb8f8f749 code=0x7ffc0000 [ 310.080319][ T6419] syz.4.465 (6419): /proc/6417/oom_adj is deprecated, please use /proc/6417/oom_score_adj instead. [ 310.350933][ T4906] EXT4-fs (loop7): unmounting filesystem. [ 310.578082][ T6429] loop7: detected capacity change from 0 to 164 [ 312.907383][ T6446] loop8: detected capacity change from 0 to 1024 [ 313.493043][ T6446] hfsplus: extend alloc file! (8192,8,110) [ 314.194376][ T6453] loop8: detected capacity change from 0 to 256 [ 314.236758][ T6452] loop7: detected capacity change from 0 to 128 [ 314.261093][ T4274] Bluetooth: hci4: command 0x0406 tx timeout [ 317.866816][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.873218][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.540779][ T4377] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 318.740898][ T4377] usb 8-1: Using ep0 maxpacket: 32 [ 318.751349][ T4377] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 318.814372][ T4377] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 318.851585][ T4377] usb 8-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 318.895148][ T4377] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 318.952186][ T4377] usb 8-1: config 0 descriptor?? [ 318.999590][ T4377] hub 8-1:0.0: USB hub found [ 319.184255][ T4377] hub 8-1:0.0: config failed, can't read hub descriptor (err -22) [ 319.490426][ T4377] hid-generic 0003:046D:C31C.0002: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.7-1/input0 [ 319.621708][ T4377] usb 8-1: USB disconnect, device number 7 [ 319.933795][ T6486] fido_id[6486]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory [ 320.056376][ T6491] loop5: detected capacity change from 0 to 512 [ 320.180899][ T6491] EXT4-fs: Ignoring removed oldalloc option [ 320.189001][ T27] kauditd_printk_skb: 61 callbacks suppressed [ 320.189016][ T27] audit: type=1326 audit(1764390102.737:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 320.267287][ T6493] loop8: detected capacity change from 0 to 128 [ 320.340154][ T27] audit: type=1326 audit(1764390102.777:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 320.376399][ T6493] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 1) [ 320.395236][ T6493] FAT-fs (loop8): Filesystem has been set read-only [ 320.590952][ T27] audit: type=1326 audit(1764390102.817:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 320.611031][ T6491] EXT4-fs (loop5): 1 truncate cleaned up [ 320.734157][ T27] audit: type=1326 audit(1764390102.817:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 320.782959][ T6491] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 322.288239][ T27] audit: type=1326 audit(1764390102.817:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 323.137991][ T27] audit: type=1326 audit(1764390102.817:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 323.168475][ T4591] EXT4-fs (loop5): unmounting filesystem. [ 323.288717][ T27] audit: type=1326 audit(1764390102.817:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 323.435619][ T27] audit: type=1326 audit(1764390102.817:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 323.516066][ T27] audit: type=1326 audit(1764390102.817:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 324.192839][ T27] audit: type=1326 audit(1764390102.817:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.8.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 324.306477][ T6518] loop7: detected capacity change from 0 to 512 [ 324.313752][ T6518] journal_path: Lookup failure for './bus' [ 324.319582][ T6518] EXT4-fs: error: could not find journal device path [ 324.500621][ T5893] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 324.850313][ T6533] loop7: detected capacity change from 0 to 1024 [ 324.861451][ T5893] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 324.928827][ T5893] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 324.953080][ T6533] EXT4-fs: Ignoring removed bh option [ 324.979216][ T5893] Buffer I/O error on dev loop7, logical block 0, async page read [ 325.007747][ T6533] EXT4-fs: Ignoring removed nobh option [ 325.029877][ T6533] EXT4-fs: Ignoring removed bh option [ 325.057842][ T6533] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 325.295119][ T6533] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 327.767632][ T6551] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:3836: comm syz.7.489: Allocating blocks 497-513 which overlap fs metadata [ 327.785852][ T6551] EXT4-fs (loop7): pa ffff8880742d78c0: logic 256, phys. 385, len 8 [ 327.793977][ T6551] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1 [ 329.507767][ T4906] EXT4-fs (loop7): unmounting filesystem. [ 329.780667][ T4274] Bluetooth: hci3: command 0x0406 tx timeout [ 329.851757][ T6568] [ 329.854141][ T6568] ====================================================== [ 329.861166][ T6568] WARNING: possible circular locking dependency detected [ 329.868203][ T6568] syzkaller #0 Not tainted [ 329.872620][ T6568] ------------------------------------------------------ [ 329.879676][ T6568] syz.7.494/6568 is trying to acquire lock: [ 329.885576][ T6568] ffff888078c353d8 (&mm->mmap_lock){++++}-{3:3}, at: mmap_read_lock_killable+0x1d/0x60 [ 329.895258][ T6568] [ 329.895258][ T6568] but task is already holding lock: [ 329.902647][ T6568] ffff88805bf31580 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: generic_file_write_iter+0x7f/0x2e0 [ 329.913563][ T6568] [ 329.913563][ T6568] which lock already depends on the new lock. [ 329.913563][ T6568] [ 329.923972][ T6568] [ 329.923972][ T6568] the existing dependency chain (in reverse order) is: [ 329.932985][ T6568] [ 329.932985][ T6568] -> #1 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}: [ 329.941688][ T6568] down_write+0x36/0x60 [ 329.946396][ T6568] process_measurement+0x33c/0x1a10 [ 329.952139][ T6568] ima_file_mmap+0x104/0x150 [ 329.957261][ T6568] __se_sys_remap_file_pages+0x53e/0x770 [ 329.963425][ T6568] do_syscall_64+0x4c/0xa0 [ 329.968385][ T6568] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 329.974806][ T6568] [ 329.974806][ T6568] -> #0 (&mm->mmap_lock){++++}-{3:3}: [ 329.982375][ T6568] __lock_acquire+0x2cf8/0x7c50 [ 329.987759][ T6568] lock_acquire+0x1b4/0x490 [ 329.992793][ T6568] down_read_killable+0x4c/0x340 [ 329.998267][ T6568] mmap_read_lock_killable+0x1d/0x60 [ 330.004080][ T6568] lock_mm_and_find_vma+0x2b1/0x2f0 [ 330.009826][ T6568] do_user_addr_fault+0x2db/0xb10 [ 330.015383][ T6568] exc_page_fault+0x60/0x100 [ 330.020598][ T6568] asm_exc_page_fault+0x22/0x30 [ 330.026059][ T6568] fault_in_readable+0x13e/0x1f0 [ 330.031561][ T6568] fault_in_iov_iter_readable+0xbb/0x2e0 [ 330.037727][ T6568] generic_perform_write+0x1d2/0x560 [ 330.043544][ T6568] __generic_file_write_iter+0x172/0x430 [ 330.049710][ T6568] generic_file_write_iter+0xab/0x2e0 [ 330.055701][ T6568] vfs_write+0x44c/0x960 [ 330.060496][ T6568] ksys_write+0x143/0x240 [ 330.065382][ T6568] do_syscall_64+0x4c/0xa0 [ 330.070370][ T6568] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 330.076817][ T6568] [ 330.076817][ T6568] other info that might help us debug this: [ 330.076817][ T6568] [ 330.087075][ T6568] Possible unsafe locking scenario: [ 330.087075][ T6568] [ 330.094536][ T6568] CPU0 CPU1 [ 330.099920][ T6568] ---- ---- [ 330.105289][ T6568] lock(&sb->s_type->i_mutex_key#12); [ 330.110787][ T6568] lock(&mm->mmap_lock); [ 330.117649][ T6568] lock(&sb->s_type->i_mutex_key#12); [ 330.125650][ T6568] lock(&mm->mmap_lock); [ 330.129984][ T6568] [ 330.129984][ T6568] *** DEADLOCK *** [ 330.129984][ T6568] [ 330.138132][ T6568] 3 locks held by syz.7.494/6568: [ 330.143157][ T6568] #0: ffff888023e88fe8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x2ae/0x360 [ 330.152417][ T6568] #1: ffff8880541b4460 (sb_writers#5){.+.+}-{0:0}, at: vfs_write+0x256/0x960 [ 330.161337][ T6568] #2: ffff88805bf31580 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: generic_file_write_iter+0x7f/0x2e0 [ 330.172682][ T6568] [ 330.172682][ T6568] stack backtrace: [ 330.178626][ T6568] CPU: 1 PID: 6568 Comm: syz.7.494 Not tainted syzkaller #0 [ 330.185927][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 330.196018][ T6568] Call Trace: [ 330.199309][ T6568] [ 330.202249][ T6568] dump_stack_lvl+0x168/0x22e [ 330.206947][ T6568] ? load_image+0x3b0/0x3b0 [ 330.211468][ T6568] ? show_regs_print_info+0x12/0x12 [ 330.216681][ T6568] ? print_circular_bug+0x12b/0x1a0 [ 330.221907][ T6568] check_noncircular+0x274/0x310 [ 330.226869][ T6568] ? add_chain_block+0x940/0x940 [ 330.231826][ T6568] ? lockdep_lock+0xdc/0x1e0 [ 330.236428][ T6568] ? _find_first_zero_bit+0xcf/0x100 [ 330.241761][ T6568] __lock_acquire+0x2cf8/0x7c50 [ 330.246755][ T6568] ? verify_lock_unused+0x140/0x140 [ 330.251989][ T6568] ? verify_lock_unused+0x140/0x140 [ 330.257203][ T6568] ? verify_lock_unused+0x140/0x140 [ 330.262438][ T6568] ? mark_lock+0x94/0x320 [ 330.267046][ T6568] lock_acquire+0x1b4/0x490 [ 330.271566][ T6568] ? mmap_read_lock_killable+0x1d/0x60 [ 330.277043][ T6568] ? read_lock_is_recursive+0x10/0x10 [ 330.282430][ T6568] ? cmp_ex_search+0x1a/0x70 [ 330.287035][ T6568] ? bsearch+0x8a/0xb0 [ 330.291122][ T6568] ? fault_in_readable+0x13e/0x1f0 [ 330.296243][ T6568] ? search_extable+0x8c/0xd0 [ 330.301018][ T6568] ? trim_init_extable+0x3b0/0x3b0 [ 330.306141][ T6568] ? mmap_read_lock_killable+0x1d/0x60 [ 330.311611][ T6568] down_read_killable+0x4c/0x340 [ 330.316565][ T6568] ? mmap_read_lock_killable+0x1d/0x60 [ 330.322036][ T6568] mmap_read_lock_killable+0x1d/0x60 [ 330.327328][ T6568] lock_mm_and_find_vma+0x2b1/0x2f0 [ 330.332545][ T6568] do_user_addr_fault+0x2db/0xb10 [ 330.337587][ T6568] ? _raw_spin_unlock_irq+0x1f/0x40 [ 330.343001][ T6568] exc_page_fault+0x60/0x100 [ 330.347619][ T6568] asm_exc_page_fault+0x22/0x30 [ 330.352486][ T6568] RIP: 0010:fault_in_readable+0x13e/0x1f0 [ 330.358245][ T6568] Code: 48 e7 c4 ff 4d 89 f4 49 81 cc ff 0f 00 00 4d 89 f7 49 01 dc 49 81 e4 00 f0 ff ff 4d 39 e6 77 44 e8 27 e7 c4 ff 4d 39 e7 74 47 <41> 8a 07 88 44 24 07 49 81 c7 00 10 00 00 4d 39 e7 74 07 e8 0a e7 [ 330.377964][ T6568] RSP: 0018:ffffc90003cc7a90 EFLAGS: 00050287 [ 330.384057][ T6568] RAX: ffffffff81bbef39 RBX: 0000000000001000 RCX: 0000000000080000 [ 330.392144][ T6568] RDX: ffffc9000eef3000 RSI: 000000000000a310 RDI: 000000000000a311 [ 330.400127][ T6568] RBP: 0000000000000000 R08: ffff88802aded940 R09: 0000000000000002 [ 330.408134][ T6568] R10: 0000000000000006 R11: 0000000000000002 R12: 0000200000052000 [ 330.416132][ T6568] R13: dffffc0000000000 R14: 0000200000050f40 R15: 0000200000051000 [ 330.424206][ T6568] ? fault_in_readable+0x139/0x1f0 [ 330.429341][ T6568] fault_in_iov_iter_readable+0xbb/0x2e0 [ 330.435004][ T6568] generic_perform_write+0x1d2/0x560 [ 330.440305][ T6568] ? atime_needs_update+0x780/0x780 [ 330.445532][ T6568] ? generic_file_direct_write+0x660/0x660 [ 330.451359][ T6568] ? __file_remove_privs+0x5b0/0x5b0 [ 330.456744][ T6568] ? preempt_count_add+0x8d/0x190 [ 330.461780][ T6568] ? rwsem_write_trylock+0x12f/0x1b0 [ 330.467166][ T6568] ? clear_nonspinnable+0x60/0x60 [ 330.472213][ T6568] ? generic_write_checks_count+0x3d9/0x4c0 [ 330.478125][ T6568] __generic_file_write_iter+0x172/0x430 [ 330.483778][ T6568] generic_file_write_iter+0xab/0x2e0 [ 330.489164][ T6568] vfs_write+0x44c/0x960 [ 330.493423][ T6568] ? file_end_write+0x250/0x250 [ 330.498288][ T6568] ? __fget_files+0x44a/0x4d0 [ 330.502987][ T6568] ? __fdget_pos+0x2ae/0x360 [ 330.507589][ T6568] ? ksys_write+0x71/0x240 [ 330.512046][ T6568] ksys_write+0x143/0x240 [ 330.516390][ T6568] ? __ia32_sys_read+0x80/0x80 [ 330.521175][ T6568] ? lockdep_hardirqs_on+0x94/0x140 [ 330.526392][ T6568] do_syscall_64+0x4c/0xa0 [ 330.530821][ T6568] ? clear_bhb_loop+0x60/0xb0 [ 330.535524][ T6568] ? clear_bhb_loop+0x60/0xb0 [ 330.540213][ T6568] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 330.546118][ T6568] RIP: 0033:0x7efeb8f8f749 [ 330.550552][ T6568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.570253][ T6568] RSP: 002b:00007efeb9d55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 330.578680][ T6568] RAX: ffffffffffffffda RBX: 00007efeb91e6090 RCX: 00007efeb8f8f749 [ 330.586659][ T6568] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000005 [ 330.594637][ T6568] RBP: 00007efeb9013f91 R08: 0000000000000000 R09: 0000000000000000 [ 330.602613][ T6568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 330.610595][ T6568] R13: 00007efeb91e6128 R14: 00007efeb91e6090 R15: 00007ffff16cb6d8 [ 330.618579][ T6568] [ 331.054587][ T27] kauditd_printk_skb: 79 callbacks suppressed [ 331.054603][ T27] audit: type=1326 audit(1764390113.607:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.444086][ T6576] loop8: detected capacity change from 0 to 128 [ 331.468955][ T27] audit: type=1326 audit(1764390113.617:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.526214][ T6576] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 1) [ 331.576369][ T6576] FAT-fs (loop8): Filesystem has been set read-only [ 331.690475][ T6576] loop8: detected capacity change from 0 to 512 [ 331.719238][ T27] audit: type=1326 audit(1764390113.647:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.849811][ T27] audit: type=1326 audit(1764390113.647:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.872217][ T27] audit: type=1326 audit(1764390113.647:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.894732][ T27] audit: type=1326 audit(1764390113.647:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.917089][ T27] audit: type=1326 audit(1764390113.647:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.940634][ T27] audit: type=1326 audit(1764390113.647:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 331.974507][ T6576] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback. [ 331.998380][ T6576] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 332.036423][ T27] audit: type=1326 audit(1764390113.647:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 332.128183][ T27] audit: type=1326 audit(1764390113.647:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.8.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2e4e78f749 code=0x7ffc0000 [ 332.228092][ T5410] EXT4-fs (loop8): unmounting filesystem.