last executing test programs:

7m3.115411858s ago: executing program 2 (id=597):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x14)
mount$afs(0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000080)=ANY=[], 0x0, 0xc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(0xffffffffffffffff, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000700)="ec76b3", 0x3}], 0x1}}], 0x1, 0x404c041)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[], 0x6f4}}, 0x0)

7m2.557009572s ago: executing program 2 (id=599):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'dummy0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x25, 0x2, @void}, 0x10)
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})

7m1.311405159s ago: executing program 2 (id=602):
r0 = socket$inet(0x2, 0x3, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES64], 0x24}}, 0x4000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa0000000003"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty=0xe0, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x10001}}}}}, 0x0)

7m1.104490667s ago: executing program 2 (id=603):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000f80)={[{@grpquota}, {}, {@nombcache}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@noblock_validity}, {@noauto_da_alloc}]}, 0xfe, 0x54c, &(0x7f0000000980)="$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")
setxattr$incfs_id(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x200000002000000, 0x20000000008005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
unlink(&(0x7f0000000080)='./file0/file0\x00')
bind$rxrpc(0xffffffffffffffff, 0x0, 0x0)
socketpair(0x10, 0x2, 0x6, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x46, 0x0, 0x0)
syz_emit_ethernet(0x34e, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x0)

6m58.786278168s ago: executing program 2 (id=609):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x4004080)
ioctl$VIDIOC_DV_TIMINGS_CAP(0xffffffffffffffff, 0xc0905664, &(0x7f0000000040)={0x0, 0x0, '\x00', @raw_data=[0x5, 0xbeb4, 0x5676, 0x5, 0xb6ee, 0x4, 0x9, 0x100, 0xffffffff, 0x3, 0x5, 0x7, 0x6, 0x6, 0x2d, 0x855, 0x2, 0x9, 0xe, 0x5, 0x9, 0x7, 0x9, 0x24, 0x3, 0x7ff, 0x0, 0x6, 0x9, 0x8, 0x3, 0x7]})
socket$inet6_tcp(0xa, 0x1, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
personality(0x8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x802, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, &(0x7f0000000980)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffc000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000002940), 0x62, 0x4890)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x0, 0x2b8, 0xb0000010, 0x2, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x248, 0x290, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0x10000000, 0x1, 0x7fffffff}}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x206, 'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)

6m57.568807838s ago: executing program 2 (id=614):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, 0x0)
r4 = fsopen(&(0x7f0000000040)='9p\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
munlockall()
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x103203, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2)
syz_open_dev$tty1(0xc, 0x4, 0x2)
syz_emit_vhci(0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="02c9100a000600ebcff96b29fee2bc"], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[], 0x6)
getpgid(0x0)
syz_emit_vhci(0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x20, 0x10, 0xc09}, 0x20}}, 0x0)

6m55.782719159s ago: executing program 32 (id=614):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, 0x0)
r4 = fsopen(&(0x7f0000000040)='9p\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
munlockall()
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000009, 0x32, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x103203, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2)
syz_open_dev$tty1(0xc, 0x4, 0x2)
syz_emit_vhci(0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="02c9100a000600ebcff96b29fee2bc"], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[], 0x6)
getpgid(0x0)
syz_emit_vhci(0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x20, 0x10, 0xc09}, 0x20}}, 0x0)

3m30.725391628s ago: executing program 4 (id=1046):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x14)
mount$afs(0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000080)=ANY=[], 0x0, 0xc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
sendmmsg(0xffffffffffffffff, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000700)="ec76b3", 0x3}], 0x1}}], 0x1, 0x404c041)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b000000080003", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3m30.495462501s ago: executing program 4 (id=1048):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
gettid()
syz_emit_vhci(&(0x7f0000000440)=ANY=[], 0xf)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22}, {0x2, 0x200, @local}, {0x2, 0x0, @broadcast}, 0x2, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x0, 0x3})

3m29.486211842s ago: executing program 4 (id=1050):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x5, 0x5, 0x2, 0x4}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000010000e1850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

3m29.19527995s ago: executing program 4 (id=1052):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
timer_create(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)

3m27.547659561s ago: executing program 4 (id=1053):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000380)={0x2, 0x34000, 0x1})
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[], 0x1, 0x6f6, &(0x7f0000000340)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r3 = syz_io_uring_setup(0xac9, &(0x7f0000000380)={0x0, 0xb338, 0x2, 0x0, 0x235}, &(0x7f0000000040), &(0x7f0000000340))
io_uring_register$IORING_REGISTER_IOWQ_AFF(r3, 0x11, &(0x7f00000002c0)="b3", 0x1)

3m26.032222665s ago: executing program 4 (id=1057):
timer_create(0xfffffffffffffffc, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000001400))
timer_settime(0x0, 0x1, &(0x7f0000000500)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x48)
r0 = syz_clone3(&(0x7f0000000080)={0x4000011, 0x0, 0x0, 0x0, {0x8000011}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x4080, 0x0)
getdents64(r1, 0x0, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
msgctl$MSG_INFO(0x0, 0xc, 0x0)
writev(0xffffffffffffffff, &(0x7f0000003740)=[{&(0x7f0000001440)='d', 0x1}], 0x1)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x8}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0x5, 0x4}, {0x85, 0x0, 0x0, 0x1c}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000780)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast6)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x44040)
r6 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x3, 0x0, @mcast1={0xff, 0x7}, 0x8a}}, {{0xa, 0x0, 0x10001, @local}}}, 0x108)
mount(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000380)='hpfs\x00', 0x2208004, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x100000, @private1={0xfc, 0x1, '\x00', 0x1}}}, {{0xa, 0x4e22, 0x0, @empty, 0x3}}}, 0x108)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
r7 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, 0x0)

3m10.184684934s ago: executing program 33 (id=1057):
timer_create(0xfffffffffffffffc, &(0x7f0000000140)={0x0, 0x7}, &(0x7f0000001400))
timer_settime(0x0, 0x1, &(0x7f0000000500)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x48)
r0 = syz_clone3(&(0x7f0000000080)={0x4000011, 0x0, 0x0, 0x0, {0x8000011}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x4080, 0x0)
getdents64(r1, 0x0, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
msgctl$MSG_INFO(0x0, 0xc, 0x0)
writev(0xffffffffffffffff, &(0x7f0000003740)=[{&(0x7f0000001440)='d', 0x1}], 0x1)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x8}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0x5, 0x4}, {0x85, 0x0, 0x0, 0x1c}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000780)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast6)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x44040)
r6 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x3, 0x0, @mcast1={0xff, 0x7}, 0x8a}}, {{0xa, 0x0, 0x10001, @local}}}, 0x108)
mount(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000380)='hpfs\x00', 0x2208004, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x100000, @private1={0xfc, 0x1, '\x00', 0x1}}}, {{0xa, 0x4e22, 0x0, @empty, 0x3}}}, 0x108)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
r7 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, 0x0)

1m19.092229147s ago: executing program 5 (id=1288):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000780)={0x0, 0x4, 0x0, [0x806f, 0x0, 0x2d5, 0x2, 0x6], [0x6, 0x7, 0x1, 0x9, 0x8002, 0x0, 0x5, 0x2, 0x0, 0x802, 0x9, 0x200000100, 0x3, 0xfffffffffffffff4, 0x4a, 0x5, 0x100, 0xd, 0xdd, 0x5, 0x1, 0x2a9, 0x3, 0xc39, 0x3, 0x8, 0x100000000, 0x2, 0xa51, 0x8, 0x401, 0x800000000000003, 0x7, 0xfffffffffffffffa, 0x81, 0x100, 0x5, 0x931, 0x101, 0x3, 0x8001, 0x8000000000000000, 0x7, 0x1, 0x8, 0x8, 0x6aa, 0x102, 0x1, 0x83, 0x538a, 0x9, 0xfffffffffffffffb, 0x4, 0x0, 0x4, 0x5, 0x8, 0x80008000, 0x8000000000000000, 0x4, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5bc, 0x1, 0x7fffffff, 0x4, 0x8000, 0xc9, 0x7, 0x6, 0x9, 0x82c, 0x8000, 0xe000000000000, 0xe4, 0x11, 0x0, 0x8, 0x22, 0xffffffffffffffff, 0x7, 0x1, 0x8000000000000000, 0x2000000009, 0x8, 0x0, 0x6, 0x6, 0x7, 0x100000002, 0x4, 0x4, 0x7, 0x7, 0x7, 0x9, 0x1, 0x16d, 0x6, 0x68d, 0xffffffffffff43b0, 0x8, 0x50000000000000, 0xe, 0x0, 0x0, 0x100000003, 0x4, 0x7, 0x406, 0x3, 0x6, 0x5, 0x0, 0x3, 0x40, 0x7fffffff, 0x7, 0x3, 0x1]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1c, 0x3, &(0x7f0000000000)=@framed={{0xdb, 0xa, 0xa, 0xfe00, 0xa0, 0x71, 0x10, 0x1d}}, 0x0, 0xb, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m17.470016861s ago: executing program 5 (id=1293):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x401, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_TUPLE_MASTER={0x10, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0x24}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001800010600000000000000"], 0x24}}, 0x0)

1m17.034205134s ago: executing program 5 (id=1295):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000780)={@broadcast, @random="17043a73dbde", @void, {@ipv4={0x800, @tipc={{0x1b, 0x4, 0x3, 0x4, 0xb0, 0x67, 0x7, 0x43, 0x6, 0x0, @multicast1, @local, {[@timestamp_prespec={0x44, 0x24, 0x15, 0x3, 0xa, [{@local, 0xe}, {@loopback, 0x4}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xfffffc01}, {@broadcast, 0x5fc1edbe}]}, @timestamp_prespec={0x44, 0x34, 0x56, 0x3, 0x0, [{@remote, 0x82}, {@private=0xa010100, 0x10}, {@rand_addr=0x64010100, 0xfff}, {@private=0xa010102, 0x100}, {@local, 0x474d}, {@multicast2, 0xff}]}]}}, @name_distributor={{0x44, 0x0, 0x0, 0x0, 0x1, 0xa, 0xb, 0x2, 0x4, 0x0, 0x1, 0x3, 0x3, 0x4, 0x4e22, 0x4e21}, [{0x800, 0xd2, 0x6, 0xff, 0x0, 0x1, 0x0, 0xffffffd}]}}}}}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYBLOB="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"], 0x2, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x200000000000000)

1m15.496990868s ago: executing program 5 (id=1298):
syz_mount_image$hfsplus(&(0x7f0000000680), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000c00)=ANY=[], 0x1, 0x6e9, &(0x7f0000001ec0)="$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")
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$netlink(0x10, 0x3, 0x4)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setreuid(0x0, r6)
getgroups(0x3, &(0x7f0000000040)=[0xee01, 0x0, 0xee01])
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300"}})

1m10.781342516s ago: executing program 5 (id=1302):
unshare(0x28040680)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d00000085000000070000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
socket$netlink(0x10, 0x3, 0x4)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r2, 0x7a, 0xfffffffffffffffe}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x4, [@enum={0x3, 0x1, 0x0, 0xf, 0x4000000, [{0x7, 0x1}]}]}, {0x0, [0x2e, 0x2e]}}, 0x0, 0x30, 0x0, 0x1, 0x1}, 0x28)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002780)=@deltfilter={0x48, 0x2d, 0x8, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xffff, 0xb}, {0x5, 0xd}, {0x4, 0x7}}, [@TCA_RATE={0x6, 0x5, {0x7, 0xd3}}, @TCA_CHAIN={0x8, 0xb, 0x5}, @filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x6}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r4, 0x10e, 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600, 0x0, 0x2000]}}], 0xffc8)

1m7.481281111s ago: executing program 5 (id=1307):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
socket(0x1e, 0x1, 0x0)
syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec29, 0x0, 0x1, 0x40000337}, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$l2tp6(0xa, 0x2, 0x73)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="740000001000ffff25bd7000fbdbdf", @ANYRES32=0x0, @ANYBLOB="17200000212000004c0012800c0001006d6163766c616e003c00028008000300030000000800010010000000280005800a00040096aaaaaaaaaa00000a000400aaaaaaaaaaaa00000a000400aaaaaaaaaab0000008000500", @ANYRES64=r1], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m7.070681961s ago: executing program 34 (id=1307):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
socket(0x1e, 0x1, 0x0)
syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec29, 0x0, 0x1, 0x40000337}, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$l2tp6(0xa, 0x2, 0x73)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="740000001000ffff25bd7000fbdbdf", @ANYRES32=0x0, @ANYBLOB="17200000212000004c0012800c0001006d6163766c616e003c00028008000300030000000800010010000000280005800a00040096aaaaaaaaaa00000a000400aaaaaaaaaaaa00000a000400aaaaaaaaaab0000008000500", @ANYRES64=r1], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

32.11862125s ago: executing program 7 (id=1317):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8954, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x204845, &(0x7f0000000840)=ANY=[@ANYRESOCT=r0], 0x0, 0x2cb, &(0x7f0000000900)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x40101)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000300)=<r3=>0x0)
r4 = inotify_init()
readv(r4, &(0x7f0000000140)=[{&(0x7f0000000340)=""/263, 0x107}], 0x1)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000480)=0x1)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000002700)=""/102392, 0x18ff8)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r1, 0x40bc5311, &(0x7f00000001c0)={0x80, 0x1, 'client1\x00', 0xffffffff80000006, "d62e980da99179cf", "20e48560999fd132b6a5426180a8c27a00fcfffff0003336f794d20352346f8f"})
connect$inet(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10002, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffff00208500000070000000850000002a00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r7}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r6, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112)

20.43251581s ago: executing program 7 (id=1392):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc92b18236457ee3c8", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

20.134790888s ago: executing program 7 (id=1394):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0180c2000002ca544f600b58a82401dbcf893fbf6a88000000000000080045010000000011907800000000e000000100004e200010907822c0000100000000", @ANYRESDEC=r0, @ANYRESDEC=0x0, @ANYRES8=r3, @ANYRESDEC=r3], 0x0)
r4 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c)
r5 = dup(r4)
r6 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0)
sendfile(r5, r6, 0x0, 0x80001d00c0d1)
r7 = syz_mount_image$hfsplus(&(0x7f0000000500), &(0x7f0000000280)='./file0\x00', 0x200010, &(0x7f0000000040)=ANY=[], 0x0, 0x663, &(0x7f0000000540)="$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")
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000300)=ANY=[@ANYBLOB='nobarrier,gid=', @ANYRES64=r7, @ANYBLOB="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", @ANYRESDEC, @ANYRESDEC], 0x44, 0x6f7, &(0x7f0000001f80)="$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")

18.608350989s ago: executing program 6 (id=1397):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendmmsg$inet6(r2, &(0x7f0000000c80)=[{{&(0x7f0000000580)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x40000cc, 0xc000)

17.992075696s ago: executing program 7 (id=1398):
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="8f9f0200000000f761000700000004000180"], 0x18}}, 0x2000c090)

16.551915397s ago: executing program 7 (id=1401):
syz_clone(0x208f000, 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000013c0))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x999047, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0)

15.298988234s ago: executing program 7 (id=1406):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000840)=@raw={'raw\x00', 0x8, 0x3, 0x370, 0x0, 0x11, 0x148, 0x0, 0x0, 0x2d8, 0x2a8, 0x2a8, 0x2d8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x8800, 0x1f0, 0x238, 0x0, {}, [@common=@inet=@socket2={{0x28}}, @common=@inet=@hashlimit3={{0x158}, {'bridge0\x00', {0x6, 0x6, 0x40, 0x6, 0x0, 0x6, 0x5, 0x8, 0x0, 0x20}, {0x5}}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0xfffffffe}}}, {{@ip={@multicast2, @remote, 0x0, 0x0, 'vlan0\x00', 'macvlan1\x00', {}, {0xff}, 0x5e}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3d0)

14.654811783s ago: executing program 6 (id=1409):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000300)={0x44043, 0xfffffffe, 0x3, 0x3}, 0x3c)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x1000, 0x2, &(0x7f0000826000/0x1000)=nil)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000440000/0x1000)=nil, 0x1000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r5 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0xcd1d, 0x10100, 0x1000000, 0x20000}, &(0x7f0000000040), &(0x7f0000000080))
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{&(0x7f0000000000)="72e550f0c3ce9ecd", 0x8, 0x1}, {&(0x7f0000000140)="9eb29f5cd740f9a7ed60ade502c86c7ba24bbdf671def1fa9106515a41932270b7413c42e591ec36a5915d7eb656cade61fa0040643a33526e006994d64441d321ac5be1d9407e415b565b2dd9aa1150a1f7fe3c945c7df7b05ae4217d4424cbaeba3ef09790b322995d0af3aa895eea87bb46fac0257c1c0f610273915f9447f574dc8ff8ae6a6cf6845efc4cce1b4fa562913ff179db9f12ca9c9d7b3f81bd077a40d72d6aac24b25e098092b6", 0xae, 0x3}, {&(0x7f00000000c0)="fa548c4e356624c578a0235a5d1673880435413526af0134225be075e14d85a29edb5c9f36d198", 0x27, 0x1}]}, 0x3, 0x2}, 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x7}, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

11.992423128s ago: executing program 0 (id=1415):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x14)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
sendmsg$netlink(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000540)=ANY=[], 0x1b8}, {0x0, 0x1f88}], 0x2}, 0x0)
unshare(0x2000180)

11.802816174s ago: executing program 0 (id=1416):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/timer_list\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000004480)={0x2020}, 0x2020)
preadv2(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/63, 0x3f}], 0x1, 0x101, 0x4, 0x2)
fcntl$dupfd(r0, 0x7d8ff6bd1f8ee2, r0)
read(r0, &(0x7f00000002c0)=""/138, 0x8a)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000001540)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYBLOB="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", @ANYBLOB="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", @ANYRESOCT=0x0], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
syz_open_dev$sndctrl(0x0, 0x0, 0x141080)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)

11.651637486s ago: executing program 1 (id=1417):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
socket$packet(0x11, 0x2, 0x300)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r1=>0x0})
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000050000000000000082000000180700007cac26fafc432a01f517f49399b93ea2bc582196da41a8359f36579800f1d69ed678ee05ba40c845a8db1cfd0290cbb82f6ab27e3fb20cad65296ea574dfdf8be05f1a642152487f9b3d1606b955ea4681c3d859b4da49d4cdc953a96882a689bdd88902233c80e84d420fc59862f9e347c94819a737d1e32603d7793239b494c789d789541e581c8bdf52e75c0fb051d74892329a2b7a4f", @ANYRES16=0x0, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a6000000850000005000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, r2}, 0x94)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000040, &(0x7f00000022c0)=ANY=[], 0x1, 0x6dc, &(0x7f0000001180)="$eJzs3c9vHGcZB/DvrNeON1TBaRMaoSKsRCpIEYkTK4VwqUEI5VChqhx6thKnsbpJKsdFaYXABQQnJA79AwqSbxwQEvegcOFSTvTqYyUkLhGHqJdFMztr79rreO04ttt+PtF43nfeed955tn54V1nNQG+tK6dT/NBilw7/9r9sr62OtteW509Vje3k5TlRtLszlLcSYqHyVzZ/rjTVdTrF9tt58PFq2988mjt026tWU/V+mNP6jfEkHVX6inT9XjTQ3uOj7qJlTq8PJfkej0fNDHqWAMrlkk7V8/h0HW2WNlN992ct8AR07s7Fd375hZTyfEkk/XvAamvDo2Di3D//XtjPwAAAOBzoWjurd/Hd/c7EgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPjiq5//X9RTo55nOkXv+f8TvWV1+QiaG3nNB880DgAAAAAAAAA4GN98nMe5nxO9eqeo/uZ/tqqcymed5Ct5N/eykKVcyP3MZznLWcqlJFN9A03cn19eXrq03rM0vOfloT0vH9QeAwAAAAAAAMAX0q/S2vj7PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHAVFMtadVdOpep6pNJrZaMtK8q8kE4cd7y4UwxY+OPg4AAAA4KlM7qHPVx/nce7nRK/eKar3/F+r3i9P5t3cyXIWs5x2FnKjfg9dvutvrK3OttdWZ2+XU1kfHPcH/91VGBP1CGNVbdiWz1S718rNLFZLLuR6FcyNNLrbPpec6cXTF1efD8qYildrI0bWrNNabuwP232KsC9G/yii1Ss0yx+9jMzUsZXZONnNQFF9UJNszsSOr05zoDZVjTq+vqVLaax/8nPqGeT8eD0v9+e3zzTnu7WeiUaqTFzuHX3lOfPkTCTf+tuf37zVvvP2rZv3zh+dXdrB2DbLNx8Ts32ZePFznYnmLtefqTJxer1+LT/OT3M+03k9S1nMzzKf5SykU7fP18dz+XPqyZmaG6i9vlMkE/Xr0n3NRolpOj+qSvM5W/U9kcUUuZsbWcgr1b/LuZTv5kqu5GrfK3x627irfavO+sb6Wf/q8YEw/z40+HPfrgvl1e13G1e5uSft8XZH537pXvvLvJ7sy2v3qH+0vtbJvvNgpi9Lz/eyMz508L1cG5tfrwvlNn699b57iKbqTJQnUO8u0YvuhW4mmtW9aOtx/sdO2S/tO53Orfl3thl/ZVP95XpeHnGr39hp7Z7hL8X+Ko+X5zNZX0kGj46y7YX1q0xfW2fjWO62Dd5xy36nq7ai6J2pP8nd6gDYeqZO1L/DbR3pctX24tC22artTF/bwO9buZt2bhxA/gDYi3++uV6cyvGJ1n9aH7c+av2mdav12uQPj33v2EsTGf/H+PebM2MvN14q/pqP8ouN9/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDe3Xvv/bfn2+2FpeGFxvZNA4VWNi/ZaeRNhaJ+oM/ueh3dwmSSgSXVc4526tV7BNm+hdHaHMaWQueXyYHnp/cQweHr/L4sNEdKwtzAkr9sHfCDXUZYjHZePMNCIwe70bEMPwAO6YIEHJiLy7ffuXjvvfe/s3h7/q2FtxbujF+5cnXm6pVXZi/eXGwvzHR/HnaUwLOwcdM/7EgAAAAAAAAAAACAUQ37YsDZ53b60shI3/HwPwsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAfXHtfJoPUuTSzIWZsr62Otsup155Y81mkkYjKX6eFA+TuXSnTPUNV+RPD9MZsp0PF6++8cmjtU83xmp2108a9Xx7T25NslJPmU4yVs+f0vp41/cw3tLx/lrxv94+lAn7rNPpzD19fPD0/h8AAP//QlL6vg==")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x141442, 0x38)
statx(r2, &(0x7f00000002c0)='./file0\x00', 0x400, 0x400, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000300)={0x0, <r4=>0x0}, &(0x7f0000000340)=0xc)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x2})
ioctl$TUNSETCARRIER(r5, 0x400454e2, &(0x7f0000000280))
ioctl$TUNSETPERSIST(r5, 0x400454cb, 0x1)
ioctl$TUNSETCARRIER(r5, 0x400454e2, &(0x7f0000000640)=0x1)
close(0x3)
mount$9p_unix(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x1004004, &(0x7f00000005c0)={'trans=unix,', {[{@access_any}, {@loose}, {@posixacl}, {@cache_readahead}], [{@dont_appraise}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@obj_type={'obj_type', 0x3d, 'blkio.bfq.io_merged_recursive\x00'}}, {@uid_eq={'uid', 0x3d, r3}}, {@smackfsdef={'smackfsdef', 0x3d, '#*!$.&\xcf/'}}, {@flag='ro'}, {@fowner_eq={'fowner', 0x3d, r4}}, {@appraise}, {@audit}]}})
syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv4={0x86dd, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @local, @loopback}, @address_request}}}}, 0x0)
sendto$packet(r2, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x11, 0x4, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
utime(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0xd5, 0xffffffffffffffff})
execve(&(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000480)={[&(0x7f0000000a40)='.^*%$\'-\\:\x00', &(0x7f0000000080)='#\x00', &(0x7f0000000180)='\x02\x00']})

11.124981331s ago: executing program 6 (id=1419):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendmmsg$inet6(r2, &(0x7f0000000c80)=[{{&(0x7f0000000580)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x40000cc, 0xc000)

9.636001249s ago: executing program 3 (id=1420):
unshare(0x28040680)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d00000085000000070000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002780)=@deltfilter={0x48, 0x2d, 0x8, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xffff, 0xb}, {0x5, 0xd}, {0x4, 0x7}}, [@TCA_RATE={0x6, 0x5, {0x7, 0xd3}}, @TCA_CHAIN={0x8, 0xb, 0x5}, @filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x6}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600, 0x0, 0x2000]}}], 0xffc8)

9.507030838s ago: executing program 1 (id=1421):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000780)={0x0, 0x4, 0x0, [0x806f, 0x0, 0x2d5, 0x2, 0x6], [0x6, 0x7, 0x1, 0x9, 0x8002, 0x0, 0x5, 0x2, 0x0, 0x802, 0x9, 0x200000100, 0x3, 0xfffffffffffffff4, 0x4a, 0x5, 0x100, 0xd, 0xdd, 0x5, 0x1, 0x2a9, 0x3, 0xc39, 0x3, 0x8, 0x100000000, 0x2, 0xa51, 0x8, 0x401, 0x800000000000003, 0x7, 0xfffffffffffffffa, 0x81, 0x100, 0x5, 0x931, 0x101, 0x3, 0x8001, 0x8000000000000000, 0x7, 0x1, 0x8, 0x8, 0x6aa, 0x102, 0x1, 0x83, 0x538a, 0x9, 0xfffffffffffffffb, 0x4, 0x0, 0x4, 0x5, 0x8, 0x80008000, 0x8000000000000000, 0x4, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5bc, 0x1, 0x7fffffff, 0x4, 0x8000, 0xc9, 0x7, 0x6, 0x9, 0x82c, 0x8000, 0xe000000000000, 0xe4, 0x11, 0x0, 0x8, 0x22, 0xffffffffffffffff, 0x7, 0x1, 0x8000000000000000, 0x2000000009, 0x8, 0x0, 0x6, 0x6, 0x7, 0x100000002, 0x4, 0x4, 0x7, 0x7, 0x7, 0x9, 0x1, 0x16d, 0x6, 0x68d, 0xffffffffffff43b0, 0x8, 0x50000000000000, 0xe, 0x0, 0x0, 0x100000003, 0x4, 0x7, 0x406, 0x3, 0x6, 0x5, 0x0, 0x3, 0x40, 0x7fffffff, 0x7, 0x3, 0x1]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1c, 0x3, &(0x7f0000000000)=@framed={{0xdb, 0xa, 0xa, 0xfe00, 0xa0, 0x71, 0x10, 0x1d}}, 0x0, 0xb, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)

8.28687012s ago: executing program 3 (id=1422):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000000)='./file1\x00', 0x10, &(0x7f0000000280)=ANY=[@ANYRES32=0x0, @ANYRES8], 0x5, 0x62c, &(0x7f0000000c80)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x1, 0x0, 0x8000000000000007, 0x800005ffffffffff})
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

7.759182575s ago: executing program 3 (id=1423):
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="30000000100001000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}, 0x1, 0x0, 0x0, 0x24000890}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x2c00, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x25000000)

6.954575461s ago: executing program 3 (id=1424):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r0 = syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000540)='./file0\x00', 0x0, &(0x7f0000000580), 0x1, 0x4f1, &(0x7f00000005c0)="$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")
socket$inet(0xa, 0x801, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x1843}, 0x18)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08d1ca4eb6b8b4889cdd4e786eb807e04eb88b935d785f"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$kcm(0x2, 0xa, 0x2)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4008010)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00')
socket$kcm(0x29, 0x5, 0x0)
socket$kcm(0x10, 0x2, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x30, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000e020d979", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_icmp(0xa, 0x2, 0x3a)
getuid()
openat2(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x40, 0x10, 0x4}, 0x18)

6.850283688s ago: executing program 6 (id=1425):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x13)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r1}, 0x10)
r2 = syz_clone(0x1b4a100, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r2, 0x0)

6.46910554s ago: executing program 6 (id=1426):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/timer_list\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000004480)={0x2020}, 0x2020)
preadv2(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/63, 0x3f}], 0x1, 0x101, 0x4, 0x2)
r1 = fcntl$dupfd(r0, 0x7d8ff6bd1f8ee2, r0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='lp', 0x2)
read(r0, &(0x7f00000002c0)=""/138, 0x8a)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000001540)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYBLOB="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", @ANYBLOB="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", @ANYRESOCT=0x0], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
syz_open_dev$sndctrl(0x0, 0x0, 0x141080)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x20124e1, 0x0)

5.943544293s ago: executing program 1 (id=1427):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002280)={'vlan0\x00'})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$eJzs3T9oJFUcB/DvzO565m6RUxtB/AMiooFwdoJNbBQCEoKIoEJExEZJhJhgl1jZWGitksomiJ3RUtIEG0WwipoiNoIGC4OFFiu7k0hMVqNu3Dkynw9MZibz3vzesPN9u83sBmisq0mmk7SSTCbpJCmON7i7Wq4e7q5PbM8nvd4TPxWDdtV+5ajflSRrSR5KslUWeamdrGw+s/fLzmP3vbncuff9zacnxnqRh/b3dh8/eG/2jY9mHlz54qsfZotMp/un6zp/xZD/tYvklv+j2HWiaNc9Av6Judc+/Lqf+1uT3DPIfydlqhfvraUbtjp54N2/6vv2j1/ePs6xAuev1+v03wPXekDjlEm6KcqpJNV2WU5NVZ/hv2ldLl9eXHp18sXF5YUX6p6pgPPSTXYf/eTSx1dO5P/7VpV/4OLq5//JuY1v+9sHrbpHA4zFHdWqn//J51bvj/xD48g/NJf8Q3PJPzSX/ENzyT80l/zDBdb5+8PyD80l/9Bc8g/NdTz/AECz9C7V/QQyUJe65x8AAAAAAAAAAAAAAAAAAOC09Ynt+aNlXDU/eyfZfyRJe1j91uD3iJMbB38v/1z0m/2hqLqN5Nm7RjzBiD6o+enrm76rt/7nd9Zbf3UhWXs9ybV2+/T9Vxzef//dzWcc7zw/YoF/qTix//BT461/0m8b9daf2Uk+7c8/14bNP2VuG6yHzz/ds79i+Uyv/DriCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABib3wMAAP//+kBtTA==")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101842, 0x1)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000005c0))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
syz_emit_ethernet(0xbe, &(0x7f0000000240)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x7, 0x6, '\x00\x00\t', 0x88, 0x3a, 0xff, @local, @local, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x2, 0x3, 0x1, 0xfffffff6, [{0x1, 0xf, "4f11f60956f0e3c1bcf67e342882c4008a90e07d0b91613c90afd34234333c442dd8ef90e8f720ca108feda9380737cdb241fb21ba19324f67dbc959b86945819b7a0c8f6e2483c3b7fda3fbc8b8c2a5c07bb0c8110adf1d0dcaae95abebf9a9c88ef289abdca7a7fa66c526224737d7ba23fee6b7e4"}]}}}}}}, 0x0)
ioctl$EXT4_IOC_MIGRATE(r1, 0x6609)

5.916922912s ago: executing program 3 (id=1428):
openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r2, 0x0, 0x1, 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x32c180)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000740)=@ethtool_regs={0x4, 0x8, 0xf8, "160e6fe5fda79e4e00502efd22962fc019832f7ad18811366531300995a89d7610b217ee218e1dfb5c94d379e2fe7aa1778f641b103cf77e7168502002b98103f96fc73f3749e87e8c6f8289dd139bf9fa27b565ccafe366ff90def83081f1e15ab832017991b457ed82933fd41b25121c8b7612670ed16d7835cfd20200003010c1c4970eb946e266f7842c35a934c7c02da0d22a540455f61a8fd3b3ea2031782625638e10876c25659c3eb0f443beb56dcc7790cb166e7f0fb131ad2646e13d95f24857b503eb39c9edee61f1f2a6e30b48390fb5e84ff2f387062dc4d8146b92b5412715aa1df1f03f17b8aea43beb9c8bc185743e6d"}})
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000200)={@initdev={0xfe, 0x88, '\x00', 0xff, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xa, 0x0, 0x6, 0x0, 0x4000000000000009, 0x10200})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a00100000000280", 0x2a}, {&(0x7f00000003c0)}], 0x2}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602240000000e000a000f00000002800000", 0x2c}], 0x1}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003980)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000074000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021380011800a0001006c696d6974000000280002800c00024000000000000000030c00014000000000000001010c0001400000000000000101b81700000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000008c1703800c0000800800034000000002"], 0x1874}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

4.886981167s ago: executing program 0 (id=1429):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000380)={0x2, 0x34000, 0x1})
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[], 0x1, 0x6f6, &(0x7f0000000340)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r3 = syz_io_uring_setup(0xac9, &(0x7f0000000380)={0x0, 0xb338, 0x2, 0x0, 0x235}, 0x0, &(0x7f0000000340))
io_uring_register$IORING_REGISTER_IOWQ_AFF(r3, 0x11, &(0x7f00000002c0)="b3", 0x1)

4.811391655s ago: executing program 1 (id=1430):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ff"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x23e69000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x20000000000, 0xffffffffffffffff}, {0xfffffffffffffffe}, 0x0, 0x0, 0x1, 0x0, 0x2, 0x2}, {{@in6=@remote, 0x4d5, 0xff}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x21}, 0x34ff, 0x3, 0x0, 0xb7, 0x7, 0xffffffff, 0xfffffff9}}, 0xe8)

3.67388321s ago: executing program 1 (id=1431):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000003f40)={0x0, 0x0, &(0x7f0000003f00)={&(0x7f0000003ec0)=ANY=[@ANYBLOB="140000000301010300"], 0x14}}, 0x20020084)
sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000006000)={&(0x7f0000001480)=ANY=[@ANYBLOB="14000000150a01030300"], 0x14}, 0x1, 0x0, 0x0, 0x400c054}, 0x44004080)

3.000638187s ago: executing program 0 (id=1432):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0x8)
ioctl$VHOST_SET_VRING_BASE(r4, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000001c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000340)=0x1)

2.465518639s ago: executing program 1 (id=1433):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x4, 0xc}, 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r4}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

1.211604036s ago: executing program 0 (id=1434):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000019340)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="ff010000000000000000", @ANYRES32=0x0, @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102392, 0x18ff8)
open_tree(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf1c)

1.020011805s ago: executing program 3 (id=1435):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x3, 0x8, 0x8001, 0x0, 0xb, 0x8000000000000000, 0x6, 0xfa11, 0xffffffff}, 0x0)
r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
writev(r1, &(0x7f0000000380)=[{0x0}], 0x1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\a\x00\x00'], 0xfe33)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0xc25c4110, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, 0x0, 0x90)
syz_open_procfs(0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080)={0xb, 0x0, 0x40000}, 0x20)
setitimer(0x2, &(0x7f0000000180)={{}, {0x77359400}}, 0x0)
timer_create(0x3, 0x0, &(0x7f00000000c0)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))

583.462652ms ago: executing program 6 (id=1436):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x13)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r1}, 0x10)
r2 = syz_clone(0x1b4a100, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r2, 0x0)

0s ago: executing program 0 (id=1437):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0x8)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000001c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000340)=0x1)

kernel console output (not intermixed with test programs):

b 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 18103, setting to 1024
[  469.289548][ T5939] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  469.299335][ T9370] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  469.299765][ T5939] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.359638][ T5939] usb 6-1: Product: syz
[  469.374934][ T5939] usb 6-1: Manufacturer: syz
[  469.390000][ T5939] usb 6-1: SerialNumber: syz
[  469.438023][ T9370] EXT4-fs (loop0): invalid journal inode
[  469.505644][ T9370] EXT4-fs (loop0): can't get journal size
[  469.554094][ T9370] EXT4-fs (loop0): 1 truncate cleaned up
[  469.577377][ T9370] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.718823][ T9352] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  470.832060][ T9382] EXT4-fs warning (device loop0): ext4_group_add:1736: No reserved GDT blocks, can't resize
[  471.404329][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.418534][ T5939] cdc_ncm 6-1:1.1: bind() failure
[  471.471622][ T5939] usb 6-1: USB disconnect, device number 5
[  471.614562][ T9384] loop0: detected capacity change from 0 to 512
[  471.649405][ T9384] EXT4-fs: Ignoring removed oldalloc option
[  471.693781][ T9384] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  471.749032][ T9384] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2857: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  471.826568][ T9388] loop4: detected capacity change from 0 to 128
[  471.839877][ T9384] EXT4-fs (loop0): 1 truncate cleaned up
[  472.034341][ T9384] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  473.541704][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.579483][ T9407] fuse: Unknown parameter 'group_id00000000000000000000'
[  474.642536][ T5939] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  474.650879][   T30] audit: type=1326 audit(1764051529.507:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  474.718649][ T9411] loop0: detected capacity change from 0 to 128
[  474.772515][   T30] audit: type=1326 audit(1764051529.537:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  474.795137][   T30] audit: type=1326 audit(1764051529.547:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  474.817833][   T30] audit: type=1326 audit(1764051529.567:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  474.830532][ T9411] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  474.841049][   T30] audit: type=1326 audit(1764051529.567:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9412 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f557c1c2005 code=0x7ffc0000
[  474.862674][ T5939] usb 2-1: Using ep0 maxpacket: 16
[  475.137611][ T5939] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  475.163447][ T5939] usb 2-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  475.187287][ T5939] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.201697][ T9411] ext4 filesystem being mounted at /189/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  475.251181][   T30] audit: type=1326 audit(1764051529.577:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  475.268894][ T5939] usb 2-1: config 0 descriptor??
[  475.330329][   T30] audit: type=1326 audit(1764051529.577:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  475.392621][   T30] audit: type=1326 audit(1764051529.577:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  475.460808][   T30] audit: type=1326 audit(1764051529.577:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  475.605280][   T30] audit: type=1326 audit(1764051529.577:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9410 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  475.663625][ T5832] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  475.718660][ T6193] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  475.817348][ T5939] kye 0003:0458:5017.000C: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  475.829456][ T9421] loop0: detected capacity change from 0 to 512
[  475.845254][ T5939] kye 0003:0458:5017.000C: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.1-1/input0
[  475.856643][ T5939] kye 0003:0458:5017.000C: tablet-enabling feature report not found
[  475.867355][ T9421] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  475.868421][ T5939] kye 0003:0458:5017.000C: tablet enabling failed
[  475.900190][ T9421] EXT4-fs (loop0): invalid journal inode
[  475.928832][ T9421] EXT4-fs (loop0): can't get journal size
[  475.955212][ T9421] EXT4-fs (loop0): 1 truncate cleaned up
[  475.984503][ T9421] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  476.000183][ T6193] usb 5-1: config 0 has an invalid interface number: 99 but max is 0
[  476.217595][ T9400] loop1: detected capacity change from 0 to 32768
[  476.238556][ T9400] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  476.258110][ T6193] usb 5-1: config 0 has no interface number 0
[  476.267923][ T9400] XFS (loop1): Ending clean mount
[  476.305856][ T6193] usb 5-1: config 0 interface 99 altsetting 0 bulk endpoint 0x86 has invalid maxpacket 1023
[  476.507436][ T6193] usb 5-1: config 0 interface 99 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 255
[  477.360615][ T6193] usb 5-1: New USB device found, idVendor=1b3d, idProduct=01da, bcdDevice=79.68
[  477.375957][ T6193] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  477.397079][ T6005] usb 2-1: USB disconnect, device number 19
[  477.445190][ T6193] usb 5-1: Product: syz
[  477.449428][ T6193] usb 5-1: Manufacturer: syz
[  477.462634][ T9422] fido_id[9422]: Failed to read report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5017.000C/report_descriptor': No such device
[  477.482569][ T6193] usb 5-1: SerialNumber: syz
[  477.491009][ T6193] usb 5-1: config 0 descriptor??
[  477.510428][ T9418] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  477.540270][ T9418] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  477.577342][ T6193] ftdi_sio 5-1:0.99: FTDI USB Serial Device converter detected
[  477.587700][ T6193] ftdi_sio ttyUSB0: unknown device type: 0x7968
[  478.912372][ T9418] loop4: detected capacity change from 0 to 128
[  478.958681][ T5834] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  479.052771][ T6005] usb 5-1: USB disconnect, device number 20
[  479.096118][ T6005] ftdi_sio 5-1:0.99: device disconnected
[  479.854519][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  479.953334][ T9446] loop5: detected capacity change from 0 to 128
[  480.188179][ T9452] loop0: detected capacity change from 0 to 128
[  480.252557][   T10] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  480.311354][ T9456] 9p: Bad value for 'rfdno'
[  481.713935][   T10] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  481.755471][   T10] usb 6-1: config 1 has no interface number 0
[  481.802569][   T10] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  481.958997][   T10] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  481.987740][   T10] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 134, changing to 11
[  482.019449][   T10] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 18103, setting to 1024
[  482.058142][   T10] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  482.067826][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.080471][   T10] usb 6-1: Product: syz
[  482.088534][   T10] usb 6-1: Manufacturer: syz
[  482.101864][   T30] kauditd_printk_skb: 37 callbacks suppressed
[  482.101879][   T30] audit: type=1326 audit(1764051536.957:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.139067][   T10] usb 6-1: SerialNumber: syz
[  482.175539][   T30] audit: type=1326 audit(1764051536.957:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.198875][ T9466] loop0: detected capacity change from 0 to 128
[  482.220287][   T30] audit: type=1326 audit(1764051537.017:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.253382][   T30] audit: type=1326 audit(1764051537.017:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.284734][ T9466] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  482.297920][   T30] audit: type=1326 audit(1764051537.017:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9467 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f557c1c2005 code=0x7ffc0000
[  482.329703][   T30] audit: type=1326 audit(1764051537.017:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.357359][ T9446] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  482.367272][   T30] audit: type=1326 audit(1764051537.017:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.386484][ T9466] ext4 filesystem being mounted at /192/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  482.390195][   T30] audit: type=1326 audit(1764051537.017:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.459373][   T30] audit: type=1326 audit(1764051537.017:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.487966][   T30] audit: type=1326 audit(1764051537.027:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9465 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  482.784699][ T9471] netlink: 84 bytes leftover after parsing attributes in process `syz.1.916'.
[  482.813384][ T9471] netlink: 84 bytes leftover after parsing attributes in process `syz.1.916'.
[  482.837264][ T5832] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  483.328406][ T9473] loop3: detected capacity change from 0 to 4096
[  484.122975][ T9446] bio_check_eod: 4 callbacks suppressed
[  484.122997][ T9446] syz.5.910: attempt to access beyond end of device
[  484.122997][ T9446] loop5: rw=2049, sector=137, nr_sectors = 16 limit=128
[  484.433773][ T9446] syz.5.910: attempt to access beyond end of device
[  484.433773][ T9446] loop5: rw=2049, sector=161, nr_sectors = 8 limit=128
[  484.521000][ T9486] netlink: 28 bytes leftover after parsing attributes in process `syz.0.920'.
[  484.566373][ T5848] Bluetooth: hci2: unexpected event for opcode 0x2010
[  485.103099][ T9446] syz.5.910: attempt to access beyond end of device
[  485.103099][ T9446] loop5: rw=2049, sector=177, nr_sectors = 8 limit=128
[  485.214579][ T9446] syz.5.910: attempt to access beyond end of device
[  485.214579][ T9446] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  485.432907][ T9446] syz.5.910: attempt to access beyond end of device
[  485.432907][ T9446] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  485.501453][ T9446] syz.5.910: attempt to access beyond end of device
[  485.501453][ T9446] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128
[  485.523898][ T9446] syz.5.910: attempt to access beyond end of device
[  485.523898][ T9446] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128
[  485.537769][ T9446] syz.5.910: attempt to access beyond end of device
[  485.537769][ T9446] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128
[  485.822715][ T9490] loop3: detected capacity change from 0 to 32768
[  485.891243][ T9490] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  485.905020][ T9446] syz.5.910: attempt to access beyond end of device
[  485.905020][ T9446] loop5: rw=2049, sector=273, nr_sectors = 8 limit=128
[  485.961554][ T9490] XFS (loop3): Ending clean mount
[  485.996796][ T9446] syz.5.910: attempt to access beyond end of device
[  485.996796][ T9446] loop5: rw=2049, sector=289, nr_sectors = 8 limit=128
[  487.234474][   T10] cdc_ncm 6-1:1.1: bind() failure
[  487.259974][   T10] usb 6-1: USB disconnect, device number 6
[  487.358519][ T5841] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  487.435267][ T9512] loop0: detected capacity change from 0 to 128
[  487.646314][ T9514] netlink: 4 bytes leftover after parsing attributes in process `syz.1.926'.
[  488.995320][ T9527] netlink: 28 bytes leftover after parsing attributes in process `syz.3.928'.
[  489.019358][ T5848] Bluetooth: hci4: unexpected event for opcode 0x2010
[  489.691925][ T9529] loop3: detected capacity change from 0 to 512
[  489.699145][ T9526] loop5: detected capacity change from 0 to 1024
[  489.729813][ T9529] EXT4-fs: Ignoring removed mblk_io_submit option
[  489.781219][ T9529] EXT4-fs: inline encryption not supported
[  489.791617][ T9526] netlink: 'syz.5.930': attribute type 10 has an invalid length.
[  489.820377][ T9529] EXT4-fs: Ignoring removed mblk_io_submit option
[  489.966095][ T9529] EXT4-fs (loop3): Test dummy encryption mode enabled
[  489.974874][ T9526] syz_tun: entered promiscuous mode
[  489.985823][ T9529] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  490.026084][ T9529] EXT4-fs (loop3): 1 truncate cleaned up
[  490.039615][ T9529] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  490.887570][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  490.899392][ T9526] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  490.924698][ T9534] loop0: detected capacity change from 0 to 4096
[  491.228401][ T9538] loop3: detected capacity change from 0 to 128
[  491.273423][ T9538] vfat: Unknown parameter '00000000000000000000003'
[  492.213141][ T9545] random: crng reseeded on system resumption
[  492.803468][ T9552] netlink: 48 bytes leftover after parsing attributes in process `syz.3.937'.
[  493.699408][ T9556] loop3: detected capacity change from 0 to 512
[  493.864557][ T9560] netlink: 28 bytes leftover after parsing attributes in process `syz.4.938'.
[  493.889229][ T5848] Bluetooth: hci1: unexpected event for opcode 0x2010
[  494.368528][ T9556] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  494.455260][ T9556] ext4 filesystem being mounted at /194/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  494.758378][ T9567] loop1: detected capacity change from 0 to 2048
[  494.776607][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.4.943'.
[  494.802616][ T9572] netlink: 24 bytes leftover after parsing attributes in process `syz.4.943'.
[  494.828772][ T9574] netlink: 8 bytes leftover after parsing attributes in process `syz.4.943'.
[  494.850474][ T9574] netlink: 24 bytes leftover after parsing attributes in process `syz.4.943'.
[  494.869137][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.983544][ T9582] loop4: detected capacity change from 0 to 128
[  495.990858][ T9582] vfat: Unknown parameter '00000000000000000000003'
[  496.173282][ T9584] loop3: detected capacity change from 0 to 1024
[  496.809453][ T9593] 9p: Bad value for 'rfdno'
[  497.214430][ T9584] netlink: 'syz.3.945': attribute type 10 has an invalid length.
[  497.574168][ T9584] syz_tun: entered promiscuous mode
[  497.698312][ T9584] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  498.539246][ T9605] loop1: detected capacity change from 0 to 256
[  498.751326][ T9605] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010895, chksum : 0x816c887a, utbl_chksum : 0xe619d30d)
[  498.763989][ T9605] exFAT-fs (loop1): failed to load alloc-bitmap
[  498.770294][ T9605] exFAT-fs (loop1): failed to recognize exfat type
[  500.095907][ T9618] loop1: detected capacity change from 0 to 256
[  500.148503][ T9618] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  500.983363][ T9627] loop5: detected capacity change from 0 to 2048
[  501.342523][   T10] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  501.505411][   T10] usb 4-1: config 0 has no interfaces?
[  501.534919][   T10] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  501.702039][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.711483][   T10] usb 4-1: Product: syz
[  501.716028][   T10] usb 4-1: Manufacturer: syz
[  501.729601][   T10] usb 4-1: SerialNumber: syz
[  501.739324][   T10] usb 4-1: config 0 descriptor??
[  502.532103][ T9645] 9p: Bad value for 'rfdno'
[  503.044823][  T795] usb 4-1: USB disconnect, device number 17
[  503.464725][ T9651] hub 1-0:1.0: USB hub found
[  503.472676][ T9651] hub 1-0:1.0: 1 port detected
[  504.335514][ T9656] netlink: 'syz.4.966': attribute type 21 has an invalid length.
[  504.854540][ T9665] loop3: detected capacity change from 0 to 1024
[  504.944182][ T9665] netlink: 'syz.3.968': attribute type 10 has an invalid length.
[  505.421847][ T9672] loop5: detected capacity change from 0 to 2048
[  506.001193][ T9691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.974'.
[  506.090098][ T9692] netlink: 28 bytes leftover after parsing attributes in process `syz.5.973'.
[  506.115146][ T5848] Bluetooth: hci0: unexpected event for opcode 0x2010
[  506.925328][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  506.932079][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  507.273299][ T5848] Bluetooth: Unexpected continuation frame (len 10)
[  507.287908][ T5848] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  508.502599][   T10] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  510.763447][ T9717] loop4: detected capacity change from 0 to 128
[  511.293761][ T9728] loop4: detected capacity change from 0 to 1024
[  511.388384][ T9728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  511.525154][ T9734] QAT: failed to copy from user.
[  512.061564][   T10] usb 4-1: device descriptor read/all, error -71
[  512.106238][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  512.891683][ T9744] netlink: 4 bytes leftover after parsing attributes in process `syz.4.989'.
[  513.373442][ T9749] bond0: (slave syz_tun): Releasing backup interface
[  513.532687][ T9753] netlink: 'syz.0.991': attribute type 10 has an invalid length.
[  513.540488][ T9753] netlink: 2 bytes leftover after parsing attributes in process `syz.0.991'.
[  514.359994][ T9764] loop5: detected capacity change from 0 to 2048
[  514.827878][ T9749] bond0: (slave team0): Releasing backup interface
[  515.775028][ T9749] bridge_slave_0: left allmulticast mode
[  515.780852][ T9749] bridge_slave_0: left promiscuous mode
[  515.861220][ T9749] bridge0: port 1(bridge_slave_0) entered disabled state
[  515.891592][ T9776] loop5: detected capacity change from 0 to 512
[  515.939016][ T9782] netlink: 8 bytes leftover after parsing attributes in process `syz.4.998'.
[  515.951655][ T9749] bridge_slave_1: left allmulticast mode
[  515.958308][ T9776] EXT4-fs: Ignoring removed mblk_io_submit option
[  515.992852][ T9784] netlink: 8 bytes leftover after parsing attributes in process `syz.4.998'.
[  515.998373][ T9776] EXT4-fs: inline encryption not supported
[  516.031205][ T9749] bridge_slave_1: left promiscuous mode
[  516.053105][ T9776] EXT4-fs: Ignoring removed mblk_io_submit option
[  516.072952][ T9749] bridge0: port 2(bridge_slave_1) entered disabled state
[  516.081068][ T9776] EXT4-fs (loop5): Test dummy encryption mode enabled
[  516.103020][ T9776] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  516.133943][ T9749] bond0: (slave bond_slave_0): Releasing backup interface
[  516.143236][ T9776] EXT4-fs (loop5): 1 truncate cleaned up
[  516.154608][ T9776] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  516.180083][ T9749] bond0: (slave bond_slave_1): Releasing backup interface
[  516.922224][ T6193] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  516.967305][ T9749] team0: Port device team_slave_0 removed
[  517.014848][ T8136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.294533][ T6193] usb 2-1: config 0 has no interfaces?
[  517.303054][ T6193] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  517.422860][ T6193] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  517.437637][ T9749] team0: Port device team_slave_1 removed
[  517.454874][ T6193] usb 2-1: Product: syz
[  517.463510][ T9749] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  517.471000][ T6193] usb 2-1: Manufacturer: syz
[  517.479714][ T6193] usb 2-1: SerialNumber: syz
[  517.484707][ T9749] batman_adv: batadv0: Removing interface: batadv_slave_0
[  517.506214][ T6193] usb 2-1: config 0 descriptor??
[  517.534896][ T9749] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  517.561151][ T9749] batman_adv: batadv0: Removing interface: batadv_slave_1
[  517.587831][ T9749] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  517.625893][ T9797] loop5: detected capacity change from 0 to 1024
[  517.635085][ T9753] team0: entered promiscuous mode
[  517.643101][ T9753] batadv1: entered promiscuous mode
[  517.654490][ T9753] 8021q: adding VLAN 0 to HW filter on device team0
[  517.681622][ T9753] bridge0: port 1(team0) entered blocking state
[  517.689819][ T9753] bridge0: port 1(team0) entered disabled state
[  517.705556][ T9797] netlink: 'syz.5.1001': attribute type 10 has an invalid length.
[  517.719311][ T9753] team0: entered allmulticast mode
[  517.725364][ T9753] batadv1: entered allmulticast mode
[  517.752780][ T9753] bridge0: port 1(team0) entered blocking state
[  517.759288][ T9753] bridge0: port 1(team0) entered forwarding state
[  517.902875][ T6193] usb 2-1: USB disconnect, device number 20
[  517.978346][ T6597] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  517.987645][ T6597] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  520.600166][ T9813] loop5: detected capacity change from 0 to 512
[  520.766854][ T9813] EXT4-fs: Ignoring removed oldalloc option
[  520.948313][ T9813] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  521.524770][ T9818] loop1: detected capacity change from 0 to 2048
[  521.658067][ T9813] EXT4-fs (loop5): 1 truncate cleaned up
[  521.708536][ T9813] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  522.484432][ T5848] Bluetooth: hci2: unexpected event for opcode 0x2010
[  522.709984][ T9828] hub 1-0:1.0: USB hub found
[  522.717852][ T9828] hub 1-0:1.0: 1 port detected
[  524.495599][ T8136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  524.643869][ T9839] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1011'.
[  524.882214][ T7534] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  525.744582][ T7534] usb 5-1: Using ep0 maxpacket: 16
[  525.773057][ T7534] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  525.797529][ T7534] usb 5-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  525.818722][ T7534] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  525.848935][ T7534] usb 5-1: config 0 descriptor??
[  526.008058][ T9848] loop5: detected capacity change from 0 to 256
[  529.136493][ T7534] usb 5-1: can't set config #0, error -71
[  529.154050][ T7534] usb 5-1: USB disconnect, device number 21
[  529.165281][ T9848] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  529.185708][ T9847] exFAT-fs (loop5): valid_size(150994954) is greater than size(10)
[  531.485092][ T9867] loop3: detected capacity change from 0 to 2048
[  533.265320][ T5848] Bluetooth: Unexpected continuation frame (len 10)
[  533.272206][ T5848] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  533.499259][ T9881] loop3: detected capacity change from 0 to 512
[  533.515981][ T9881] EXT4-fs: Ignoring removed nobh option
[  533.712503][ T9881] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1022: iget: bad i_size value: 38620345925642
[  533.759888][ T9881] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1022: couldn't read orphan inode 15 (err -117)
[  533.830032][ T9887] netlink: 'syz.0.1024': attribute type 10 has an invalid length.
[  533.845450][ T9887] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1024'.
[  535.562120][ T9891] loop5: detected capacity change from 0 to 512
[  535.588457][ T9891] EXT4-fs: Ignoring removed nobh option
[  535.592358][ T9881] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  535.656033][ T9891] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.1025: iget: bad i_size value: 38620345925642
[  535.799006][ T9891] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.1025: couldn't read orphan inode 15 (err -117)
[  536.533489][ T9891] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  536.636928][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.699229][ T8136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.768905][ T9900] loop0: detected capacity change from 0 to 1024
[  538.409769][ T9912] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1032'.
[  538.575586][ T9915] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1030'.
[  538.643864][ T9914] loop4: detected capacity change from 0 to 2048
[  540.333501][ T9927] QAT: failed to copy from user.
[  540.419841][ T9925] netlink: 'syz.4.1034': attribute type 72 has an invalid length.
[  543.101223][ T9946] loop4: detected capacity change from 0 to 128
[  543.176718][ T9946] vfat: Unknown parameter '00000000000000000000003'
[  543.266338][ T9948] loop3: detected capacity change from 0 to 2048
[  543.475955][ T9948] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  543.632461][ T9948] ext4 filesystem being mounted at /213/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  544.650362][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.930038][ T9957] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1043'.
[  545.214994][ T9962] loop1: detected capacity change from 0 to 2048
[  545.325953][ T9965] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.1046'.
[  546.658169][ T9983] 9p: Bad value for 'rfdno'
[  546.821986][ T9986] loop1: detected capacity change from 0 to 512
[  546.897688][ T9986] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  546.949860][ T9986] EXT4-fs (loop1): invalid journal inode
[  546.973269][ T9986] EXT4-fs (loop1): can't get journal size
[  547.503622][ T9986] EXT4-fs (loop1): 1 truncate cleaned up
[  547.551319][ T9986] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  548.464844][ T9993] EXT4-fs warning (device loop1): ext4_group_add:1736: No reserved GDT blocks, can't resize
[  548.841879][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.979977][ T9995] loop4: detected capacity change from 0 to 1024
[  549.059000][ T9997] loop1: detected capacity change from 0 to 128
[  550.014270][T10004] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1056'.
[  550.249403][T10008] loop4: detected capacity change from 0 to 64
[  550.605986][T10013] loop1: detected capacity change from 0 to 2048
[  552.458782][T10013] Dev loop1: unable to read RDB block 8
[  552.464768][T10013]  loop1: unable to read partition table
[  552.470664][T10013] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[  552.933520][T10024] loop5: detected capacity change from 0 to 256
[  553.363259][T10024] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  554.857819][T10036] loop1: detected capacity change from 0 to 512
[  554.882904][T10036] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  555.355499][T10036] EXT4-fs (loop1): invalid journal inode
[  555.361281][T10036] EXT4-fs (loop1): can't get journal size
[  555.437960][T10036] EXT4-fs (loop1): 1 truncate cleaned up
[  555.445934][T10036] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  555.485790][T10041] loop5: detected capacity change from 0 to 128
[  556.537206][T10048] EXT4-fs warning (device loop1): ext4_group_add:1736: No reserved GDT blocks, can't resize
[  557.249348][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  558.424302][T10059] loop0: detected capacity change from 0 to 1024
[  560.318240][T10069] loop5: detected capacity change from 0 to 2048
[  560.693199][T10073] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1074'.
[  563.076097][T10087] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1078'.
[  563.927219][T10089] loop0: detected capacity change from 0 to 128
[  563.995593][T10091] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  564.200470][T10095] netlink: 'syz.1.1080': attribute type 10 has an invalid length.
[  565.020514][T10095] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1080'.
[  566.823274][   T30] kauditd_printk_skb: 39 callbacks suppressed
[  566.823288][   T30] audit: type=1326 audit(1764051621.017:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10102 comm="syz.0.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  566.934039][   T30] audit: type=1326 audit(1764051621.017:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10102 comm="syz.0.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  567.014613][T10106] loop3: detected capacity change from 0 to 1024
[  567.061979][   T30] audit: type=1326 audit(1764051621.027:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10102 comm="syz.0.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  567.261910][T10113] loop5: detected capacity change from 0 to 2048
[  567.729412][   T30] audit: type=1326 audit(1764051621.027:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10102 comm="syz.0.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  567.767202][T10112] fuse: Invalid rootmode
[  567.837380][   T30] audit: type=1326 audit(1764051621.027:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10102 comm="syz.0.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f557c18f749 code=0x7ffc0000
[  567.914574][T10113] Dev loop5: unable to read RDB block 8
[  567.920317][T10113]  loop5: unable to read partition table
[  567.926439][T10113] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[  568.062266][T10116] loop1: detected capacity change from 0 to 2048
[  568.318357][T10116] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  568.351867][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  568.351940][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  568.408586][T10125] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  568.411803][ T5846] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  568.423883][ T5846] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  568.424944][ T5846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  568.426225][T10116] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  568.426381][ T5846] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  568.807394][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.179340][T10136] loop3: detected capacity change from 0 to 128
[  570.031079][T10143] loop0: detected capacity change from 0 to 512
[  570.040613][T10143] EXT4-fs: Ignoring removed nobh option
[  570.075681][T10143] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1095: iget: bad i_size value: 38620345925642
[  570.161099][T10143] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1095: couldn't read orphan inode 15 (err -117)
[  570.208336][T10143] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  570.512692][ T5848] Bluetooth: hci5: command tx timeout
[  570.611653][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  570.649829][T10124] chnl_net:caif_netlink_parms(): no params data found
[  571.380305][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.968478][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.014935][T10169] loop0: detected capacity change from 0 to 2048
[  572.201064][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.336433][T10124] bridge0: port 1(bridge_slave_0) entered blocking state
[  572.364915][T10124] bridge0: port 1(bridge_slave_0) entered disabled state
[  572.390004][T10124] bridge_slave_0: entered allmulticast mode
[  572.413003][T10124] bridge_slave_0: entered promiscuous mode
[  572.504195][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.554959][T10124] bridge0: port 2(bridge_slave_1) entered blocking state
[  572.580060][T10124] bridge0: port 2(bridge_slave_1) entered disabled state
[  572.588177][ T5848] Bluetooth: hci5: command tx timeout
[  572.690432][T10124] bridge_slave_1: entered allmulticast mode
[  572.714700][T10124] bridge_slave_1: entered promiscuous mode
[  573.852881][T10124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  573.910623][T10124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  574.714952][ T5848] Bluetooth: hci5: command tx timeout
[  575.857280][T10124] team0: Port device team_slave_0 added
[  576.884445][T10124] team0: Port device team_slave_1 added
[  577.150689][ T5848] Bluetooth: hci5: command tx timeout
[  577.509743][T10193] loop3: detected capacity change from 0 to 128
[  577.528015][T10124] batman_adv: batadv0: Adding interface: batadv_slave_0
[  577.542954][T10124] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  577.629498][T10124] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  577.648509][T10124] batman_adv: batadv0: Adding interface: batadv_slave_1
[  577.657193][T10124] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  577.735027][T10124] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  578.547734][   T12] bridge_slave_1: left allmulticast mode
[  578.613666][   T12] bridge_slave_1: left promiscuous mode
[  578.619549][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  578.723830][   T12] bridge_slave_0: left allmulticast mode
[  578.734029][   T12] bridge_slave_0: left promiscuous mode
[  578.739963][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  578.962717][ T6009] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  579.234201][ T6009] usb 2-1: Using ep0 maxpacket: 8
[  579.299137][ T6009] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  579.460039][ T6009] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  579.575561][ T6009] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  579.593106][T10209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  579.609891][ T6009] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  579.626303][ T6009] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  579.637589][ T6009] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  579.853747][T10207] netlink: 'syz.1.1111': attribute type 10 has an invalid length.
[  579.861658][T10207] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1111'.
[  580.313660][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  580.348380][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  580.396716][   T12] bond0 (unregistering): (slave team0): Releasing backup interface
[  580.431567][   T12] bond0 (unregistering): Released all slaves
[  580.924235][T10207] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  581.182664][   T12] tipc: Left network mode
[  581.257588][T10234] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1115'.
[  581.270411][T10124] hsr_slave_0: entered promiscuous mode
[  581.299837][T10124] hsr_slave_1: entered promiscuous mode
[  581.333681][T10124] debugfs: 'hsr0' already exists in 'hsr'
[  581.340208][T10124] Cannot create hsr debugfs directory
[  582.529813][ T6009] usb 2-1: usb_control_msg returned -71
[  582.577874][ T6009] usbtmc 2-1:16.0: can't read capabilities
[  582.626121][T10241] loop0: detected capacity change from 0 to 128
[  582.684993][ T6009] usb 2-1: USB disconnect, device number 21
[  582.785939][T10246] loop1: detected capacity change from 0 to 128
[  585.129260][   T12] hsr_slave_0: left promiscuous mode
[  585.141812][T10271] loop1: detected capacity change from 0 to 128
[  585.173664][   T12] hsr_slave_1: left promiscuous mode
[  585.179985][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  585.352846][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  585.766370][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  585.782444][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  585.921934][T10278] loop5: detected capacity change from 0 to 256
[  585.928420][   T12] veth1_macvtap: left promiscuous mode
[  585.937886][   T12] veth0_macvtap: left promiscuous mode
[  585.974347][   T12] veth1_vlan: left promiscuous mode
[  585.997252][   T12] veth0_vlan: left promiscuous mode
[  586.056162][T10278] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  586.153879][T10278] exFAT-fs (loop5): valid_size(150994954) is greater than size(10)
[  587.708491][ T6597] bio_check_eod: 4 callbacks suppressed
[  587.708511][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.708511][ T6597] loop1: rw=1, sector=145, nr_sectors = 56 limit=128
[  587.731796][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.731796][ T6597] loop1: rw=1, sector=209, nr_sectors = 8 limit=128
[  587.746261][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.746261][ T6597] loop1: rw=1, sector=225, nr_sectors = 8 limit=128
[  587.760022][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.760022][ T6597] loop1: rw=1, sector=241, nr_sectors = 8 limit=128
[  587.827184][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.827184][ T6597] loop1: rw=1, sector=257, nr_sectors = 8 limit=128
[  587.862093][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.862093][ T6597] loop1: rw=1, sector=273, nr_sectors = 8 limit=128
[  587.886051][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.886051][ T6597] loop1: rw=1, sector=289, nr_sectors = 8 limit=128
[  587.921676][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.921676][ T6597] loop1: rw=1, sector=305, nr_sectors = 8 limit=128
[  587.945742][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.945742][ T6597] loop1: rw=1, sector=321, nr_sectors = 8 limit=128
[  587.965329][ T6597] kworker/u8:21: attempt to access beyond end of device
[  587.965329][ T6597] loop1: rw=1, sector=337, nr_sectors = 8 limit=128
[  588.293407][ T5911] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  588.542520][ T5911] usb 1-1: Using ep0 maxpacket: 8
[  588.557667][ T5911] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  588.572596][ T5911] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  588.586920][ T5911] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  588.597334][ T5911] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  588.622521][ T5911] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  588.640236][ T5911] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  589.062893][T10297] loop1: detected capacity change from 0 to 256
[  589.208447][T10289] netlink: 'syz.0.1127': attribute type 10 has an invalid length.
[  589.221878][T10297] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  589.222755][T10289] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1127'.
[  589.491492][   T12] team0 (unregistering): Port device team_slave_1 removed
[  589.550545][   T12] team0 (unregistering): Port device team_slave_0 removed
[  590.565127][ T5911] usb 1-1: usb_control_msg returned -71
[  590.852766][ T5911] usbtmc 1-1:16.0: can't read capabilities
[  591.049421][ T5911] usb 1-1: USB disconnect, device number 13
[  591.308136][T10315] loop3: detected capacity change from 0 to 128
[  591.344251][T10315] vfat: Unknown parameter '00000000000000000000003'
[  591.487021][T10124] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  592.054532][T10124] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  592.541975][T10322] loop0: detected capacity change from 0 to 128
[  592.621352][T10322] vfat: Unknown parameter '00000000000000000000003'
[  592.713267][T10124] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  593.331559][T10124] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  594.531468][T10342] loop3: detected capacity change from 0 to 512
[  594.567407][T10342] EXT4-fs: Ignoring removed nobh option
[  594.636789][T10342] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1135: iget: bad i_size value: 38620345925642
[  594.654140][T10124] 8021q: adding VLAN 0 to HW filter on device bond0
[  594.739883][T10124] 8021q: adding VLAN 0 to HW filter on device team0
[  594.766030][T10342] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1135: couldn't read orphan inode 15 (err -117)
[  594.821700][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.829019][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  594.855017][T10342] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  594.898136][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.905415][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  595.738242][   T30] audit: type=1804 audit(1764051650.127:297): pid=10359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1135" name="/newroot/229/file1/bus" dev="loop3" ino=18 res=1 errno=0
[  595.892469][T10346] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  596.538496][T10366] loop5: detected capacity change from 0 to 256
[  596.834578][T10366] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  597.155989][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.288975][T10124] 8021q: adding VLAN 0 to HW filter on device batadv0
[  597.598443][T10378] QAT: failed to copy from user.
[  600.722486][ T6594] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  600.929357][ T6594] usb 4-1: Using ep0 maxpacket: 8
[  600.950151][ T6594] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  600.996451][ T6594] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  601.064323][ T6594] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  601.102685][ T6594] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  601.153504][ T6594] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  601.177862][ T6594] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  601.286733][T10124] veth0_vlan: entered promiscuous mode
[  601.499345][T10124] veth1_vlan: entered promiscuous mode
[  601.526341][T10386] netlink: 'syz.3.1141': attribute type 10 has an invalid length.
[  601.573425][T10386] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1141'.
[  601.623622][T10386] team0: entered promiscuous mode
[  601.639840][T10386] team0: entered allmulticast mode
[  601.688006][T10386] team_slave_0: entered allmulticast mode
[  601.712743][T10386] team_slave_1: entered allmulticast mode
[  601.719829][T10386] bridge0: port 3(team0) entered blocking state
[  601.759289][T10386] bridge0: port 3(team0) entered disabled state
[  601.833675][T10386] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  602.015458][T10124] veth0_macvtap: entered promiscuous mode
[  602.085566][T10124] veth1_macvtap: entered promiscuous mode
[  602.234145][ T6594] usb 4-1: usb_control_msg returned -71
[  602.239824][ T6594] usbtmc 4-1:16.0: can't read capabilities
[  602.243806][T10124] batman_adv: batadv0: Interface activated: batadv_slave_0
[  602.286725][T10124] batman_adv: batadv0: Interface activated: batadv_slave_1
[  602.344008][ T6594] usb 4-1: USB disconnect, device number 20
[  602.374495][ T7607] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  602.406786][ T7607] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  602.444396][ T7607] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  602.464347][ T7607] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  603.428998][T10421] loop5: detected capacity change from 0 to 1024
[  603.532230][ T6006] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  603.571447][ T6006] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  603.602129][T10423] loop3: detected capacity change from 0 to 1024
[  605.222633][ T1940] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  605.378087][ T1940] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  605.557559][T10434] input: syz1 as /devices/virtual/input/input16
[  605.866954][T10441] loop6: detected capacity change from 0 to 1024
[  606.595544][T10447] loop0: detected capacity change from 0 to 512
[  606.603181][T10447] EXT4-fs: Ignoring removed nobh option
[  606.771588][   T13] hfsplus: b-tree write err: -5, ino 3
[  606.868000][T10447] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1151: iget: bad i_size value: 38620345925642
[  606.886473][T10450] loop3: detected capacity change from 0 to 128
[  606.943324][T10447] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1151: couldn't read orphan inode 15 (err -117)
[  606.990720][T10447] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.379559][   T30] audit: type=1804 audit(1764051662.987:298): pid=10465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1151" name="/newroot/244/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  608.611307][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.645696][T10468] loop1: detected capacity change from 0 to 128
[  608.653563][T10467] hub 1-0:1.0: USB hub found
[  608.763883][T10467] hub 1-0:1.0: 1 port detected
[  608.888993][T10470] netlink: 'syz.5.1155': attribute type 10 has an invalid length.
[  608.973799][T10470] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1155'.
[  609.019855][T10470] team0: entered promiscuous mode
[  609.175679][T10470] team_slave_0: entered promiscuous mode
[  609.181547][T10470] team_slave_1: entered promiscuous mode
[  609.187885][ T4479] bio_check_eod: 96 callbacks suppressed
[  609.187899][ T4479] kworker/u8:12: attempt to access beyond end of device
[  609.187899][ T4479] loop3: rw=1, sector=145, nr_sectors = 176 limit=128
[  609.837956][T10470] team0: entered allmulticast mode
[  609.970278][ T4479] kworker/u8:12: attempt to access beyond end of device
[  609.970278][ T4479] loop3: rw=1, sector=329, nr_sectors = 8 limit=128
[  609.992583][T10470] team_slave_0: entered allmulticast mode
[  610.001109][T10470] team_slave_1: entered allmulticast mode
[  610.011339][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.011339][ T4479] loop3: rw=1, sector=345, nr_sectors = 8 limit=128
[  610.031130][T10470] bridge0: port 3(team0) entered blocking state
[  610.045532][T10470] bridge0: port 3(team0) entered disabled state
[  610.053308][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.053308][ T4479] loop3: rw=1, sector=361, nr_sectors = 8 limit=128
[  610.085727][T10470] bridge0: port 3(team0) entered blocking state
[  610.092336][T10470] bridge0: port 3(team0) entered forwarding state
[  610.100029][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.100029][ T4479] loop3: rw=1, sector=377, nr_sectors = 8 limit=128
[  610.115983][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.115983][ T4479] loop3: rw=1, sector=393, nr_sectors = 8 limit=128
[  610.134456][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.134456][ T4479] loop3: rw=1, sector=409, nr_sectors = 8 limit=128
[  610.158649][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.158649][ T4479] loop3: rw=1, sector=425, nr_sectors = 8 limit=128
[  610.298763][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.298763][ T4479] loop3: rw=1, sector=441, nr_sectors = 8 limit=128
[  610.947315][ T4479] kworker/u8:12: attempt to access beyond end of device
[  610.947315][ T4479] loop3: rw=1, sector=457, nr_sectors = 8 limit=128
[  611.386770][T10491] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1157'.
[  613.424994][T10513] loop0: detected capacity change from 0 to 128
[  613.471673][T10513] vfat: Unknown parameter '00000000000000000000003'
[  614.538012][T10521] loop5: detected capacity change from 0 to 128
[  615.939057][   T12] bio_check_eod: 27 callbacks suppressed
[  615.939078][   T12] kworker/u8:0: attempt to access beyond end of device
[  615.939078][   T12] loop1: rw=1, sector=145, nr_sectors = 16 limit=128
[  616.013834][   T12] kworker/u8:0: attempt to access beyond end of device
[  616.013834][   T12] loop1: rw=1, sector=169, nr_sectors = 8 limit=128
[  616.049612][T10532] loop0: detected capacity change from 0 to 1024
[  616.062980][   T49] kworker/u8:3: attempt to access beyond end of device
[  616.062980][   T49] loop5: rw=1, sector=145, nr_sectors = 40 limit=128
[  616.087211][   T12] kworker/u8:0: attempt to access beyond end of device
[  616.087211][   T12] loop1: rw=1, sector=185, nr_sectors = 8 limit=128
[  616.143105][   T12] kworker/u8:0: attempt to access beyond end of device
[  616.143105][   T12] loop1: rw=1, sector=201, nr_sectors = 8 limit=128
[  616.184800][   T12] kworker/u8:0: attempt to access beyond end of device
[  616.184800][   T12] loop1: rw=1, sector=217, nr_sectors = 8 limit=128
[  616.198596][   T49] kworker/u8:3: attempt to access beyond end of device
[  616.198596][   T49] loop5: rw=1, sector=193, nr_sectors = 8 limit=128
[  616.209515][   T12] kworker/u8:0: attempt to access beyond end of device
[  616.209515][   T12] loop1: rw=1, sector=233, nr_sectors = 8 limit=128
[  616.240208][   T12] kworker/u8:0: attempt to access beyond end of device
[  616.240208][   T12] loop1: rw=1, sector=249, nr_sectors = 8 limit=128
[  616.262971][   T49] kworker/u8:3: attempt to access beyond end of device
[  616.262971][   T49] loop5: rw=1, sector=209, nr_sectors = 24 limit=128
[  618.339056][ T5848] Bluetooth: hci5: link tx timeout
[  618.345255][ T5848] Bluetooth: hci5: killing stalled connection 11:aa:aa:aa:aa:aa
[  618.605520][T10548] loop6: detected capacity change from 0 to 8
[  618.828918][T10548] squashfs: Unknown parameter '00000000000000000000kO�2�ȹR�iW�l\V�w��yw'
[  619.544279][T10562] loop0: detected capacity change from 0 to 128
[  619.581537][T10562] vfat: Unknown parameter '00000000000000000000003'
[  620.432556][ T5846] Bluetooth: hci5: command 0x0406 tx timeout
[  620.949239][ T5892] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  621.552676][ T5892] usb 2-1: Using ep0 maxpacket: 16
[  621.684290][ T5892] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  621.766414][ T5892] usb 2-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  621.841792][ T5892] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  621.888413][ T5892] usb 2-1: config 0 descriptor??
[  622.162032][ T6193] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  622.175801][T10581] loop6: detected capacity change from 0 to 256
[  622.300661][T10581] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  622.880231][ T6193] usb 4-1: Using ep0 maxpacket: 16
[  622.933895][T10583] input: syz1 as /devices/virtual/input/input17
[  623.022930][ T5892] kye 0003:0458:5017.000D: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  623.105515][ T5892] kye 0003:0458:5017.000D: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.1-1/input0
[  623.158709][ T5892] kye 0003:0458:5017.000D: tablet-enabling feature report not found
[  623.208236][ T5892] kye 0003:0458:5017.000D: tablet enabling failed
[  623.434128][T10570] loop1: detected capacity change from 0 to 32768
[  623.525852][T10570] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  623.540203][T10588] loop6: detected capacity change from 0 to 1024
[  623.632170][T10570] XFS (loop1): Ending clean mount
[  625.187310][T10604] loop5: detected capacity change from 0 to 1024
[  625.216006][   T10] usb 2-1: USB disconnect, device number 22
[  625.271687][ T5834] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  625.347045][ T6193] usb 4-1: device descriptor read/all, error -71
[  629.565613][T10654] random: crng reseeded on system resumption
[  629.602639][ T5911] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  629.672514][   T10] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  629.762621][ T5911] usb 2-1: device descriptor read/64, error -71
[  629.788294][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  629.799705][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  629.822803][   T10] usb 4-1: device descriptor read/64, error -71
[  630.002460][ T5911] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  630.250910][   T10] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  630.312541][ T5911] usb 2-1: device descriptor read/64, error -71
[  631.073934][ T5911] usb usb2-port1: attempt power cycle
[  631.142535][   T10] usb 4-1: device descriptor read/64, error -71
[  631.253979][   T10] usb usb4-port1: attempt power cycle
[  631.377404][T10675] loop5: detected capacity change from 0 to 1024
[  631.433923][ T5911] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  631.443312][T10678] loop0: detected capacity change from 0 to 1024
[  631.860844][ T5911] usb 2-1: device descriptor read/8, error -71
[  631.867411][   T10] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  632.304651][   T10] usb 4-1: device descriptor read/8, error -71
[  632.598001][T10689] loop1: detected capacity change from 0 to 1024
[  633.741751][ T5835] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  633.832754][T10707] loop6: detected capacity change from 0 to 128
[  634.052466][ T5835] usb 1-1: Using ep0 maxpacket: 16
[  634.176862][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  634.674200][ T5835] usb 1-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  634.674229][ T5835] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  634.693347][ T5835] usb 1-1: config 0 descriptor??
[  635.696523][ T5835] kye 0003:0458:5017.000E: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  635.727775][ T5835] kye 0003:0458:5017.000E: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.0-1/input0
[  635.727813][ T5835] kye 0003:0458:5017.000E: tablet-enabling feature report not found
[  635.727831][ T5835] kye 0003:0458:5017.000E: tablet enabling failed
[  636.664109][T10705] loop0: detected capacity change from 0 to 32768
[  636.749990][T10705] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  636.887424][T10705] XFS (loop0): Ending clean mount
[  637.135634][  T149] bio_check_eod: 82 callbacks suppressed
[  637.135655][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.135655][  T149] loop6: rw=1, sector=145, nr_sectors = 56 limit=128
[  637.224845][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.224845][  T149] loop6: rw=1, sector=209, nr_sectors = 8 limit=128
[  637.553054][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.553054][  T149] loop6: rw=1, sector=225, nr_sectors = 16 limit=128
[  637.616658][ T6193] usb 1-1: USB disconnect, device number 14
[  637.636124][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.636124][  T149] loop6: rw=1, sector=249, nr_sectors = 16 limit=128
[  637.704294][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.704294][  T149] loop6: rw=1, sector=273, nr_sectors = 8 limit=128
[  637.789636][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.789636][  T149] loop6: rw=1, sector=289, nr_sectors = 8 limit=128
[  637.990900][  T149] kworker/u8:5: attempt to access beyond end of device
[  637.990900][  T149] loop6: rw=1, sector=305, nr_sectors = 8 limit=128
[  638.004469][  T149] kworker/u8:5: attempt to access beyond end of device
[  638.004469][  T149] loop6: rw=1, sector=321, nr_sectors = 8 limit=128
[  638.017987][  T149] kworker/u8:5: attempt to access beyond end of device
[  638.017987][  T149] loop6: rw=1, sector=337, nr_sectors = 16 limit=128
[  638.182716][  T149] kworker/u8:5: attempt to access beyond end of device
[  638.182716][  T149] loop6: rw=1, sector=361, nr_sectors = 8 limit=128
[  638.209887][ T5832] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  638.668199][T10759] loop6: detected capacity change from 0 to 512
[  638.716342][T10759] EXT4-fs: Ignoring removed mblk_io_submit option
[  638.785575][T10759] EXT4-fs: inline encryption not supported
[  638.795485][ T5815] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  638.904387][T10759] EXT4-fs: Ignoring removed mblk_io_submit option
[  638.924850][T10759] EXT4-fs (loop6): Test dummy encryption mode enabled
[  638.976887][T10759] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  639.028026][T10759] EXT4-fs (loop6): 1 truncate cleaned up
[  639.121644][T10759] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  639.137675][ T5815] usb 6-1: device descriptor read/64, error -71
[  639.393202][ T5815] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  639.715695][T10769] loop0: detected capacity change from 0 to 16
[  640.285480][T10769] erofs (device loop0): mounted with root inode @ nid 36.
[  640.324821][T10766] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36
[  640.336512][T10766] erofs (device loop0): read error -117 @ 43 of nid 36
[  640.342572][ T5815] usb 6-1: device descriptor read/64, error -71
[  640.473942][ T5815] usb usb6-port1: attempt power cycle
[  641.094833][ T5815] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  641.324369][ T5815] usb 6-1: device descriptor read/8, error -71
[  642.404243][T10791] loop5: detected capacity change from 0 to 1024
[  642.488666][T10792] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  642.553020][T10796] netlink: 'syz.1.1214': attribute type 10 has an invalid length.
[  642.571206][T10796] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1214'.
[  642.685891][T10794] loop0: detected capacity change from 0 to 1024
[  643.579595][T10124] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  644.042700][ T7534] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  644.179783][ T5892] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  644.198153][ T5832] hfsplus: bad catalog folder thread
[  644.235246][ T5832] hfsplus: bad catalog folder thread
[  644.267738][T10811] 9p: Bad value for 'rfdno'
[  644.282623][ T7534] usb 4-1: Using ep0 maxpacket: 16
[  644.444917][ T7534] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  644.465402][ T5892] usb 2-1: Using ep0 maxpacket: 16
[  644.561383][ T5892] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  644.618003][ T7534] usb 4-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  644.679927][ T5892] usb 2-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  644.788511][ T7534] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.834994][ T5892] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.948469][ T7534] usb 4-1: config 0 descriptor??
[  644.957670][ T5892] usb 2-1: config 0 descriptor??
[  645.073666][T10820] loop5: detected capacity change from 0 to 128
[  645.510033][ T5892] kye 0003:0458:5017.0010: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  645.536643][ T7534] kye 0003:0458:5017.000F: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  645.575819][ T5892] kye 0003:0458:5017.0010: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.1-1/input0
[  645.575859][ T5892] kye 0003:0458:5017.0010: tablet-enabling feature report not found
[  645.575876][ T5892] kye 0003:0458:5017.0010: tablet enabling failed
[  645.633426][ T5835] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  645.640685][ T7534] kye 0003:0458:5017.000F: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.3-1/input0
[  645.640725][ T7534] kye 0003:0458:5017.000F: tablet-enabling feature report not found
[  645.640742][ T7534] kye 0003:0458:5017.000F: tablet enabling failed
[  645.911125][T10807] loop1: detected capacity change from 0 to 32768
[  645.963786][ T5835] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  645.963820][ T5835] usb 6-1: config 1 has no interface number 0
[  645.963864][ T5835] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  645.963892][ T5835] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  645.963919][ T5835] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 134, changing to 11
[  645.963939][ T5835] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 18103, setting to 1024
[  645.966528][ T5835] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  645.966557][ T5835] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  645.966572][ T5835] usb 6-1: Product: syz
[  645.966583][ T5835] usb 6-1: Manufacturer: syz
[  645.966594][ T5835] usb 6-1: SerialNumber: syz
[  646.006713][T10807] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  646.038518][T10807] XFS (loop1): Ending clean mount
[  646.365177][T10820] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  646.548941][ T5815] usb 2-1: USB disconnect, device number 27
[  646.815812][T10826] fido_id[10826]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  647.097102][ T5892] usb 4-1: USB disconnect, device number 27
[  647.159510][T10838] fido_id[10838]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  647.269389][T10841] loop3: detected capacity change from 0 to 512
[  647.270996][T10841] EXT4-fs: Ignoring removed oldalloc option
[  647.282907][T10841] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  647.454369][ T5834] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  647.472189][T10841] EXT4-fs (loop3): 1 truncate cleaned up
[  647.473841][T10841] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  647.880929][T10820] bio_check_eod: 51 callbacks suppressed
[  647.880975][T10820] syz.5.1223: attempt to access beyond end of device
[  647.880975][T10820] loop5: rw=2049, sector=137, nr_sectors = 16 limit=128
[  647.881189][T10820] syz.5.1223: attempt to access beyond end of device
[  647.881189][T10820] loop5: rw=2049, sector=161, nr_sectors = 8 limit=128
[  647.881325][T10820] syz.5.1223: attempt to access beyond end of device
[  647.881325][T10820] loop5: rw=2049, sector=177, nr_sectors = 8 limit=128
[  647.881458][T10820] syz.5.1223: attempt to access beyond end of device
[  647.881458][T10820] loop5: rw=2049, sector=193, nr_sectors = 8 limit=128
[  647.881589][T10820] syz.5.1223: attempt to access beyond end of device
[  647.881589][T10820] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128
[  647.881725][T10820] syz.5.1223: attempt to access beyond end of device
[  647.881725][T10820] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128
[  647.886748][T10820] syz.5.1223: attempt to access beyond end of device
[  647.886748][T10820] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128
[  647.886903][T10820] syz.5.1223: attempt to access beyond end of device
[  647.886903][T10820] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128
[  647.887045][T10820] syz.5.1223: attempt to access beyond end of device
[  647.887045][T10820] loop5: rw=2049, sector=273, nr_sectors = 8 limit=128
[  647.891965][T10820] syz.5.1223: attempt to access beyond end of device
[  647.891965][T10820] loop5: rw=2049, sector=289, nr_sectors = 8 limit=128
[  648.004152][ T5835] cdc_ncm 6-1:1.1: bind() failure
[  648.068333][ T5835] usb 6-1: USB disconnect, device number 11
[  648.088450][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.348019][T10847] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  648.593925][ T7534] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  648.789578][ T7534] usb 2-1: device descriptor read/64, error -71
[  649.022662][ T7534] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  649.162562][ T7534] usb 2-1: device descriptor read/64, error -71
[  649.285307][ T7534] usb usb2-port1: attempt power cycle
[  649.604550][T10860] loop3: detected capacity change from 0 to 512
[  649.605554][T10860] EXT4-fs: Ignoring removed mblk_io_submit option
[  649.605580][T10860] EXT4-fs: inline encryption not supported
[  649.605655][T10860] EXT4-fs: Ignoring removed mblk_io_submit option
[  649.615565][T10860] EXT4-fs (loop3): Test dummy encryption mode enabled
[  649.615592][T10860] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  650.134420][ T7534] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  650.171186][T10868] loop6: detected capacity change from 0 to 2048
[  650.194215][ T7534] usb 2-1: device descriptor read/8, error -71
[  650.196097][T10860] EXT4-fs (loop3): 1 truncate cleaned up
[  650.215521][T10860] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  650.512519][ T7534] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  650.541563][ T7534] usb 2-1: device descriptor read/8, error -71
[  650.642947][ T7534] usb usb2-port1: unable to enumerate USB device
[  650.742190][T10874] loop6: detected capacity change from 0 to 1024
[  650.824304][T10873] loop5: detected capacity change from 0 to 256
[  650.826561][T10873] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  652.720331][T10885] loop5: detected capacity change from 0 to 128
[  654.057782][T10900] IPv6: Can't replace route, no match found
[  655.434693][T10909] loop6: detected capacity change from 0 to 128
[  655.573407][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.852490][  T795] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  656.805771][  T795] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  656.835882][  T795] usb 7-1: config 1 has no interface number 0
[  656.848918][  T795] usb 7-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  656.890916][  T795] usb 7-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  656.975283][  T795] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 134, changing to 11
[  657.020529][T10920] 9p: Bad value for 'rfdno'
[  657.044134][  T795] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 18103, setting to 1024
[  657.095041][  T795] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  657.105836][  T795] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  657.463366][  T795] usb 7-1: Product: syz
[  657.629111][  T795] usb 7-1: Manufacturer: syz
[  657.647701][  T795] usb 7-1: SerialNumber: syz
[  657.958597][ T6226] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  658.510118][T10931] hub 1-0:1.0: USB hub found
[  658.555420][  T795] cdc_ncm 7-1:1.1: bind() failure
[  658.570350][T10931] hub 1-0:1.0: 1 port detected
[  658.604138][ T6226] usb 4-1: device descriptor read/64, error -71
[  658.609195][  T795] usb 7-1: USB disconnect, device number 2
[  660.122838][ T6226] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  661.676912][T10951] loop3: detected capacity change from 0 to 1024
[  662.661453][T10958] loop0: detected capacity change from 0 to 128
[  664.432521][T10964] loop5: detected capacity change from 0 to 16
[  664.459360][T10964] erofs (device loop5): mounted with root inode @ nid 36.
[  664.488583][T10964] erofs (device loop5): bogus lookback distance 1388 @ lcn 42 of nid 36
[  664.625802][T10964] erofs (device loop5): read error -117 @ 43 of nid 36
[  664.825663][T10974] loop3: detected capacity change from 0 to 128
[  665.891342][ T6136] bio_check_eod: 37 callbacks suppressed
[  665.891361][ T6136] kworker/u8:18: attempt to access beyond end of device
[  665.891361][ T6136] loop0: rw=1, sector=145, nr_sectors = 120 limit=128
[  665.954522][ T6136] kworker/u8:18: attempt to access beyond end of device
[  665.954522][ T6136] loop0: rw=1, sector=273, nr_sectors = 8 limit=128
[  666.009052][ T6136] kworker/u8:18: attempt to access beyond end of device
[  666.009052][ T6136] loop0: rw=1, sector=289, nr_sectors = 8 limit=128
[  666.062558][ T6136] kworker/u8:18: attempt to access beyond end of device
[  666.062558][ T6136] loop0: rw=1, sector=305, nr_sectors = 8 limit=128
[  666.092734][ T6136] kworker/u8:18: attempt to access beyond end of device
[  666.092734][ T6136] loop0: rw=1, sector=321, nr_sectors = 8 limit=128
[  666.127034][ T6136] kworker/u8:18: attempt to access beyond end of device
[  666.127034][ T6136] loop0: rw=1, sector=337, nr_sectors = 8 limit=128
[  666.173616][ T6136] kworker/u8:18: attempt to access beyond end of device
[  666.173616][ T6136] loop0: rw=1, sector=353, nr_sectors = 8 limit=128
[  666.200017][ T6136] kworker/u8:18: attempt to access beyond end of device
[  666.200017][ T6136] loop0: rw=1, sector=369, nr_sectors = 8 limit=128
[  666.214596][ T5969] kworker/u8:13: attempt to access beyond end of device
[  666.214596][ T5969] loop3: rw=1, sector=145, nr_sectors = 56 limit=128
[  666.230366][ T5969] kworker/u8:13: attempt to access beyond end of device
[  666.230366][ T5969] loop3: rw=1, sector=209, nr_sectors = 8 limit=128
[  666.249272][T10981] IPv6: Can't replace route, no match found
[  666.282469][   T10] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  666.432597][   T10] usb 6-1: Using ep0 maxpacket: 16
[  666.631970][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  667.317528][   T10] usb 6-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  667.327498][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  667.338543][   T10] usb 6-1: config 0 descriptor??
[  667.385448][T10989] loop3: detected capacity change from 0 to 1024
[  667.494564][    T9] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  667.632557][    T9] usb 1-1: device descriptor read/64, error -71
[  667.786785][   T10] kye 0003:0458:5017.0011: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  667.941284][   T10] kye 0003:0458:5017.0011: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.5-1/input0
[  667.941476][   T10] kye 0003:0458:5017.0011: tablet-enabling feature report not found
[  667.941604][   T10] kye 0003:0458:5017.0011: tablet enabling failed
[  668.193057][    T9] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  668.524811][T10978] loop5: detected capacity change from 0 to 32768
[  668.534658][    T9] usb 1-1: device descriptor read/64, error -71
[  668.613065][T10978] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  668.644501][    T9] usb usb1-port1: attempt power cycle
[  668.675527][T10978] XFS (loop5): Ending clean mount
[  669.877580][    T9] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  670.161368][ T7534] usb 6-1: USB disconnect, device number 12
[  670.180989][ T8136] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  670.275040][    T9] usb 1-1: device descriptor read/8, error -71
[  670.390321][T11018] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1271'.
[  670.457176][T11021] loop0: detected capacity change from 0 to 1024
[  672.927358][T11037] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1275'.
[  673.478939][T11035] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1276'.
[  674.572500][T11042] loop0: detected capacity change from 0 to 1024
[  674.602831][T11042] EXT4-fs (loop0): bad geometry: first data block is 0 with a 1k block and cluster size
[  674.915030][T11050] loop3: detected capacity change from 0 to 8
[  674.925059][T11050] squashfs: Unknown parameter '00000000000000000000kO�2�ȹR�iW�l\V�w��yw'
[  675.205286][T11053] batman_adv: batadv0: Adding interface: dummy0
[  675.211830][T11053] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  675.284730][T11053] batman_adv: batadv0: Interface activated: dummy0
[  675.294595][T11055] loop5: detected capacity change from 0 to 128
[  675.763283][  T795] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  675.962667][  T795] usb 2-1: device descriptor read/64, error -71
[  676.006487][T11061] 9p: Bad value for 'rfdno'
[  676.830912][T11066] loop3: detected capacity change from 0 to 1024
[  676.912458][  T795] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  677.230733][  T795] usb 2-1: device descriptor read/64, error -71
[  677.414709][T11080] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1289'.
[  678.387974][T11066] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  678.401979][  T795] usb usb2-port1: attempt power cycle
[  678.565338][T11087] loop0: detected capacity change from 0 to 512
[  678.579026][T11087] EXT4-fs: Ignoring removed nobh option
[  678.598575][T11087] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1292: iget: bad i_size value: 38620345925642
[  678.618940][T11087] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1292: couldn't read orphan inode 15 (err -117)
[  678.636922][T11087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  679.006660][T11097] loop6: detected capacity change from 0 to 16
[  679.587035][T11097] erofs (device loop6): mounted with root inode @ nid 36.
[  679.632163][T11097] erofs (device loop6): bogus lookback distance 1388 @ lcn 42 of nid 36
[  679.668196][   T30] audit: type=1804 audit(1764051733.877:299): pid=11087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1292" name="/newroot/271/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  679.694527][T11097] erofs (device loop6): read error -117 @ 43 of nid 36
[  680.145836][T11101] loop5: detected capacity change from 0 to 128
[  680.482611][T11104] loop6: detected capacity change from 0 to 8192
[  680.535185][   T30] audit: type=1800 audit(1764051735.397:300): pid=11104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1297" name="file2" dev="loop6" ino=1048649 res=0 errno=0
[  680.593275][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.607545][T11104] bio_check_eod: 194 callbacks suppressed
[  680.607565][T11104] syz.6.1297: attempt to access beyond end of device
[  680.607565][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.620763][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.643629][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.670261][T11104] syz.6.1297: attempt to access beyond end of device
[  680.670261][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.686713][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.695133][T11104] syz.6.1297: attempt to access beyond end of device
[  680.695133][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.708569][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.716931][T11104] syz.6.1297: attempt to access beyond end of device
[  680.716931][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.730364][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.738664][T11104] syz.6.1297: attempt to access beyond end of device
[  680.738664][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.752413][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.760706][T11104] syz.6.1297: attempt to access beyond end of device
[  680.760706][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.774232][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.782543][T11104] syz.6.1297: attempt to access beyond end of device
[  680.782543][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.796528][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.804838][T11104] syz.6.1297: attempt to access beyond end of device
[  680.804838][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.818278][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.826787][T11104] syz.6.1297: attempt to access beyond end of device
[  680.826787][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.840300][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  680.848601][T11104] syz.6.1297: attempt to access beyond end of device
[  680.848601][T11104] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  680.862019][T11104] Buffer I/O error on dev loop6, logical block 57847, async page read
[  682.611570][T11108] loop5: detected capacity change from 0 to 1024
[  684.414311][T11111] loop3: detected capacity change from 0 to 256
[  684.423338][T11111] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  685.103556][ T8136] hfsplus: bad catalog folder thread
[  685.143097][ T8136] hfsplus: bad catalog folder thread
[  686.240464][T11125] xt_hashlimit: max too large, truncated to 1048576
[  686.252300][T11125] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  686.918151][T11128] 9p: Bad value for 'rfdno'
[  687.432650][ T8136] bond0: (slave syz_tun): Releasing backup interface
[  687.537566][T11135] loop3: detected capacity change from 0 to 16
[  688.115166][T11135] erofs (device loop3): mounted with root inode @ nid 36.
[  688.150335][T11133] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36
[  688.162546][  T795] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  688.170678][T11133] erofs (device loop3): read error -117 @ 43 of nid 36
[  688.354593][  T795] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  688.434759][  T795] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  688.490512][  T795] usb 1-1: config 1 has no interface number 0
[  688.532525][  T795] usb 1-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  688.577313][  T795] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  688.602592][  T795] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  688.624814][  T795] usb 1-1: Product: syz
[  688.641147][  T795] usb 1-1: Manufacturer: syz
[  688.645868][  T795] usb 1-1: SerialNumber: syz
[  688.668302][  T795] cdc_ncm 1-1:1.1: NCM or ECM functional descriptors missing
[  688.692666][  T795] cdc_ncm 1-1:1.1: bind() failure
[  688.746366][T11138] bridge0: port 2(bridge_slave_1) entered disabled state
[  688.754427][T11138] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.801839][T11138] batman_adv: batadv0: Interface deactivated: dummy0
[  688.817171][T11138] batman_adv: batadv0: Removing interface: dummy0
[  688.909859][T11138] bridge_slave_0: left allmulticast mode
[  688.916769][T11138] bridge_slave_0: left promiscuous mode
[  688.926585][T11138] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.944208][T11138] bridge_slave_1: left allmulticast mode
[  688.950004][T11138] bridge_slave_1: left promiscuous mode
[  688.956778][T11138] bridge0: port 2(bridge_slave_1) entered disabled state
[  689.130056][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  689.159260][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  689.168235][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  689.189676][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  689.197573][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  689.207527][T11138] bond0: (slave bond_slave_0): Releasing backup interface
[  689.234691][T11138] bond0: (slave bond_slave_1): Releasing backup interface
[  689.827685][T11138] team0: Port device team_slave_0 removed
[  689.841534][T11138] team0: Port device team_slave_1 removed
[  689.851334][T11138] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  689.862175][T11138] batman_adv: batadv0: Removing interface: batadv_slave_0
[  689.873743][T11138] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  689.884280][T11138] batman_adv: batadv0: Removing interface: batadv_slave_1
[  689.901663][T11138] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  691.467890][ T5846] Bluetooth: hci0: command tx timeout
[  691.468388][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  691.480700][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  691.507764][   T60] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  691.661434][    T9] usb 1-1: USB disconnect, device number 19
[  691.719111][T11162] bond0: (slave syz_tun): Releasing backup interface
[  691.853603][T11170] netlink: 'syz.3.1312': attribute type 10 has an invalid length.
[  691.861486][T11170] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1312'.
[  691.896455][T11162] bridge_slave_0: left allmulticast mode
[  691.932540][T11162] bridge_slave_0: left promiscuous mode
[  691.938628][T11162] bridge0: port 1(bridge_slave_0) entered disabled state
[  693.337680][T11162] bridge_slave_1: left allmulticast mode
[  693.388882][T11162] bridge_slave_1: left promiscuous mode
[  693.411635][T11162] bridge0: port 2(bridge_slave_1) entered disabled state
[  693.486769][T11162] bond0: (slave bond_slave_0): Releasing backup interface
[  693.542478][ T5846] Bluetooth: hci0: command tx timeout
[  693.554413][T11162] bond0: (slave bond_slave_1): Releasing backup interface
[  693.588190][T11162] team_slave_0: left allmulticast mode
[  693.605825][T11162] team_slave_0: left promiscuous mode
[  693.636563][T11162] team0: Port device team_slave_0 removed
[  693.661336][T11162] team_slave_1: left allmulticast mode
[  693.679752][T11162] team_slave_1: left promiscuous mode
[  693.713266][T11162] team0: Port device team_slave_1 removed
[  693.777592][T11162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  693.822453][T11162] batman_adv: batadv0: Removing interface: batadv_slave_0
[  693.831670][T11162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  693.840163][T11162] batman_adv: batadv0: Removing interface: batadv_slave_1
[  693.863907][T11162] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  693.948479][   T60] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.985441][T11170] bridge0: port 1(team0) entered blocking state
[  693.991832][T11170] bridge0: port 1(team0) entered disabled state
[  694.046969][T11177] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  694.056488][T11177] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  694.066361][T11177] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  694.329907][   T60] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  694.377987][T11187] syzkaller0: entered promiscuous mode
[  694.392563][T11187] syzkaller0: entered allmulticast mode
[  694.492462][   T60] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.633855][ T5848] Bluetooth: hci0: command tx timeout
[  695.689399][T11206] IPv6: Can't replace route, no match found
[  697.471938][   T60] bridge0: port 3(team0) entered disabled state
[  697.523763][   T60] bridge_slave_1: left allmulticast mode
[  697.528040][T11224] loop1: detected capacity change from 0 to 128
[  697.611685][   T60] bridge_slave_1: left promiscuous mode
[  697.803991][ T5846] Bluetooth: hci0: command tx timeout
[  697.838854][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  698.217906][   T60] bridge_slave_0: left allmulticast mode
[  698.254333][   T60] bridge_slave_0: left promiscuous mode
[  698.260139][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  699.497704][T11244] loop1: detected capacity change from 0 to 16
[  699.535723][T11244] erofs (device loop1): mounted with root inode @ nid 36.
[  699.574953][T11244] erofs (device loop1): bogus lookback distance 1388 @ lcn 42 of nid 36
[  699.589537][T11244] erofs (device loop1): read error -117 @ 43 of nid 36
[  701.013570][T11256] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1332'.
[  702.331421][T11265] IPv6: Can't replace route, no match found
[  702.430180][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  702.448521][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  702.467152][   T60] bond0 (unregistering): Released all slaves
[  702.510861][T11235] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  702.520437][T11235] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  702.530150][T11235] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  702.657713][T11270] 9p: Bad value for 'rfdno'
[  702.823944][   T60] : left promiscuous mode
[  702.998604][T11145] chnl_net:caif_netlink_parms(): no params data found
[  704.010874][   T60] tipc: Left network mode
[  704.573004][T11296] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1339'.
[  705.564216][T11306] loop0: detected capacity change from 0 to 1024
[  705.754362][T11145] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.039837][T11145] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.213804][T11145] bridge_slave_0: entered allmulticast mode
[  706.224950][T11145] bridge_slave_0: entered promiscuous mode
[  706.388282][T11145] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.423523][T11145] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.430883][T11145] bridge_slave_1: entered allmulticast mode
[  706.534744][T11145] bridge_slave_1: entered promiscuous mode
[  707.453424][   T60] hsr_slave_0: left promiscuous mode
[  708.401753][   T60] hsr_slave_1: left promiscuous mode
[  708.419068][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  709.412907][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[  709.493901][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  709.501450][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[  709.679965][   T60] veth1_macvtap: left promiscuous mode
[  709.702519][   T60] veth0_macvtap: left promiscuous mode
[  709.732688][   T60] veth1_vlan: left promiscuous mode
[  709.738116][   T60] veth0_vlan: left promiscuous mode
[  710.788458][T11336] IPv6: Can't replace route, no match found
[  712.488310][   T60] team_slave_1 (unregistering): left promiscuous mode
[  712.496790][   T60] team_slave_1 (unregistering): left allmulticast mode
[  712.506669][   T60] team0 (unregistering): Port device team_slave_1 removed
[  712.618205][   T60] team_slave_0 (unregistering): left promiscuous mode
[  712.626394][   T60] team_slave_0 (unregistering): left allmulticast mode
[  712.765468][   T60] team0 (unregistering): Port device team_slave_0 removed
[  713.303755][T11334] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  713.313609][T11334] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  713.323262][T11334] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  713.457893][T11145] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  713.535461][T11145] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  714.304008][T11355] loop6: detected capacity change from 0 to 256
[  714.313926][T11355] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  714.340519][T11145] team0: Port device team_slave_0 added
[  714.428661][T11145] team0: Port device team_slave_1 added
[  715.064255][T11145] batman_adv: batadv0: Adding interface: batadv_slave_0
[  715.071522][T11145] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  715.245209][T11145] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  715.474468][T11145] batman_adv: batadv0: Adding interface: batadv_slave_1
[  715.481489][T11145] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  715.633528][T11145] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  715.653499][  T106] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  715.823194][T11382] loop3: detected capacity change from 0 to 256
[  715.882900][  T106] usb 2-1: Using ep0 maxpacket: 16
[  715.904545][ T6193] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  715.921615][  T106] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[  715.950746][  T106] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  715.963394][T11382] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  716.015462][T11145] hsr_slave_0: entered promiscuous mode
[  716.029101][T11145] hsr_slave_1: entered promiscuous mode
[  716.063490][T11145] debugfs: 'hsr0' already exists in 'hsr'
[  716.069255][T11145] Cannot create hsr debugfs directory
[  716.103074][  T106] usb 2-1: config 0 has no interface number 0
[  716.122427][ T6193] usb 1-1: Using ep0 maxpacket: 16
[  716.136517][ T6193] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  716.192700][  T106] usb 2-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  716.202021][ T6193] usb 1-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[  716.214726][  T106] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  716.252536][ T6193] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  716.260705][  T106] usb 2-1: Product: syz
[  716.348200][  T106] usb 2-1: Manufacturer: syz
[  716.380981][ T6193] usb 1-1: config 0 descriptor??
[  716.388375][  T106] usb 2-1: SerialNumber: syz
[  716.457788][  T106] usb 2-1: config 0 descriptor??
[  716.499580][  T106] uvcvideo 2-1:0.105: probe with driver uvcvideo failed with error -22
[  716.763645][T11116] usb 2-1: USB disconnect, device number 35
[  716.823473][ T6193] kye 0003:0458:5017.0012: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  716.977853][ T6193] kye 0003:0458:5017.0012: hidraw0: USB HID v10.03 Device [HID 0458:5017] on usb-dummy_hcd.0-1/input0
[  717.214828][T11378] loop0: detected capacity change from 0 to 32768
[  717.222726][ T6193] kye 0003:0458:5017.0012: tablet-enabling feature report not found
[  717.233055][ T6193] kye 0003:0458:5017.0012: tablet enabling failed
[  717.369703][T11378] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  717.438168][T11378] XFS (loop0): Ending clean mount
[  717.976212][T11116] usb 1-1: USB disconnect, device number 20
[  718.055536][T11393] fido_id[11393]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  718.185496][T11145] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  718.280413][T11145] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  718.319579][T11145] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  718.355352][T11145] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  718.637479][ T5832] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  718.702664][ T6594] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  718.738701][T11145] 8021q: adding VLAN 0 to HW filter on device bond0
[  718.882429][ T6594] usb 2-1: Using ep0 maxpacket: 8
[  718.911975][T11145] 8021q: adding VLAN 0 to HW filter on device team0
[  718.928837][ T6594] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  719.008196][ T6594] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  719.060272][ T5969] bridge0: port 1(bridge_slave_0) entered blocking state
[  719.067559][ T5969] bridge0: port 1(bridge_slave_0) entered forwarding state
[  719.077544][ T6594] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  719.135401][ T6594] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  719.207789][ T4479] bridge0: port 2(bridge_slave_1) entered blocking state
[  719.215103][ T4479] bridge0: port 2(bridge_slave_1) entered forwarding state
[  719.248078][ T6594] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  719.286473][ T6594] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  719.573295][ T6594] usb 2-1: GET_CAPABILITIES returned 0
[  719.619824][ T6594] usbtmc 2-1:16.0: can't read capabilities
[  719.763606][T11405] netlink: 'syz.1.1357': attribute type 10 has an invalid length.
[  719.796577][T11405] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1357'.
[  719.863248][T11405] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  719.924893][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.934053][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.943269][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.954986][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.964130][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.973268][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.982390][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  719.996034][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.005169][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.014335][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.057192][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.066365][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.075503][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.084645][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.803875][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  720.813045][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  721.002585][ T6193] usb 2-1: USB disconnect, device number 36
[  721.618672][T11145] 8021q: adding VLAN 0 to HW filter on device batadv0
[  722.357529][T11145] veth0_vlan: entered promiscuous mode
[  722.453430][T11145] veth1_vlan: entered promiscuous mode
[  722.673114][T11145] veth0_macvtap: entered promiscuous mode
[  722.719989][T11145] veth1_macvtap: entered promiscuous mode
[  722.883483][T11145] batman_adv: batadv0: Interface activated: batadv_slave_0
[  722.998275][T11145] batman_adv: batadv0: Interface activated: batadv_slave_1
[  723.040572][ T6460] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  723.063945][ T6460] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  723.140093][ T6460] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  723.201117][ T6460] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  723.298412][ T5969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  723.315694][ T5969] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  723.444931][  T214] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  723.468006][  T214] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  723.961992][T11493] loop7: detected capacity change from 0 to 128
[  724.008390][T11493] vfat: Unknown parameter '00000000000000000000003'
[  725.485557][ T5815] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  725.661472][ T5815] usb 4-1: Using ep0 maxpacket: 16
[  725.942558][    T9] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  726.103976][   T10] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  726.123018][    T9] usb 2-1: Using ep0 maxpacket: 8
[  726.136723][ T5815] usb 4-1: device descriptor read/all, error -71
[  726.145726][    T9] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  726.161315][    T9] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  726.193402][    T9] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  726.227487][    T9] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  726.254272][    T9] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  726.282437][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  726.302601][   T10] usb 1-1: Using ep0 maxpacket: 32
[  726.310444][   T10] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  726.329366][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  726.376690][   T10] usb 1-1: config 0 descriptor??
[  726.640769][    T9] usb 2-1: GET_CAPABILITIES returned 0
[  726.647076][   T10] dvb-usb: found a 'Elgato EyeTV DTT' in cold state, will try to load a firmware
[  726.662522][    T9] usbtmc 2-1:16.0: can't read capabilities
[  726.709356][   T10] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  726.735234][   T10] dib0700: firmware download failed at 7 with -22
[  727.483407][T11513] netlink: 'syz.1.1372': attribute type 10 has an invalid length.
[  727.491783][T11513] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1372'.
[  727.503432][T11513] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  727.552476][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.561704][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.570786][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.579886][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.596432][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.606534][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.618288][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.627440][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.636634][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.647231][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.656361][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.665472][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.674675][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.688591][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.697739][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.706854][    C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  727.725360][T11526] loop3: detected capacity change from 0 to 1024
[  727.819004][T11116] usb 2-1: USB disconnect, device number 37
[  727.913053][T11528] 9p: Bad value for 'rfdno'
[  728.130298][T11533] loop3: detected capacity change from 0 to 512
[  728.226348][T11533] EXT4-fs: Ignoring removed mblk_io_submit option
[  728.282967][T11533] EXT4-fs: inline encryption not supported
[  728.289543][T11533] EXT4-fs: Ignoring removed mblk_io_submit option
[  728.326344][T11533] EXT4-fs (loop3): Test dummy encryption mode enabled
[  728.372994][T11533] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  728.463752][T11533] EXT4-fs (loop3): 1 truncate cleaned up
[  728.535621][T11533] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  728.623980][T11539] loop1: detected capacity change from 0 to 128
[  729.486385][    T9] usb 1-1: USB disconnect, device number 21
[  729.810689][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  731.055858][   T60] bio_check_eod: 30525 callbacks suppressed
[  731.055879][   T60] kworker/u8:4: attempt to access beyond end of device
[  731.055879][   T60] loop1: rw=1, sector=145, nr_sectors = 8 limit=128
[  732.282756][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.282756][   T60] loop1: rw=1, sector=161, nr_sectors = 8 limit=128
[  732.308815][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.308815][   T60] loop1: rw=1, sector=177, nr_sectors = 8 limit=128
[  732.326569][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.326569][   T60] loop1: rw=1, sector=193, nr_sectors = 8 limit=128
[  732.368380][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.368380][   T60] loop1: rw=1, sector=209, nr_sectors = 8 limit=128
[  732.394111][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.394111][   T60] loop1: rw=1, sector=225, nr_sectors = 8 limit=128
[  732.413132][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.413132][   T60] loop1: rw=1, sector=241, nr_sectors = 8 limit=128
[  732.506843][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.506843][   T60] loop1: rw=1, sector=257, nr_sectors = 8 limit=128
[  732.666882][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.666882][   T60] loop1: rw=1, sector=273, nr_sectors = 8 limit=128
[  732.681041][   T60] kworker/u8:4: attempt to access beyond end of device
[  732.681041][   T60] loop1: rw=1, sector=289, nr_sectors = 8 limit=128
[  735.391895][T11583] loop1: detected capacity change from 0 to 1024
[  735.412465][ T6594] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  735.596436][ T6594] usb 1-1: Using ep0 maxpacket: 8
[  735.622591][ T5815] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  735.630461][ T6594] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  735.652625][ T6594] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  735.672997][ T6594] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  735.692416][ T6594] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  735.733740][ T6594] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  735.768637][ T6594] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  735.792496][ T5815] usb 4-1: Using ep0 maxpacket: 32
[  735.805758][ T5815] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  735.843169][ T5815] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.104477][ T6594] usb 1-1: GET_CAPABILITIES returned 0
[  736.110343][ T6594] usbtmc 1-1:16.0: can't read capabilities
[  736.142059][ T5815] usb 4-1: config 0 descriptor??
[  736.638733][ T5815] dvb-usb: found a 'Elgato EyeTV DTT' in cold state, will try to load a firmware
[  736.933427][ T5815] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  736.942211][ T5815] dib0700: firmware download failed at 7 with -22
[  737.040345][T11611] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1395'.
[  737.061348][T11581] netlink: 'syz.0.1389': attribute type 10 has an invalid length.
[  737.112541][T11581] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1389'.
[  737.164908][T11612] loop7: detected capacity change from 0 to 1024
[  737.226453][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.235731][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.244865][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.267301][T11612] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  737.316110][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.325286][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.334405][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.348739][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.357900][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.367032][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.381110][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.390268][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.399472][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.408593][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.429919][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.439624][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  737.448740][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  737.488010][ T6193] usb 1-1: USB disconnect, device number 22
[  737.523846][   T30] audit: type=1326 audit(1764051792.387:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  737.613686][T11609] loop7: detected capacity change from 0 to 1024
[  737.673929][T11609] hfsplus: Bad value for 'gid'
[  737.680853][   T30] audit: type=1326 audit(1764051792.407:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  737.746158][T11616] loop1: detected capacity change from 0 to 128
[  737.780387][   T30] audit: type=1326 audit(1764051792.497:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  737.826774][T11616] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  737.852799][   T30] audit: type=1326 audit(1764051792.507:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11619 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f522d5c2005 code=0x7ffc0000
[  737.915415][T11616] ext4 filesystem being mounted at /284/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  738.528292][   T30] audit: type=1326 audit(1764051792.497:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  738.572427][   T30] audit: type=1326 audit(1764051792.527:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  738.650793][T11116] usb 4-1: USB disconnect, device number 32
[  739.365594][   T30] audit: type=1326 audit(1764051792.537:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  739.389423][   T30] audit: type=1326 audit(1764051792.537:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  739.456799][   T30] audit: type=1326 audit(1764051792.537:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  739.537047][   T30] audit: type=1326 audit(1764051792.577:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11614 comm="syz.1.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  739.646215][T11644] 9p: Bad value for 'rfdno'
[  739.735633][ T5834] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  740.671639][T11654] loop1: detected capacity change from 0 to 1024
[  742.159052][T11680] loop0: detected capacity change from 0 to 1024
[  742.207576][T11681] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1412'.
[  742.229124][T11681] netlink: 'syz.1.1412': attribute type 10 has an invalid length.
[  742.243791][T11681] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1412'.
[  742.305246][T11680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  743.050944][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  743.050963][   T30] audit: type=1326 audit(1764051797.907:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.118841][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.169965][   T30] audit: type=1326 audit(1764051797.937:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.254340][T11698] loop1: detected capacity change from 0 to 128
[  743.324839][   T30] audit: type=1326 audit(1764051798.017:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.427540][   T30] audit: type=1326 audit(1764051798.017:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.492418][   T30] audit: type=1326 audit(1764051798.017:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11700 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f522d5c2005 code=0x7ffc0000
[  743.527039][T11698] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  743.539202][   T30] audit: type=1326 audit(1764051798.107:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.539258][   T30] audit: type=1326 audit(1764051798.107:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.539307][   T30] audit: type=1326 audit(1764051798.107:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.663151][T11698] ext4 filesystem being mounted at /288/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  743.918616][   T30] audit: type=1326 audit(1764051798.107:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  743.991797][   T30] audit: type=1326 audit(1764051798.107:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.1.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  744.065113][T11713] 9p: Bad value for 'rfdno'
[  744.287334][ T5834] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  744.342966][T11715] loop0: detected capacity change from 0 to 128
[  744.615372][T11720] loop1: detected capacity change from 0 to 1024
[  747.834487][T11746] loop3: detected capacity change from 0 to 1024
[  748.239291][T11751] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1423'.
[  748.264680][T11751] netlink: 'syz.3.1423': attribute type 10 has an invalid length.
[  748.285190][T11751] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1423'.
[  748.315499][T11751] bridge0: port 1(team0) entered blocking state
[  748.342928][T11751] bridge0: port 1(team0) entered disabled state
[  749.073462][T11757] loop3: detected capacity change from 0 to 1024
[  749.165037][T11757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  749.665083][T11768] loop6: detected capacity change from 0 to 128
[  749.990240][ T5841] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  750.155016][   T30] kauditd_printk_skb: 31 callbacks suppressed
[  750.155035][   T30] audit: type=1326 audit(1764051805.017:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  750.328306][T11777] loop1: detected capacity change from 0 to 128
[  750.349520][   T30] audit: type=1326 audit(1764051805.017:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  750.429328][   T30] audit: type=1326 audit(1764051805.247:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  750.485572][   T30] audit: type=1326 audit(1764051805.247:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  750.496511][T11777] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  750.634318][   T30] audit: type=1326 audit(1764051805.247:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11779 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f522d5c2005 code=0x7ffc0000
[  750.675290][T11777] ext4 filesystem being mounted at /291/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  750.712574][   T30] audit: type=1326 audit(1764051805.397:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11779 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  750.861015][   T30] audit: type=1326 audit(1764051805.647:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f522d52b829 code=0x7ffc0000
[  750.888345][   T30] audit: type=1326 audit(1764051805.647:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  750.944593][   T30] audit: type=1326 audit(1764051805.667:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  751.010804][ T1940] bio_check_eod: 69 callbacks suppressed
[  751.010826][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.010826][ T1940] loop0: rw=1, sector=153, nr_sectors = 8 limit=128
[  751.036760][   T30] audit: type=1326 audit(1764051805.667:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11773 comm="syz.1.1427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522d58f749 code=0x7ffc0000
[  751.060764][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.060764][ T1940] loop0: rw=1, sector=169, nr_sectors = 8 limit=128
[  751.086718][ T5834] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  751.097116][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.097116][ T1940] loop0: rw=1, sector=185, nr_sectors = 8 limit=128
[  751.181779][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.181779][ T1940] loop0: rw=1, sector=201, nr_sectors = 8 limit=128
[  751.223877][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.223877][ T1940] loop0: rw=1, sector=217, nr_sectors = 8 limit=128
[  751.321724][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.321724][ T1940] loop0: rw=1, sector=233, nr_sectors = 8 limit=128
[  751.348865][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.348865][ T1940] loop0: rw=1, sector=249, nr_sectors = 8 limit=128
[  751.365827][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.365827][ T1940] loop0: rw=1, sector=265, nr_sectors = 8 limit=128
[  751.380546][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.380546][ T1940] loop0: rw=1, sector=281, nr_sectors = 8 limit=128
[  751.397408][ T1940] kworker/u8:8: attempt to access beyond end of device
[  751.397408][ T1940] loop0: rw=1, sector=297, nr_sectors = 8 limit=128
[  751.796037][T11791] loop0: detected capacity change from 0 to 1024
[  752.667852][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  752.675821][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  861.222328][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  861.229343][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P11808/1:b..l P5195/1:b..l P11145/1:b..l
[  861.240341][    C0] rcu: 	(detected by 0, t=10503 jiffies, g=57409, q=364 ncpus=2)
[  861.248120][    C0] task:syz-executor    state:R  running task     stack:20904 pid:11145 tgid:11145 ppid:11139  task_flags:0x400140 flags:0x00080000
[  861.263114][    C0] Call Trace:
[  861.266526][    C0]  <TASK>
[  861.269491][    C0]  __schedule+0x14bc/0x5030
[  861.274061][    C0]  ? __lock_acquire+0xab9/0xd20
[  861.278946][    C0]  ? __pfx___schedule+0x10/0x10
[  861.283848][    C0]  ? preempt_schedule_irq+0xaa/0x150
[  861.289202][    C0]  preempt_schedule_irq+0xb5/0x150
[  861.294351][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  861.300108][    C0]  ? is_bpf_text_address+0x292/0x2b0
[  861.305440][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  861.310688][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  861.316523][    C0]  irqentry_exit+0x5d8/0x660
[  861.321327][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  861.327338][    C0] RIP: 0010:lock_acquire+0x16c/0x350
[  861.332658][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 54 ec d7 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  861.352296][    C0] RSP: 0018:ffffc9000ddbf358 EFLAGS: 00000206
[  861.358403][    C0] RAX: bb5b4b4b35712d00 RBX: 0000000000000000 RCX: bb5b4b4b35712d00
[  861.366399][    C0] RDX: 0000000000000001 RSI: ffffffff8d977664 RDI: ffffffff8bbf7760
[  861.374397][    C0] RBP: ffffffff81745035 R08: 0000000000000000 R09: ffffffff81745035
[  861.382409][    C0] R10: ffffc9000ddbf578 R11: fffff52001bb7eb1 R12: 0000000000000002
[  861.390406][    C0] R13: ffffffff8df3d700 R14: 0000000000000000 R15: 0000000000000246
[  861.398424][    C0]  ? unwind_next_frame+0xa5/0x2390
[  861.403587][    C0]  ? unwind_next_frame+0xa5/0x2390
[  861.408760][    C0]  ? unwind_next_frame+0xa5/0x2390
[  861.413904][    C0]  ? arch_stack_walk+0xe4/0x150
[  861.418807][    C0]  ? unwind_next_frame+0xa5/0x2390
[  861.423963][    C0]  unwind_next_frame+0xc2/0x2390
[  861.428948][    C0]  ? unwind_next_frame+0xa5/0x2390
[  861.434112][    C0]  ? unwind_next_frame+0xa5/0x2390
[  861.439279][    C0]  ? __unwind_start+0xf8/0x760
[  861.444114][    C0]  __unwind_start+0x5b9/0x760
[  861.448843][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  861.455035][    C0]  arch_stack_walk+0xe4/0x150
[  861.459764][    C0]  ? arch_stack_walk+0xe4/0x150
[  861.464662][    C0]  stack_trace_save+0x9c/0xe0
[  861.469372][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  861.474785][    C0]  ? is_bpf_text_address+0x292/0x2b0
[  861.480103][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  861.485341][    C0]  kasan_save_track+0x3e/0x80
[  861.490148][    C0]  __kasan_slab_alloc+0x6c/0x80
[  861.495047][    C0]  kmem_cache_alloc_noprof+0x37d/0x700
[  861.500538][    C0]  ? alloc_empty_file+0x55/0x1d0
[  861.505520][    C0]  alloc_empty_file+0x55/0x1d0
[  861.510326][    C0]  path_openat+0x106/0x3d90
[  861.514866][    C0]  ? stack_trace_save+0x9c/0xe0
[  861.519748][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  861.525157][    C0]  ? stack_depot_save_flags+0x40/0x860
[  861.530666][    C0]  ? kasan_save_track+0x4f/0x80
[  861.535562][    C0]  ? __kasan_slab_alloc+0x6c/0x80
[  861.540631][    C0]  ? kmem_cache_alloc_noprof+0x37d/0x700
[  861.546288][    C0]  ? getname_flags+0xb8/0x540
[  861.550999][    C0]  ? __x64_sys_openat+0x138/0x170
[  861.556048][    C0]  ? __pfx_path_openat+0x10/0x10
[  861.561033][    C0]  do_filp_open+0x1fa/0x410
[  861.565647][    C0]  ? __lock_acquire+0xab9/0xd20
[  861.570540][    C0]  ? __pfx_do_filp_open+0x10/0x10
[  861.575623][    C0]  ? _raw_spin_unlock+0x28/0x50
[  861.580514][    C0]  ? alloc_fd+0x64c/0x6c0
[  861.584889][    C0]  do_sys_openat2+0x121/0x1c0
[  861.589616][    C0]  ? __pfx_do_sys_openat2+0x10/0x10
[  861.594850][    C0]  ? __pfx_do_unlinkat+0x10/0x10
[  861.599820][    C0]  ? strncpy_from_user+0x150/0x2c0
[  861.604971][    C0]  __x64_sys_openat+0x138/0x170
[  861.609851][    C0]  do_syscall_64+0xfa/0xfa0
[  861.614382][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.620478][    C0]  ? clear_bhb_loop+0x60/0xb0
[  861.625185][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.631109][    C0] RIP: 0033:0x7fa17258df90
[  861.635551][    C0] RSP: 002b:00007ffda4324840 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  861.644004][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa17258df90
[  861.652013][    C0] RDX: 0000000000000000 RSI: 00007ffda4324970 RDI: 00000000ffffff9c
[  861.660108][    C0] RBP: 00007ffda4324970 R08: 0000000000000000 R09: 0000000000000000
[  861.668108][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007ffda4325a60
[  861.676103][    C0] R13: 00007fa172613d7d R14: 00005555825204a8 R15: 0000000000000007
[  861.684119][    C0]  </TASK>
[  861.687160][    C0] task:udevd           state:R  running task     stack:22712 pid:5195  tgid:5195  ppid:1      task_flags:0x400140 flags:0x00080000
[  861.700693][    C0] Call Trace:
[  861.703990][    C0]  <TASK>
[  861.706946][    C0]  __schedule+0x14bc/0x5030
[  861.711514][    C0]  ? __pfx___schedule+0x10/0x10
[  861.716395][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  861.722343][    C0]  ? preempt_schedule+0xae/0xc0
[  861.727306][    C0]  preempt_schedule_common+0x83/0xd0
[  861.732621][    C0]  preempt_schedule+0xae/0xc0
[  861.737323][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  861.742725][    C0]  preempt_schedule_thunk+0x16/0x30
[  861.747958][    C0]  _raw_spin_unlock_irqrestore+0xfd/0x110
[  861.753732][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  861.760093][    C0]  ? ep_poll_callback+0x91b/0xac0
[  861.765239][    C0]  __wake_up_common_lock+0x190/0x1f0
[  861.770559][    C0]  sock_def_readable+0x1eb/0x550
[  861.775696][    C0]  ? sock_def_readable+0xae/0x550
[  861.780754][    C0]  netlink_sendskb+0xa1/0x140
[  861.785468][    C0]  netlink_unicast+0x397/0x9e0
[  861.790279][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  861.795597][    C0]  ? ns_capable+0x8a/0xf0
[  861.799957][    C0]  ? netlink_sendmsg+0x642/0xb30
[  861.804922][    C0]  ? skb_put+0x11b/0x210
[  861.809207][    C0]  netlink_sendmsg+0x805/0xb30
[  861.814004][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  861.819314][    C0]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  861.825757][    C0]  ? __lock_acquire+0xab9/0xd20
[  861.830650][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  861.835964][    C0]  sock_sendmsg_nosec+0x18f/0x1d0
[  861.841020][    C0]  ____sys_sendmsg+0x577/0x8b0
[  861.845845][    C0]  ? __pfx_____sys_sendmsg+0x10/0x10
[  861.851174][    C0]  ? import_iovec+0x74/0xa0
[  861.855706][    C0]  ___sys_sendmsg+0x21f/0x2a0
[  861.860431][    C0]  ? __pfx____sys_sendmsg+0x10/0x10
[  861.865715][    C0]  ? __pfx_do_epoll_wait+0x10/0x10
[  861.870862][    C0]  __x64_sys_sendmsg+0x19b/0x260
[  861.875842][    C0]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  861.881346][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  861.886587][    C0]  ? do_syscall_64+0xbe/0xfa0
[  861.891299][    C0]  do_syscall_64+0xfa/0xfa0
[  861.895841][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.901929][    C0]  ? clear_bhb_loop+0x60/0xb0
[  861.906634][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.912552][    C0] RIP: 0033:0x7fa4c98a7407
[  861.916987][    C0] RSP: 002b:00007ffcdedc2e30 EFLAGS: 00000202 ORIG_RAX: 000000000000002e
[  861.925431][    C0] RAX: ffffffffffffffda RBX: 00007fa4c9f44880 RCX: 00007fa4c98a7407
[  861.933437][    C0] RDX: 0000000000000000 RSI: 00007ffcdedc2e90 RDI: 0000000000000004
[  861.941439][    C0] RBP: 000055f32e769e70 R08: 0000000000000000 R09: 0000000000000000
[  861.949436][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000000000b4
[  861.957434][    C0] R13: 000055f32e7419e0 R14: 0000000000000000 R15: 0000000000000000
[  861.965460][    C0]  </TASK>
[  861.968585][    C0] task:syz.3.1435      state:R  running task     stack:25576 pid:11808 tgid:11808 ppid:5841   task_flags:0x40004c flags:0x00080000
[  861.982109][    C0] Call Trace:
[  861.985414][    C0]  <TASK>
[  861.988374][    C0]  __schedule+0x14bc/0x5030
[  861.992945][    C0]  ? __pfx___schedule+0x10/0x10
[  861.997823][    C0]  ? do_raw_spin_lock+0x121/0x290
[  862.002875][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  862.008266][    C0]  ? irqentry_exit+0x5dd/0x660
[  862.013058][    C0]  ? preempt_schedule+0xae/0xc0
[  862.017942][    C0]  preempt_schedule_common+0x83/0xd0
[  862.023267][    C0]  preempt_schedule+0xae/0xc0
[  862.027985][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  862.033392][    C0]  preempt_schedule_thunk+0x16/0x30
[  862.038720][    C0]  _raw_spin_unlock+0x3f/0x50
[  862.043441][    C0]  unmap_page_range+0x38bc/0x4170
[  862.048540][    C0]  ? mas_next_slot+0xc20/0xcf0
[  862.053338][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[  862.058839][    C0]  ? mas_find+0xb0e/0xd30
[  862.063192][    C0]  ? unmap_vmas+0x144/0x580
[  862.067730][    C0]  unmap_vmas+0x399/0x580
[  862.072100][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  862.077010][    C0]  exit_mmap+0x239/0xb40
[  862.081285][    C0]  ? uprobe_clear_state+0x20f/0x290
[  862.086515][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  862.091308][    C0]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  862.096982][    C0]  ? __pfx_exit_aio+0x10/0x10
[  862.101706][    C0]  ? uprobe_clear_state+0x27c/0x290
[  862.106943][    C0]  __mmput+0x118/0x430
[  862.111048][    C0]  exit_mm+0x1da/0x2c0
[  862.115149][    C0]  ? __pfx_exit_mm+0x10/0x10
[  862.119777][    C0]  do_exit+0x658/0x2310
[  862.123958][    C0]  ? preempt_schedule+0xae/0xc0
[  862.128839][    C0]  ? preempt_schedule_common+0x83/0xd0
[  862.134413][    C0]  ? preempt_schedule+0xae/0xc0
[  862.139295][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  862.144696][    C0]  ? __pfx_do_exit+0x10/0x10
[  862.149320][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  862.154735][    C0]  do_group_exit+0x21c/0x2d0
[  862.159367][    C0]  __x64_sys_exit_group+0x3f/0x40
[  862.164420][    C0]  x64_sys_call+0x2210/0x2210
[  862.169127][    C0]  do_syscall_64+0xfa/0xfa0
[  862.173657][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.179743][    C0]  ? clear_bhb_loop+0x60/0xb0
[  862.184456][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.190394][    C0] RIP: 0033:0x7f1b6258f749
[  862.194839][    C0] RSP: 002b:00007fff1e066e28 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  862.203378][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1b6258f749
[  862.211552][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  862.219552][    C0] RBP: 00007fff1e066e8c R08: 000000151e066f1f R09: 000055556992d590
[  862.227553][    C0] R10: 0000000000000314 R11: 0000000000000246 R12: 0000000000000125
[  862.235548][    C0] R13: 000055556992d590 R14: 00000000000b7680 R15: 00007fff1e066ee0
[  862.243570][    C0]  </TASK>
[  862.246611][    C0] rcu: rcu_preempt kthread starved for 10459 jiffies! g57409 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  862.257824][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  862.267812][    C0] rcu: RCU grace-period kthread stack dump:
[  862.273891][    C0] task:rcu_preempt     state:R  running task     stack:27304 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  862.287419][    C0] Call Trace:
[  862.290731][    C0]  <TASK>
[  862.293700][    C0]  __schedule+0x14bc/0x5030
[  862.298262][    C0]  ? __lock_acquire+0xab9/0xd20
[  862.303153][    C0]  ? __pfx___schedule+0x10/0x10
[  862.308048][    C0]  ? schedule+0x91/0x360
[  862.312315][    C0]  schedule+0x165/0x360
[  862.316490][    C0]  schedule_timeout+0x12b/0x270
[  862.321404][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  862.326803][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  862.332745][    C0]  ? __pfx_process_timeout+0x10/0x10
[  862.338158][    C0]  ? prepare_to_swait_event+0x341/0x380
[  862.343736][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[  862.348644][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  862.353871][    C0]  ? __pfx_rcu_watching_snap_save+0x10/0x10
[  862.359796][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  862.365286][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  862.370612][    C0]  ? finish_swait+0xcd/0x1f0
[  862.375233][    C0]  rcu_gp_kthread+0x99/0x390
[  862.379863][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  862.385102][    C0]  ? __kthread_parkme+0x7b/0x200
[  862.390099][    C0]  ? __kthread_parkme+0x1a1/0x200
[  862.395184][    C0]  kthread+0x711/0x8a0
[  862.399291][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  862.404548][    C0]  ? __pfx_kthread+0x10/0x10
[  862.409170][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  862.414404][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  862.419626][    C0]  ? __pfx_kthread+0x10/0x10
[  862.424241][    C0]  ret_from_fork+0x599/0xb30
[  862.428868][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  862.434033][    C0]  ? __switch_to_asm+0x39/0x70
[  862.438820][    C0]  ? __switch_to_asm+0x33/0x70
[  862.443605][    C0]  ? __pfx_kthread+0x10/0x10
[  862.448321][    C0]  ret_from_fork_asm+0x1a/0x30
[  862.453139][    C0]  </TASK>
[  862.456183][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  862.462541][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  862.471506][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  862.481582][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  862.487337][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 33 40 0c 00 f3 0f 1e fa fb f4 <e9> c8 f2 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  862.507057][    C0] RSP: 0018:ffffffff8dc07d80 EFLAGS: 000002c6
[  862.513168][    C0] RAX: e4787407dab3a500 RBX: ffffffff8197a977 RCX: e4787407dab3a500
[  862.521180][    C0] RDX: 0000000000000001 RSI: ffffffff8d790e8f RDI: ffffffff8bbf7760
[  862.529193][    C0] RBP: ffffffff8dc07ea8 R08: ffff8880b86336db R09: 1ffff110170c66db
[  862.537194][    C0] R10: dffffc0000000000 R11: ffffed10170c66dc R12: ffffffff8f7df370
[  862.545195][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1b92a60
[  862.553193][    C0] FS:  0000000000000000(0000) GS:ffff888125eb8000(0000) knlGS:0000000000000000
[  862.562240][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  862.568850][    C0] CR2: 00007f557cf66d58 CR3: 0000000031150000 CR4: 00000000003526f0
[  862.576940][    C0] Call Trace:
[  862.580255][    C0]  <TASK>
[  862.583207][    C0]  default_idle+0x13/0x20
[  862.587570][    C0]  default_idle_call+0x73/0xb0
[  862.592362][    C0]  do_idle+0x1e7/0x510
[  862.596467][    C0]  ? irqentry_exit+0x5ba/0x660
[  862.601263][    C0]  ? __pfx_do_idle+0x10/0x10
[  862.605902][    C0]  cpu_startup_entry+0x44/0x60
[  862.610699][    C0]  rest_init+0x2de/0x300
[  862.614992][    C0]  start_kernel+0x3a7/0x410
[  862.619529][    C0]  x86_64_start_reservations+0x24/0x30
[  862.625051][    C0]  x86_64_start_kernel+0x143/0x1c0
[  862.630197][    C0]  common_startup_64+0x13e/0x147
[  862.635181][    C0]  </TASK>