last executing test programs:

3.58430006s ago: executing program 0 (id=1452):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

3.373356249s ago: executing program 0 (id=1456):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x56, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
clock_adjtime(0x0, &(0x7f0000000700)={0x100000000006702, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x240e})

3.37287908s ago: executing program 4 (id=1457):
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @multicast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a841d", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
pipe(0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket$packet(0x11, 0xa, 0x300)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000230000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@dellink={0x20, 0x11, 0x101, 0x8000000, 0x0, {0x0, 0x0, 0x0, r5}}, 0x20}}, 0x0)

3.209384185s ago: executing program 0 (id=1460):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYRES8, @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r0, 0x0)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000440)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0})
ftruncate(r0, 0x81ff)

3.107884404s ago: executing program 3 (id=1462):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r1 = memfd_create(0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000300)={0x0, {}, 0x0, {}, 0x9, 0x9, 0xb, 0x1d, "522530d6e597ca54b72437f1295d5713b017ddc8f03f7f9431388f9a2df4e1857ad78ca88090d709b29ee7b915000085393764aaa5f78a000000000080030900", "012a519a6f0231ce4623c52b637a4b34dcce6a392e161f8e3010abda97c64ba2", [0x1, 0x100000000b]})
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x800008001ffc0)

2.921018511s ago: executing program 1 (id=1463):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="30000000700001000000000000000000070000", @ANYRES32=r2, @ANYBLOB="0c00018008000500000003000c0001"], 0x30}}, 0x0)

2.920246151s ago: executing program 3 (id=1464):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000ecff0000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x1013a, 0x2, 0x0)
r5 = socket$nl_generic(0x11, 0x3, 0x10)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
dup3(r5, r6, 0x0)
io_setup(0x681, &(0x7f0000000000)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000b80)=[0x0])
sendmsg(r5, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)
io_pgetevents(0x0, 0x7, 0x0, 0x0, 0x0, 0x0)

2.877113845s ago: executing program 4 (id=1465):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000))

2.721594969s ago: executing program 1 (id=1466):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x11, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000380)={r0, &(0x7f0000000240), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/16], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x40401)
poll(&(0x7f0000000740)=[{r3, 0x2}], 0x1, 0x100)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x147842, 0x0)
preadv2(r4, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000002880)=ANY=[@ANYBLOB="0100000004000000ff0f0000050000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil)

2.645142897s ago: executing program 0 (id=1468):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x2, 0x3, 0x84)
recvmsg$kcm(r0, &(0x7f0000000e00)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000040)=0xfffffffb, 0x4)
sendmsg$inet(r0, &(0x7f00000009c0)={&(0x7f0000000240)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000900)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local}}}], 0x20}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000080), 0x4)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r4, &(0x7f0000000180)='=', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r4, 0x1)
dup(r4)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r3, 0x84, 0x23, &(0x7f0000000080)={0x0, 0xffff}, 0x8)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r6}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='ext4_allocate_inode\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r2, 0xe985e4df3848afb5}, 0x14}}, 0x0)

1.811625213s ago: executing program 4 (id=1469):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r1)

1.665211477s ago: executing program 2 (id=1471):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, r3, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0xffffffff, @empty}, 0x1c)
listen(r1, 0x9)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)

1.658277047s ago: executing program 3 (id=1472):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000000900010073797a30"], 0x1c0}}, 0x0)

1.657706257s ago: executing program 4 (id=1473):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc}]}}]}]}]}}]}, 0x6c}}, 0x0)

1.532829579s ago: executing program 3 (id=1474):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getpgid(0x0)

1.425972848s ago: executing program 4 (id=1475):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0xfe, 0x4ec, &(0x7f0000000380)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d90000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b708"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x173)
write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="7f454c4600000200000000000000000003003e0000000000000000007c80000040000000000000000000000000f800000000000000003800010000000000000003"], 0x9a)
r1 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r2 = open(0x0, 0x14927e, 0x0)
connect$qrtr(r2, 0x0, 0x0)
ioctl$USBDEVFS_CONNECTINFO(0xffffffffffffffff, 0x5452, &(0x7f0000000000))
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000000)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r2, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f0000000880)={0xc, 0x8, 0xfa00, {&(0x7f0000002200)}}, 0x10)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', 0x0, 0x804020, 0x0)
dup(0xffffffffffffffff)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000900)='bcache_invalidate\x00', r5}, 0x18)
getcwd(&(0x7f00000002c0)=""/116, 0x74)

1.4088979s ago: executing program 1 (id=1476):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="30000000700001000000000000000000070000", @ANYRES32=r2, @ANYBLOB="0c00018008000500000003000c0001"], 0x30}}, 0x0)

1.373677613s ago: executing program 2 (id=1477):
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$inet(0x2, 0x2, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r3}, 0x10)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f00000002c0)=r2, 0x161)
sendmsg$inet(r4, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x20}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000380), 0xff7a}], 0x1, &(0x7f0000007880)=[@ip_tos_u8={{0x11, 0x34000}}, @ip_pktinfo={{0x1c, 0xfd000f00, 0x8, {0x0, @remote, @multicast1}}}, @ip_pktinfo={{0x1c, 0x28f0700, 0x8, {0x0, @empty=0xa0050000}}}, @ip_retopts={{0x24, 0x0, 0x7, {[@ra={0x94, 0x4}, @timestamp={0x44, 0x10, 0x88, 0x0, 0x0, [0x0, 0x0, 0x0]}]}}}, @ip_tos_u8={{0x11}}], 0x98}, 0x0)

1.2932307s ago: executing program 3 (id=1478):
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000008c0)='page_pool_state_hold\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000008c0)='page_pool_state_hold\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r3, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.246924745s ago: executing program 2 (id=1479):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000002c0)}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6edafd", 0xc7}], 0x2}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000a40)="bd2f6aa36cea0e62ac00a4539dd80281164750339fcc3cd1f7bb1b74e98dbbe81e997d4847ee5d06a72e6f1c6b8a873c7ea7760f102483b578526af9775e51b84818d03da7", 0x45}, {&(0x7f0000000740)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc487553859348d48e6fc49d81c71590cd542e796cc2669e2c691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b95e269169f5f7b51dd5319b8016623d1863d7d77ceefde94faf2e36c3920581691a79a6678db1e5e7fa1ca703ee7aa87272e9c4a1bde5fbc390c7ccb9d3c1020e80bd0659e82d861dc6fe4c62639134c54e708601eae9", 0xd1}, {&(0x7f0000000940)="5be3b011e12323e4ab88c0472fd012198c3c61bb81e71ba621", 0x19}, {&(0x7f0000000840)="a9ae40a02163bc35c9e4208cdd56e268b2e480846f59ccaa133e00d2", 0x1c}], 0x4}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000001bc0)="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", 0x1cb}], 0x1}}], 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.203664489s ago: executing program 1 (id=1480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

1.101295798s ago: executing program 1 (id=1481):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000400)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000600)=""/69, 0x45}], 0x1}, 0x161fd)

1.08346717s ago: executing program 3 (id=1482):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000ecff0000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x1013a, 0x2, 0x0)
r5 = socket$nl_generic(0x11, 0x3, 0x10)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
dup3(r5, r6, 0x0)
io_setup(0x681, &(0x7f0000000000)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000b80)=[0x0])
sendmsg(r5, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)
io_pgetevents(0x0, 0x7, 0x0, 0x0, 0x0, 0x0)

1.074410611s ago: executing program 2 (id=1483):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x4}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pwritev(r1, 0x0, 0x0, 0xb9c4, 0x0)

1.013353716s ago: executing program 1 (id=1484):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x275a, 0x0)
fallocate(r0, 0x0, 0x5, 0x8000001)
fallocate(r0, 0x20, 0x2000, 0x140000)

870.89492ms ago: executing program 0 (id=1485):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02ec2303100007006000000002000020d3"])

870.601099ms ago: executing program 2 (id=1486):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='attr/current\x00')
read$msr(r2, 0x0, 0x0)

469.821846ms ago: executing program 0 (id=1487):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000700)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0xc}]}, 0x10)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x0, 0x0)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="1401000025000100000000000000000003"], 0x114}], 0x1}, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
setuid(0x0)

213.33556ms ago: executing program 2 (id=1488):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=ANY=[@ANYBLOB="24010000", @ANYRES16=r2, @ANYBLOB="2b0300000ec00000000005"], 0x124}}, 0x0)

0s ago: executing program 4 (id=1489):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r1 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x800008001ffc0)

kernel console output (not intermixed with test programs):

x7ffc0000
[  272.239600][ T6554] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.871: inode #1: comm syz.3.871: iget: illegal inode #
[  272.276154][ T6554] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.871: error while reading EA inode 1 err=-117
[  272.318578][ T6554] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.871: inode #1: comm syz.3.871: iget: illegal inode #
[  272.364013][ T6554] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.871: error while reading EA inode 1 err=-117
[  272.393636][ T6554] EXT4-fs (loop3): 1 orphan inode deleted
[  272.409090][ T6554] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  272.545036][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  272.549595][ T6565] loop0: detected capacity change from 0 to 512
[  272.591364][ T6565] EXT4-fs (loop0): Test dummy encryption mode enabled
[  272.611797][ T6565] EXT4-fs error (device loop0): __ext4_iget:5055: inode #11: block 1: comm syz.0.874: invalid block
[  272.637990][ T6565] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.874: couldn't read orphan inode 11 (err -117)
[  272.660354][ T6565] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  273.635749][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  273.799794][  T102] team0 (unregistering): Port device team_slave_1 removed
[  273.873055][  T102] team0 (unregistering): Port device team_slave_0 removed
[  273.962479][  T102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  274.028331][  T102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  274.185111][   T48] Bluetooth: hci2: command tx timeout
[  275.323022][  T102] bond0 (unregistering): Released all slaves
[  275.398121][ T6442] batman_adv: batadv0: Adding interface: batadv_slave_0
[  275.405154][ T6442] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.431595][ T6442] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  275.448210][ T6442] batman_adv: batadv0: Adding interface: batadv_slave_1
[  275.455773][ T6442] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.491280][ T6442] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  275.512742][ T6574] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.530028][ T6574] team0: Port device bond0 added
[  275.547469][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  275.573500][ T6576] team0: Port device bond0 removed
[  275.591433][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  275.599506][ T6576] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  275.609123][ T6576] device bridge_slave_0 left promiscuous mode
[  275.617719][ T6576] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.628645][ T6576] device bridge_slave_1 left promiscuous mode
[  275.636599][ T6576] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.647775][ T6576] bond0: (slave bond_slave_0): Releasing backup interface
[  275.670962][ T6576] bond0: (slave bond_slave_1): Releasing backup interface
[  275.702985][ T6576] team0: Port device team_slave_0 removed
[  275.728842][ T6576] team0: Port device team_slave_1 removed
[  275.741407][ T6576] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  275.749151][ T6576] batman_adv: batadv0: Removing interface: batadv_slave_0
[  275.763860][ T6576] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  275.771439][ T6576] batman_adv: batadv0: Removing interface: batadv_slave_1
[  275.788286][ T6576] bond0: (slave macvlan0): Releasing backup interface
[  275.853490][ T6589] device syzkaller0 entered promiscuous mode
[  279.115880][ T6442] device hsr_slave_0 entered promiscuous mode
[  279.145741][ T6442] device hsr_slave_1 entered promiscuous mode
[  279.165854][ T6442] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  279.173478][ T6442] Cannot create hsr debugfs directory
[  279.296431][ T6637] netlink: 624 bytes leftover after parsing attributes in process `syz.3.900'.
[  279.427159][ T6643] loop3: detected capacity change from 0 to 512
[  279.603988][ T6643] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  279.605415][ T6635] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.626111][ T6643] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038 (0x7fffffff)
[  279.845974][ T6650] loop1: detected capacity change from 0 to 16
[  279.867594][ T6650] erofs: (device loop1): mounted with root inode @ nid 36.
[  279.888701][ T6650] erofs: (device loop1): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  279.898548][ T6650] erofs: (device loop1): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  279.908206][ T6650] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117]
[  280.429238][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  280.556628][ T6635] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.633075][ T6655] device syzkaller0 entered promiscuous mode
[  280.637306][ T6657] netlink: 44 bytes leftover after parsing attributes in process `syz.3.904'.
[  280.706894][ T6635] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.830190][ T6657] netlink: 44 bytes leftover after parsing attributes in process `syz.3.904'.
[  280.839376][   T48] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  280.852796][   T48] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  280.862809][   T48] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  280.878704][ T5035] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  280.887377][ T5035] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  280.895293][ T6635] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.895373][ T5035] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  280.950318][ T6663] netlink: 16 bytes leftover after parsing attributes in process `syz.1.906'.
[  280.972485][ T6663] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  281.141955][ T6635] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  281.156601][ T6657] netlink: 44 bytes leftover after parsing attributes in process `syz.3.904'.
[  281.205986][ T6635] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  281.231491][ T6635] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  281.299070][ T6635] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  281.641170][ T6442] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  281.656448][ T6682] loop0: detected capacity change from 0 to 512
[  281.681848][ T6442] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  282.250431][ T6442] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  282.319756][ T6682] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  282.359614][ T6682] ext4 filesystem being mounted at /186/file0 supports timestamps until 2038 (0x7fffffff)
[  282.383513][ T6442] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  282.479487][ T6660] chnl_net:caif_netlink_parms(): no params data found
[  282.690502][ T6694] Cannot find del_set index 0 as target
[  282.921757][ T6694] loop1: detected capacity change from 0 to 1024
[  283.027115][ T5035] Bluetooth: hci5: command tx timeout
[  283.630684][ T6697] loop3: detected capacity change from 0 to 16
[  283.662140][ T6694] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  283.662985][ T6697] erofs: (device loop3): mounted with root inode @ nid 36.
[  283.673225][ T6694] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  283.685195][ T6697] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  283.699973][ T6697] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  283.709684][ T6697] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117]
[  283.831231][ T6694] JBD2: no valid journal superblock found
[  283.837098][ T6694] EXT4-fs (loop1): error loading journal
[  284.116861][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  284.382028][ T6660] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.389616][ T6660] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.398721][ T6660] device bridge_slave_0 entered promiscuous mode
[  284.414983][ T6660] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.422617][ T6660] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.431571][ T6660] device bridge_slave_1 entered promiscuous mode
[  284.458275][ T6708] syz.3.917[6708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.465792][ T6708] syz.3.917[6708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.498425][ T6660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  284.558468][ T6442] 8021q: adding VLAN 0 to HW filter on device bond0
[  284.576549][ T6660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  284.618413][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  284.629978][ T6713] netlink: 36 bytes leftover after parsing attributes in process `syz.1.920'.
[  284.652764][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  284.675531][ T6442] 8021q: adding VLAN 0 to HW filter on device team0
[  284.698307][ T6660] team0: Port device team_slave_0 added
[  284.710898][ T6716] loop3: detected capacity change from 0 to 512
[  284.726349][ T6660] team0: Port device team_slave_1 added
[  284.739219][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  284.759149][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  284.764882][ T6716] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  284.779409][ T3813] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.786591][ T3813] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.795826][ T6716] EXT4-fs (loop3): orphan cleanup on readonly fs
[  284.809656][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  284.817654][ T6716] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated!
[  284.827801][ T6716] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota
[  284.854946][ T6716] EXT4-fs error (device loop3): ext4_acquire_dquot:6800: comm syz.3.921: Failed to acquire dquot type 1
[  284.879162][ T4231] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.880145][ T6716] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.921: bg 0: block 40: padding at end of block bitmap is not set
[  284.968333][   T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  284.979268][ T6716] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  284.989896][   T35] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  284.998938][ T6716] EXT4-fs (loop3): 1 truncate cleaned up
[  285.006503][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.013691][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  285.021814][ T6716] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  285.054605][ T5035] Bluetooth: hci5: command tx timeout
[  285.083997][ T6726] loop0: detected capacity change from 0 to 512
[  285.142124][ T4231] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.175914][   T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  285.190463][   T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  285.191635][ T6726] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  285.208943][ T6660] batman_adv: batadv0: Adding interface: batadv_slave_0
[  285.216373][ T6726] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038 (0x7fffffff)
[  285.233857][ T6660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.324077][ T6660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  285.342625][ T6730] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  285.370185][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  285.480043][ T4231] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.501411][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  285.518143][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  285.551054][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  285.577650][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  285.599701][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  285.611590][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  285.637863][ T6660] batman_adv: batadv0: Adding interface: batadv_slave_1
[  285.662170][ T6660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  285.707926][ T6660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  285.721228][ T6732] netlink: 4 bytes leftover after parsing attributes in process `syz.0.925'.
[  285.737321][ T6732] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.750741][ T6732] batman_adv: batadv0: Removing interface: batadv_slave_0
[  285.952799][ T6735] Cannot find del_set index 0 as target
[  285.953370][ T6732] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  285.967716][ T6732] batman_adv: batadv0: Removing interface: batadv_slave_1
[  285.993050][ T6735] loop3: detected capacity change from 0 to 1024
[  286.003323][ T6735] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  286.014338][ T6735] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  286.027142][ T6735] JBD2: no valid journal superblock found
[  286.032926][ T6735] EXT4-fs (loop3): error loading journal
[  286.065951][ T4231] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.094150][   T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  286.115995][   T35] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  286.138823][ T4639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  286.150951][ T4639] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  286.198632][ T6442] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  286.259961][ T6660] device hsr_slave_0 entered promiscuous mode
[  286.277738][ T6660] device hsr_slave_1 entered promiscuous mode
[  286.294878][ T6660] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  286.314845][ T6660] Cannot create hsr debugfs directory
[  286.772093][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  286.798041][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  286.820105][ T6442] 8021q: adding VLAN 0 to HW filter on device batadv0
[  287.134800][ T5035] Bluetooth: hci5: command tx timeout
[  287.572853][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  287.594171][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  287.657827][ T6757] loop3: detected capacity change from 0 to 512
[  287.667800][ T6757] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  287.677142][ T6757] EXT4-fs (loop3): orphan cleanup on readonly fs
[  287.692424][ T6660] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  287.707333][ T6757] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated!
[  287.717051][ T6757] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota
[  287.722761][ T6660] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  287.733938][ T6757] EXT4-fs error (device loop3): ext4_acquire_dquot:6800: comm syz.3.931: Failed to acquire dquot type 1
[  287.757223][ T6757] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.931: bg 0: block 40: padding at end of block bitmap is not set
[  287.775123][ T6660] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  287.785300][ T6757] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  287.798099][ T6757] EXT4-fs (loop3): 1 truncate cleaned up
[  287.815716][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  287.824173][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  287.842998][ T6757] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  287.893291][ T6757] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  287.893538][ T6660] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  287.927782][ T6442] device veth0_vlan entered promiscuous mode
[  287.937651][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  287.946863][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  287.998736][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  288.061664][ T6442] device veth1_vlan entered promiscuous mode
[  288.155769][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  288.178122][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  288.343493][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  288.366462][ T3813] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  288.394002][ T6442] device veth0_macvtap entered promiscuous mode
[  288.456478][ T4231] device hsr_slave_0 left promiscuous mode
[  288.468998][ T4231] device hsr_slave_1 left promiscuous mode
[  288.493131][ T4231] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  288.503229][ T4231] batman_adv: batadv0: Removing interface: batadv_slave_0
[  288.518426][ T4231] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  288.532704][ T4231] batman_adv: batadv0: Removing interface: batadv_slave_1
[  288.553244][ T4231] device bridge_slave_1 left promiscuous mode
[  288.564641][ T4231] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.582464][ T4231] device bridge_slave_0 left promiscuous mode
[  288.594901][ T4231] bridge0: port 1(bridge_slave_0) entered disabled state
[  288.652587][ T4231] device veth1_macvtap left promiscuous mode
[  288.670148][ T4231] device veth0_macvtap left promiscuous mode
[  288.686410][ T4231] device veth1_vlan left promiscuous mode
[  288.692309][ T4231] device veth0_vlan left promiscuous mode
[  289.238499][ T5035] Bluetooth: hci5: command tx timeout
[  289.331691][ T6764] loop1: detected capacity change from 0 to 512
[  289.507953][ T6764] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  289.520125][ T6764] ext4 filesystem being mounted at /190/file0 supports timestamps until 2038 (0x7fffffff)
[  289.663908][ T3653] EXT4-fs (loop1): unmounting filesystem.
[  289.848914][ T4231] team0 (unregistering): Port device team_slave_1 removed
[  289.892590][ T4231] team0 (unregistering): Port device team_slave_0 removed
[  289.941728][ T4231] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  289.983530][ T4231] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  290.423083][ T4231] bond0 (unregistering): Released all slaves
[  290.489865][ T6442] device veth1_macvtap entered promiscuous mode
[  290.504169][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  290.512976][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  290.555554][ T6660] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.563928][ T6442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  290.587567][ T6442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  290.606102][ T6442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  290.622268][ T6442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  290.648234][ T6442] batman_adv: batadv0: Interface activated: batadv_slave_0
[  290.671358][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  290.687257][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  290.700175][ T6442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  290.729707][ T6442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  290.739825][ T6778] loop1: detected capacity change from 0 to 128
[  290.748211][ T6442] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  290.758117][   T26] audit: type=1800 audit(1727348737.479:254): pid=6778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.938" name="bus" dev="loop1" ino=1048635 res=0 errno=0
[  290.759249][ T6442] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  290.800932][ T6442] batman_adv: batadv0: Interface activated: batadv_slave_1
[  290.816290][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  290.841092][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  290.867342][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  290.875780][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  290.886830][ T6442] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  290.896379][ T6442] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  290.906190][ T6442] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  290.916847][ T6442] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  290.934871][ T6660] 8021q: adding VLAN 0 to HW filter on device team0
[  290.955800][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  290.981211][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  290.992032][ T3814] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.999202][ T3814] bridge0: port 1(bridge_slave_0) entered forwarding state
[  291.061211][ T6780] device syzkaller0 entered promiscuous mode
[  291.095219][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  291.125648][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  291.138044][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  291.165123][ T3814] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.170972][ T6784] loop0: detected capacity change from 0 to 128
[  291.172247][ T3814] bridge0: port 2(bridge_slave_1) entered forwarding state
[  291.188537][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  291.204275][ T6784] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  291.208130][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  291.222416][ T6784] ext4 filesystem being mounted at /193/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  291.476603][ T3813] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.488502][ T3814] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.499175][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  291.499211][ T3814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.520550][ T3813] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.520898][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  291.950638][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  291.965559][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  291.984939][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  292.002937][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  292.036957][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  292.052373][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  292.082860][ T6660] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  292.115647][ T6660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  292.130039][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  292.299824][ T6794] loop1: detected capacity change from 0 to 512
[  292.310687][ T6794] EXT4-fs (loop1): Test dummy encryption mode enabled
[  292.341100][ T6794] EXT4-fs error (device loop1): __ext4_iget:5055: inode #11: block 1: comm syz.1.942: invalid block
[  292.362066][ T6794] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.942: couldn't read orphan inode 11 (err -117)
[  292.388961][ T6794] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  293.364308][ T3653] EXT4-fs (loop1): unmounting filesystem.
[  294.691013][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  294.721108][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  294.731714][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  294.750783][ T6792] netlink: 9 bytes leftover after parsing attributes in process `syz.0.941'.
[  294.859206][ T6809] syz.4.829[6809] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  294.859320][ T6809] syz.4.829[6809] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  296.036228][ T6823] netlink: 'syz.1.946': attribute type 10 has an invalid length.
[  296.111565][ T6823] bridge0: port 3(team0) entered blocking state
[  296.133989][ T6823] bridge0: port 3(team0) entered disabled state
[  296.146504][ T6831] loop4: detected capacity change from 0 to 128
[  296.163613][ T6823] device team0 entered promiscuous mode
[  296.174242][ T6823] device team_slave_0 entered promiscuous mode
[  296.182616][ T6823] device team_slave_1 entered promiscuous mode
[  296.191578][ T6823] bridge0: port 3(team0) entered blocking state
[  296.198031][ T6823] bridge0: port 3(team0) entered forwarding state
[  296.207908][   T26] audit: type=1800 audit(1727348742.929:255): pid=6831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.950" name="bus" dev="loop4" ino=1048640 res=0 errno=0
[  296.262499][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  296.288834][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  296.314206][ T6660] 8021q: adding VLAN 0 to HW filter on device batadv0
[  296.384008][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  296.396037][ T3880] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  296.425755][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  296.444570][   T26] audit: type=1326 audit(1727348743.159:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.475609][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  296.495724][ T6660] device veth0_vlan entered promiscuous mode
[  296.503473][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  296.519242][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  296.527135][   T26] audit: type=1326 audit(1727348743.159:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.563328][ T6660] device veth1_vlan entered promiscuous mode
[  296.602095][   T26] audit: type=1326 audit(1727348743.159:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.631291][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  296.653293][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  296.671680][   T26] audit: type=1326 audit(1727348743.159:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.682353][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  296.720595][   T26] audit: type=1326 audit(1727348743.159:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.733920][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  296.773610][   T26] audit: type=1326 audit(1727348743.159:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.784218][ T6660] device veth0_macvtap entered promiscuous mode
[  296.808113][ T6843] netlink: 9 bytes leftover after parsing attributes in process `syz.3.954'.
[  296.818924][   T26] audit: type=1326 audit(1727348743.159:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.842501][   T26] audit: type=1326 audit(1727348743.169:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.866043][ T6843] device gretap0 entered promiscuous mode
[  296.868795][   T26] audit: type=1326 audit(1727348743.169:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f4ea197df39 code=0x7ffc0000
[  296.921594][ T6660] device veth1_macvtap entered promiscuous mode
[  297.006303][ T6660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  297.018068][ T6660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.029749][ T6660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  297.048167][ T6660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.070516][ T6660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  297.081776][ T6660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.101269][ T6660] batman_adv: batadv0: Interface activated: batadv_slave_0
[  297.109888][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  297.130803][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  297.149825][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  297.181281][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  297.212644][ T6660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.231543][ T6660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.242845][ T6660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.262174][ T6660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.272534][ T6660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.284243][ T6660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.296873][ T6660] batman_adv: batadv0: Interface activated: batadv_slave_1
[  297.306968][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  297.319448][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  297.332228][ T6660] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  297.342579][ T6660] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  297.353296][ T6660] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  297.366903][ T6860] loop0: detected capacity change from 0 to 128
[  297.375851][ T6660] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  297.425341][ T6860] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  297.459901][ T6860] ext4 filesystem being mounted at /199/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  297.544556][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.557259][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  297.658105][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  297.685886][ T3998] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  297.742990][ T3998] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.946946][ T6877] loop4: detected capacity change from 0 to 16
[  298.017911][ T6877] erofs: (device loop4): mounted with root inode @ nid 36.
[  298.042400][ T6877] erofs: (device loop4): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  298.052260][ T6877] erofs: (device loop4): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  298.061949][ T6877] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117]
[  298.255672][ T3998] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.342415][ T6880] loop0: detected capacity change from 0 to 512
[  298.428271][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  298.552552][ T6880] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  298.576008][ T6880] EXT4-fs (loop0): orphan cleanup on readonly fs
[  298.651692][ T6880] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.963: Failed to acquire dquot type 1
[  298.721589][ T6880] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.963: bg 0: block 40: padding at end of block bitmap is not set
[  298.926346][ T6894] Cannot find del_set index 0 as target
[  300.558438][ T6894] loop4: detected capacity change from 0 to 1024
[  300.587310][ T6894] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  300.598414][ T6894] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  300.610746][ T6880] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  300.627893][ T6894] JBD2: no valid journal superblock found
[  300.633701][ T6894] EXT4-fs (loop4): error loading journal
[  300.640208][ T6892] netlink: 9 bytes leftover after parsing attributes in process `syz.1.966'.
[  300.665582][ T6880] EXT4-fs (loop0): 1 truncate cleaned up
[  300.672511][ T6880] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  300.854330][ T6903] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  300.884765][ T3718] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  300.947008][ T6908] loop3: detected capacity change from 0 to 128
[  300.972085][ T6908] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  300.993420][ T6908] ext4 filesystem being mounted at /62/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  301.068970][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  301.104856][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  301.126379][ T3718] usb 3-1: Using ep0 maxpacket: 8
[  301.244751][ T3718] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  301.266920][ T3718] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  301.287211][ T3718] usb 3-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  301.312447][ T3718] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.345556][ T3718] usb 3-1: config 0 descriptor??
[  301.351317][ T6928] loop0: detected capacity change from 0 to 512
[  301.400991][ T6928] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  301.428569][ T6928] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038 (0x7fffffff)
[  301.588202][ T6936] loop1: detected capacity change from 0 to 2048
[  301.604207][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  301.647847][ T6936] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  301.719838][ T6946] loop4: detected capacity change from 0 to 512
[  301.741946][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  301.741963][   T26] audit: type=1800 audit(1727348748.459:267): pid=6936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.984" name="bus" dev="loop1" ino=18 res=0 errno=0
[  301.784721][ T6946] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  301.796567][ T6946] EXT4-fs (loop4): orphan cleanup on readonly fs
[  301.804491][ T6936] loop1: detected capacity change from 2048 to 2047
[  301.844314][ T6946] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated!
[  301.858457][ T6946] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota
[  301.894909][ T3653] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /208/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  301.901857][ T6956] device team_slave_0 entered promiscuous mode
[  301.921799][ T6956] device team_slave_1 entered promiscuous mode
[  301.922489][ T6946] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.986: Failed to acquire dquot type 1
[  301.929665][ T6956] device vlan0 entered promiscuous mode
[  301.948507][ T6956] device team0 entered promiscuous mode
[  301.956891][ T6956] team0: Device vlan0 is already an upper device of the team interface
[  301.966538][ T6946] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.986: bg 0: block 40: padding at end of block bitmap is not set
[  301.983687][ T6946] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  301.990460][ T6956] device team0 left promiscuous mode
[  301.993490][ T6946] EXT4-fs (loop4): 1 truncate cleaned up
[  302.012389][ T6956] device team_slave_0 left promiscuous mode
[  302.018470][ T6956] device team_slave_1 left promiscuous mode
[  302.024704][ T6946] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  302.040939][ T3653] EXT4-fs (loop1): unmounting filesystem.
[  302.052331][ T6958] loop3: detected capacity change from 0 to 512
[  302.075937][ T6958] EXT4-fs (loop3): Test dummy encryption mode enabled
[  302.110616][ T6958] EXT4-fs error (device loop3): __ext4_iget:5055: inode #11: block 1: comm syz.3.992: invalid block
[  302.124737][ T6958] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.992: couldn't read orphan inode 11 (err -117)
[  302.157983][ T6958] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  302.246000][ T6960] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  303.245686][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  303.255611][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  303.303852][ T3718] usbhid 3-1:0.0: can't add hid device: -71
[  303.310082][ T3718] usbhid: probe of 3-1:0.0 failed with error -71
[  303.346090][ T3718] usb 3-1: USB disconnect, device number 10
[  303.387307][ T3813] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.562586][ T6976] device syzkaller0 entered promiscuous mode
[  303.614485][ T6980] batman_adv: batadv0: Adding interface: ipvlan1
[  303.621039][ T6980] batman_adv: batadv0: The MTU of interface ipvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.692377][ T6980] batman_adv: batadv0: Not using interface ipvlan1 (retrying later): interface not active
[  303.746252][ T6987] loop0: detected capacity change from 0 to 1024
[  303.783761][ T5035] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  303.791592][ T3813] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.804607][ T5035] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  303.813623][ T5035] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  303.822893][ T5035] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  303.831787][ T5035] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  303.839143][ T5035] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  303.848016][ T6987] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  304.088025][ T6996] device team_slave_0 entered promiscuous mode
[  304.094324][ T6996] device team_slave_1 entered promiscuous mode
[  304.102517][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  304.105830][ T6996] device vlan2 entered promiscuous mode
[  304.113830][ T6996] device team0 entered promiscuous mode
[  304.128699][ T6996] team0: Device vlan2 is already an upper device of the team interface
[  304.140469][ T6996] device team0 left promiscuous mode
[  304.150568][ T6996] device team_slave_0 left promiscuous mode
[  304.156610][ T6996] device team_slave_1 left promiscuous mode
[  304.648188][ T7004] loop0: detected capacity change from 0 to 512
[  304.662368][ T7004] EXT4-fs (loop0): Test dummy encryption mode enabled
[  304.702865][ T7004] EXT4-fs error (device loop0): __ext4_iget:5055: inode #11: block 1: comm syz.0.1006: invalid block
[  304.718121][ T7004] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1006: couldn't read orphan inode 11 (err -117)
[  304.730378][ T7004] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  305.721161][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  305.948782][ T3646] Bluetooth: hci3: command tx timeout
[  306.855833][ T3689] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  307.095484][ T3689] usb 1-1: Using ep0 maxpacket: 8
[  307.244798][ T3689] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  307.256782][ T3689] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  307.267027][ T3689] usb 1-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  307.276403][ T3689] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.286292][ T3689] usb 1-1: config 0 descriptor??
[  307.890697][ T3813] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.989212][ T3813] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.014871][ T3646] Bluetooth: hci3: command tx timeout
[  308.026314][ T7016] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1008'.
[  308.186072][ T3813] tipc: Left network mode
[  308.193215][ T6988] chnl_net:caif_netlink_parms(): no params data found
[  308.225303][ T7020] loop3: detected capacity change from 0 to 512
[  308.232330][ T7020] EXT4-fs: Ignoring removed orlov option
[  308.246748][ T7020] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  308.264230][ T7020] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  308.291120][ T7020] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #16: comm syz.3.1009: iget: bad extended attribute block 32768
[  308.315834][ T7020] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1009: couldn't read orphan inode 16 (err -117)
[  308.337805][ T7020] EXT4-fs (loop3): 1 orphan inode deleted
[  308.343769][ T7020] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  308.377379][ T7020] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  308.477862][ T6988] bridge0: port 1(bridge_slave_0) entered blocking state
[  308.489445][ T6988] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.502400][ T6988] device bridge_slave_0 entered promiscuous mode
[  308.592408][ T6988] bridge0: port 2(bridge_slave_1) entered blocking state
[  308.606350][ T6988] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.637702][ T6988] device bridge_slave_1 entered promiscuous mode
[  308.857369][ T7034] loop4: detected capacity change from 0 to 16
[  308.875776][ T7034] erofs: (device loop4): mounted with root inode @ nid 36.
[  308.892126][ T7034] erofs: (device loop4): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  308.902109][ T7034] erofs: (device loop4): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  308.911816][ T7034] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117]
[  309.095050][ T3689] usbhid 1-1:0.0: can't add hid device: -71
[  309.110581][ T3689] usbhid: probe of 1-1:0.0 failed with error -71
[  309.315130][ T3689] usb 1-1: USB disconnect, device number 23
[  309.547976][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  309.625555][ T7039] loop0: detected capacity change from 0 to 2048
[  309.628014][ T6988] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  309.653804][ T6988] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  309.671455][ T7039]  loop0: p1 < > p4
[  309.676974][ T7039] loop0: p4 size 8388608 extends beyond EOD, truncated
[  309.758877][ T7045] Cannot find del_set index 0 as target
[  309.853631][ T7045] loop4: detected capacity change from 0 to 1024
[  309.906920][ T7045] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  309.917984][ T7045] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  309.969975][ T7045] JBD2: no valid journal superblock found
[  309.976032][ T7045] EXT4-fs (loop4): error loading journal
[  310.095832][ T3646] Bluetooth: hci3: command tx timeout
[  310.779820][ T6988] team0: Port device team_slave_0 added
[  310.789388][ T6988] team0: Port device team_slave_1 added
[  310.892491][ T6988] batman_adv: batadv0: Adding interface: batadv_slave_0
[  310.987769][ T6988] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.013748][    C1] vkms_vblank_simulate: vblank timer overrun
[  311.024885][ T6988] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  311.074351][ T6988] batman_adv: batadv0: Adding interface: batadv_slave_1
[  311.094457][ T6988] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.149527][ T6988] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  311.188833][ T7060] device vlan2 entered promiscuous mode
[  311.204491][ T7060] device team0 entered promiscuous mode
[  311.211535][ T7060] team0: Device vlan2 is already an upper device of the team interface
[  311.240461][ T7060] device team0 left promiscuous mode
[  311.363355][ T7055] device syzkaller0 entered promiscuous mode
[  311.432262][ T7067] loop3: detected capacity change from 0 to 128
[  311.451443][   T26] audit: type=1800 audit(1727348758.169:268): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1021" name="bus" dev="loop3" ino=1048645 res=0 errno=0
[  311.504601][ T3718] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  311.587812][ T6988] device hsr_slave_0 entered promiscuous mode
[  311.609217][ T6988] device hsr_slave_1 entered promiscuous mode
[  311.625796][ T6988] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  311.633494][ T6988] Cannot create hsr debugfs directory
[  311.730563][ T3813] IPVS: stopping master sync thread 5242 ...
[  311.788851][ T3718] usb 1-1: no configurations
[  311.793509][ T3718] usb 1-1: can't read configurations, error -22
[  311.982395][ T3718] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  312.092219][ T7075] loop2: detected capacity change from 0 to 16
[  312.105540][ T7075] erofs: (device loop2): mounted with root inode @ nid 36.
[  312.116841][ T7075] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  312.126545][ T7075] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  312.136174][ T7075] erofs: (device loop2): z_erofs_read_folio: failed to read, err [-117]
[  312.305338][ T3718] usb 1-1: no configurations
[  312.316687][ T3718] usb 1-1: can't read configurations, error -22
[  312.330749][ T3718] usb usb1-port1: attempt power cycle
[  312.352189][ T5035] Bluetooth: hci3: command tx timeout
[  312.756536][ T3718] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  312.885330][ T3718] usb 1-1: no configurations
[  312.889997][ T3718] usb 1-1: can't read configurations, error -22
[  313.796951][ T3718] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  313.844568][   T22] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  313.944764][ T3718] usb 1-1: no configurations
[  313.949467][ T3718] usb 1-1: can't read configurations, error -22
[  313.959992][ T3718] usb usb1-port1: unable to enumerate USB device
[  314.097075][   T22] usb 3-1: Using ep0 maxpacket: 8
[  314.220508][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  314.231579][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  314.241505][   T22] usb 3-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  314.250830][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.276404][   T22] usb 3-1: config 0 descriptor??
[  315.426324][ T7087] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1025'.
[  315.439827][ T7087] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1025'.
[  315.732003][ T3813] device hsr_slave_0 left promiscuous mode
[  315.794748][ T7108] Cannot find del_set index 0 as target
[  315.931828][ T3813] device hsr_slave_1 left promiscuous mode
[  316.042323][ T3813] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  316.139064][ T3813] batman_adv: batadv0: Removing interface: batadv_slave_0
[  316.269532][ T3813] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  316.369981][ T3813] batman_adv: batadv0: Removing interface: batadv_slave_1
[  316.635421][ T3813] batman_adv: batadv0: Removing interface: ipvlan1
[  316.657067][ T3813] device team0 left promiscuous mode
[  316.664870][   T22] usbhid 3-1:0.0: can't add hid device: -71
[  316.670858][   T22] usbhid: probe of 3-1:0.0 failed with error -71
[  316.694528][ T3813] device team_slave_0 left promiscuous mode
[  316.707132][ T3813] device team_slave_1 left promiscuous mode
[  316.715526][   T22] usb 3-1: USB disconnect, device number 11
[  316.723197][ T3813] bridge0: port 3(team0) entered disabled state
[  316.743554][ T3813] device bridge_slave_1 left promiscuous mode
[  316.753832][ T7113] loop3: detected capacity change from 0 to 128
[  316.762688][ T3813] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.777253][ T3813] device bridge_slave_0 left promiscuous mode
[  316.783518][ T3813] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.794850][   T26] audit: type=1800 audit(1727348763.519:269): pid=7113 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1033" name="bus" dev="loop3" ino=1048647 res=0 errno=0
[  316.897668][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[  316.909334][ T3813] device dummy0 left promiscuous mode
[  316.928519][ T3813] device veth0_macvtap left promiscuous mode
[  316.940918][ T3813] device veth1_vlan left promiscuous mode
[  316.950394][ T3813] device veth0_vlan left promiscuous mode
[  317.235484][   T22] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  317.551093][   T22] usb 3-1: no configurations
[  317.561212][   T22] usb 3-1: can't read configurations, error -22
[  317.664032][ T3813] team0 (unregistering): Port device team_slave_1 removed
[  317.722451][   T22] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  317.743656][ T3813] team0 (unregistering): Port device team_slave_0 removed
[  317.810012][ T3813] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  317.883022][ T3813] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  318.145580][   T22] usb 3-1: no configurations
[  318.151346][   T22] usb 3-1: can't read configurations, error -22
[  318.226612][   T22] usb usb3-port1: attempt power cycle
[  318.298454][ T7138] loop3: detected capacity change from 0 to 16
[  318.318431][ T7138] erofs: (device loop3): mounted with root inode @ nid 36.
[  318.336618][ T7138] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  318.346419][ T7138] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[  318.356592][ T7138] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117]
[  318.856147][   T22] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  319.024939][   T22] usb 3-1: no configurations
[  319.029934][   T22] usb 3-1: can't read configurations, error -22
[  319.128210][ T3813] bond0 (unregistering): Released all slaves
[  319.184670][   T22] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  319.212674][ T7104] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1030'.
[  319.299622][ T7121] device syzkaller0 entered promiscuous mode
[  319.336182][   T22] usb 3-1: no configurations
[  319.340874][   T22] usb 3-1: can't read configurations, error -22
[  319.349196][   T22] usb usb3-port1: unable to enumerate USB device
[  319.373013][ T7149] loop4: detected capacity change from 0 to 1024
[  319.400446][ T7149] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  319.412406][ T7149] EXT4-fs (loop4): orphan cleanup on readonly fs
[  319.424116][ T7149] Quota error (device loop4): v2_read_file_info: Can't read info structure
[  319.433062][ T7149] EXT4-fs warning (device loop4): ext4_enable_quotas:7035: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  319.455918][ T7149] EXT4-fs (loop4): Cannot turn on quotas: error -5
[  319.485607][ T7149] EXT4-fs (loop4): 1 truncate cleaned up
[  319.491443][ T7149] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  319.789761][ T7151] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1041'.
[  320.851409][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  321.143991][   T22] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  321.155719][ T7161] Cannot find del_set index 0 as target
[  322.345674][   T22] usb 3-1: Using ep0 maxpacket: 8
[  322.485994][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  322.517576][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  322.579742][   T22] usb 3-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  322.628865][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.712865][   T22] usb 3-1: config 0 descriptor??
[  323.266520][ T7171] loop4: detected capacity change from 0 to 128
[  323.303768][   T26] audit: type=1800 audit(1727348770.019:270): pid=7171 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1047" name="bus" dev="loop4" ino=1048649 res=0 errno=0
[  324.545522][ T7176] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1049'.
[  324.654736][   T22] usbhid 3-1:0.0: can't add hid device: -71
[  324.660833][   T22] usbhid: probe of 3-1:0.0 failed with error -71
[  324.698479][   T22] usb 3-1: USB disconnect, device number 16
[  324.837220][ T7182] loop0: detected capacity change from 0 to 1024
[  324.885916][ T7182] EXT4-fs: Ignoring removed orlov option
[  324.893769][ T7182] EXT4-fs: Ignoring removed nomblk_io_submit option
[  325.103110][ T7190] Cannot find del_set index 0 as target
[  326.044091][ T7196] loop4: detected capacity change from 0 to 128
[  326.059607][ T7182] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  326.068533][ T7197] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎ
[  326.294442][   T26] audit: type=1800 audit(1727348772.819:271): pid=7196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1057" name="bus" dev="loop4" ino=1048651 res=0 errno=0
[  326.447407][ T7204] netlink: 'syz.0.1052': attribute type 10 has an invalid length.
[  326.523994][ T7204] netlink: 'syz.0.1052': attribute type 10 has an invalid length.
[  326.532010][ T7204] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1052'.
[  326.542473][ T7204] device team0 entered promiscuous mode
[  326.548904][ T7204] device team_slave_0 entered promiscuous mode
[  326.557574][ T7204] device team_slave_1 entered promiscuous mode
[  326.571141][ T7204] 8021q: adding VLAN 0 to HW filter on device team0
[  326.579783][ T7204] bridge0: port 1(team0) entered blocking state
[  326.586627][ T7204] bridge0: port 1(team0) entered disabled state
[  326.603514][ T7204] bridge0: port 1(team0) entered blocking state
[  326.609932][ T7204] bridge0: port 1(team0) entered forwarding state
[  327.082093][ T7206] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1059'.
[  327.131974][ T7208] loop3: detected capacity change from 0 to 512
[  327.136664][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  327.161002][ T7208] EXT4-fs (loop3): Test dummy encryption mode enabled
[  327.266977][ T7208] EXT4-fs error (device loop3): __ext4_iget:5055: inode #11: block 1: comm syz.3.1060: invalid block
[  327.279079][ T7208] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1060: couldn't read orphan inode 11 (err -117)
[  327.295136][ T7208] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  328.330871][ T7214] device syzkaller0 entered promiscuous mode
[  328.364646][ T4148] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  328.635273][ T4148] usb 1-1: Using ep0 maxpacket: 8
[  328.804683][ T4148] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  328.824453][ T4148] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  328.860200][ T4148] usb 1-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  328.874744][ T4148] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.886935][ T4148] usb 1-1: config 0 descriptor??
[  329.075402][ T7227] loop7: detected capacity change from 0 to 16384
[  329.571534][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  330.349751][ T7236] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1067'.
[  330.445462][ T4148] usbhid 1-1:0.0: can't add hid device: -71
[  330.463423][ T4148] usbhid: probe of 1-1:0.0 failed with error -71
[  330.531735][ T4148] usb 1-1: USB disconnect, device number 28
[  331.263248][ T7244] loop4: detected capacity change from 0 to 512
[  331.301738][ T7244] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  331.311058][ T7244] EXT4-fs (loop4): orphan cleanup on readonly fs
[  331.339006][ T7244] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated!
[  331.348287][ T7244] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota
[  331.359346][ T7244] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.1071: Failed to acquire dquot type 1
[  331.372803][ T7244] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1071: bg 0: block 40: padding at end of block bitmap is not set
[  331.391572][ T7244] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  331.421113][ T7244] EXT4-fs (loop4): 1 truncate cleaned up
[  331.433247][ T7244] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  331.551225][ T7247] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  332.715559][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  332.792565][ T7253] loop4: detected capacity change from 0 to 128
[  332.843880][ T7253] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  332.851396][ T7257] loop0: detected capacity change from 0 to 512
[  332.859147][ T7253] ext4 filesystem being mounted at /37/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  332.860515][ T7257] EXT4-fs (loop0): Test dummy encryption mode enabled
[  332.930176][ T7257] EXT4-fs error (device loop0): __ext4_iget:5055: inode #11: block 1: comm syz.0.1074: invalid block
[  332.941810][ T7257] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1074: couldn't read orphan inode 11 (err -117)
[  332.966302][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  332.972431][ T7257] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  333.946835][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  334.013547][ T7268] loop0: detected capacity change from 0 to 128
[  334.031642][   T26] audit: type=1800 audit(1727348780.749:272): pid=7268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1078" name="bus" dev="loop0" ino=1048653 res=0 errno=0
[  334.819704][ T6988] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  334.856096][ T6988] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  334.930596][ T6988] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  334.971765][ T3813] tipc: Left network mode
[  334.972074][ T6988] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  335.308846][ T7284] loop3: detected capacity change from 0 to 128
[  335.341184][ T7284] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  335.482621][ T7284] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  335.582418][ T6988] 8021q: adding VLAN 0 to HW filter on device bond0
[  335.600962][ T7290] netlink: 'syz.0.1085': attribute type 5 has an invalid length.
[  335.682182][ T6988] 8021q: adding VLAN 0 to HW filter on device team0
[  335.709608][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  335.723047][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  335.735214][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  335.824301][ T7293] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1088'.
[  335.850915][ T3836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  335.876558][ T3836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  335.903975][ T3836] bridge0: port 1(bridge_slave_0) entered blocking state
[  335.911189][ T3836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  335.939720][ T3836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  335.967632][ T3836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  335.981361][ T3836] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.988547][ T3836] bridge0: port 2(bridge_slave_1) entered forwarding state
[  336.008393][ T3836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  336.056811][ T3836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  336.075698][ T7297] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1089'.
[  336.095234][ T7297] device macvtap1 entered promiscuous mode
[  336.101227][ T7297] device bond0 entered promiscuous mode
[  336.114969][ T7297] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  336.127401][ T7301] device bond0 left promiscuous mode
[  336.215894][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  336.231174][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  336.249261][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  336.259912][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  336.285042][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  336.294178][ T4231] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  336.382797][ T4639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  336.394184][ T4639] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  336.479621][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  336.507637][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  336.526677][ T6988] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  336.601428][ T7323] syz.4.1099[7323] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  336.601538][ T7323] syz.4.1099[7323] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  336.612126][ T7320] loop0: detected capacity change from 0 to 512
[  336.624841][ T3813] IPVS: stopping master sync thread 5194 ...
[  336.668199][ T7320] EXT4-fs error (device loop0): ext4_init_orphan_info:586: comm syz.0.1098: inode #0: comm syz.0.1098: iget: illegal inode #
[  336.702510][ T7320] EXT4-fs (loop0): get orphan inode failed
[  336.716352][ T7320] EXT4-fs (loop0): mount failed
[  336.933281][ T7329] loop4: detected capacity change from 0 to 512
[  336.989174][ T7329] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  337.022873][ T7329] EXT4-fs (loop4): orphan cleanup on readonly fs
[  337.114545][ T7329] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated!
[  337.164158][ T7329] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota
[  337.200628][ T7336] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1101'.
[  337.218553][ T7329] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.1100: Failed to acquire dquot type 1
[  337.268350][ T7329] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1100: bg 0: block 40: padding at end of block bitmap is not set
[  337.307565][ T7329] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  337.337312][ T7329] EXT4-fs (loop4): 1 truncate cleaned up
[  337.343191][ T7329] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  337.404970][ T5671] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  337.412537][ T5671] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  337.448528][ T3813] device hsr_slave_0 left promiscuous mode
[  337.460552][ T7347] loop2: detected capacity change from 0 to 128
[  337.474664][ T7329] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  337.491386][ T7347] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  337.504646][ T3813] device hsr_slave_1 left promiscuous mode
[  337.511502][ T3813] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  337.521354][ T7347] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  337.533544][ T3813] batman_adv: batadv0: Removing interface: batadv_slave_0
[  337.567452][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  337.622214][ T7353] Cannot find del_set index 0 as target
[  337.713948][ T7353] loop0: detected capacity change from 0 to 1024
[  337.780640][ T3813] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  337.816023][ T7353] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  337.827098][ T7353] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  337.871604][ T7353] JBD2: no valid journal superblock found
[  337.877524][ T7353] EXT4-fs (loop0): error loading journal
[  337.941456][ T3813] batman_adv: batadv0: Removing interface: batadv_slave_1
[  338.022920][ T3813] device bridge_slave_1 left promiscuous mode
[  338.078107][ T3813] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.173223][ T3813] device bridge_slave_0 left promiscuous mode
[  338.230024][ T3813] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.389648][ T7355] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎsÅ‚Ün02ÖÌüä
[  338.421293][ T3813] device veth1_macvtap left promiscuous mode
[  338.430038][ T3813] device veth0_macvtap left promiscuous mode
[  338.440500][ T3813] device veth1_vlan left promiscuous mode
[  338.447648][ T3813] device veth0_vlan left promiscuous mode
[  338.474076][ T6660] EXT4-fs (loop2): unmounting filesystem.
[  339.469797][ T3813] team0 (unregistering): Port device team_slave_1 removed
[  339.513135][ T7381] loop0: detected capacity change from 0 to 512
[  339.522587][ T3813] team0 (unregistering): Port device team_slave_0 removed
[  339.527816][ T7381] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  339.542464][ T7381] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  339.582583][ T7381] EXT4-fs (loop0): 1 orphan inode deleted
[  339.589159][ T3813] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  339.597910][ T7381] EXT4-fs (loop0): 1 truncate cleaned up
[  339.603630][ T7381] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  339.653630][ T3813] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  339.687079][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  339.773239][ T7385] loop0: detected capacity change from 0 to 128
[  339.795693][ T7385] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  339.804868][ T7385] ext4 filesystem being mounted at /241/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  339.890664][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  340.011327][ T7388] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  340.018121][ T7388] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  340.041622][ T7388] vhci_hcd vhci_hcd.0: Device attached
[  340.247365][ T7389] vhci_hcd: connection closed
[  340.251617][ T3813] bond0 (unregistering): Released all slaves
[  340.255214][ T3998] vhci_hcd: stop threads
[  340.276010][ T3998] vhci_hcd: release socket
[  340.283687][ T3998] vhci_hcd: disconnect device
[  340.324505][ T3688] usb 9-1: new high-speed USB device number 2 using vhci_hcd
[  340.332262][ T3688] usb 9-1: enqueue for inactive port 0
[  340.334767][ T6988] 8021q: adding VLAN 0 to HW filter on device batadv0
[  340.361726][ T7369] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1110'.
[  340.377435][ T7369] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  340.385603][ T7369] batman_adv: batadv0: Removing interface: batadv_slave_0
[  340.393865][ T7369] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  340.401918][ T7369] batman_adv: batadv0: Removing interface: batadv_slave_1
[  340.409986][ T7369] batman_adv: batadv0: Removing interface: ipvlan1
[  340.424562][ T3688] vhci_hcd: vhci_device speed not set
[  340.447551][ T7375] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1115'.
[  340.478771][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  340.490795][ T3814] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  340.549837][ T3695] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  340.560360][ T3695] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  340.572400][ T6988] device veth0_vlan entered promiscuous mode
[  340.582785][ T3695] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  340.585234][ T7394] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎsÅ‚Ün02ÖÌüä
[  340.606725][ T3695] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  340.623428][ T6988] device veth1_vlan entered promiscuous mode
[  340.701011][ T7046] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  340.715740][ T7046] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  340.729373][ T7046] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  340.739113][ T7046] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  340.751155][ T6988] device veth0_macvtap entered promiscuous mode
[  340.823196][ T7402] Cannot find del_set index 0 as target
[  340.908319][ T7402] loop4: detected capacity change from 0 to 1024
[  340.935737][ T7402] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  340.946806][ T7402] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  340.983388][ T7402] JBD2: no valid journal superblock found
[  340.989277][ T7402] EXT4-fs (loop4): error loading journal
[  341.145262][ T3685] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  341.605316][ T3685] usb 4-1: unable to read config index 0 descriptor/start: -61
[  341.634780][ T3685] usb 4-1: can't read configurations, error -61
[  341.651009][ T6988] device veth1_macvtap entered promiscuous mode
[  341.691792][ T7404] loop2: detected capacity change from 0 to 128
[  341.706077][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  341.717137][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  341.723059][   T26] audit: type=1804 audit(1727348788.439:273): pid=7404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1125" name="/newroot/24/file2/file0" dev="loop2" ino=1048654 res=1 errno=0
[  341.772286][ T6988] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  341.786785][ T6988] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.803301][ T6988] batman_adv: batadv0: Interface activated: batadv_slave_0
[  341.813883][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  341.823438][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  341.846777][ T6988] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  341.863814][ T6988] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.873232][ T3685] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  341.882917][ T7409] loop7: detected capacity change from 16384 to 16383
[  341.891027][ T6988] batman_adv: batadv0: Interface activated: batadv_slave_1
[  341.900921][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  341.933898][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  341.971328][ T6988] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  341.989885][ T7412] serio: Serial port ptm0
[  342.001935][ T6988] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  342.012438][ T7404] syz.2.1125: attempt to access beyond end of device
[  342.012438][ T7404] loop2: rw=2049, sector=128, nr_sectors = 1 limit=128
[  342.029850][ T7404] buffer_io_error: 18 callbacks suppressed
[  342.029868][ T7404] Buffer I/O error on dev loop2, logical block 128, lost async page write
[  342.038327][ T6988] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  342.074580][ T6988] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  342.149599][ T7414] loop0: detected capacity change from 0 to 128
[  342.207617][ T7414] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  342.222500][ T7414] ext4 filesystem being mounted at /245/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  342.224682][ T7418] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1130'.
[  342.273490][ T3814] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.304720][ T3685] usb 4-1: unable to read config index 0 descriptor/start: -61
[  342.312541][ T3685] usb 4-1: can't read configurations, error -61
[  342.324484][ T3814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.339884][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  342.343587][ T3685] usb usb4-port1: attempt power cycle
[  342.371390][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  342.388334][ T3814] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.401722][ T3814] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.419728][ T3684] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  342.438918][ T7424] loop0: detected capacity change from 0 to 128
[  342.593471][ T7432] loop4: detected capacity change from 0 to 128
[  342.614109][   T26] audit: type=1326 audit(1727348789.329:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.638768][   T26] audit: type=1326 audit(1727348789.329:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.666441][ T7429] loop2: detected capacity change from 0 to 128
[  342.667303][   T26] audit: type=1326 audit(1727348789.369:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.692484][ T7429] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  342.742544][   T26] audit: type=1326 audit(1727348789.369:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.765948][ T3685] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  342.802999][   T26] audit: type=1326 audit(1727348789.369:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.864947][   T26] audit: type=1326 audit(1727348789.379:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.889899][   T26] audit: type=1326 audit(1727348789.379:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.913273][   T26] audit: type=1326 audit(1727348789.379:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  342.961819][   T26] audit: type=1326 audit(1727348789.389:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  343.037851][   T26] audit: type=1326 audit(1727348789.389:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7433 comm="syz.1.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  343.084616][ T3685] usb 4-1: unable to read config index 0 descriptor/start: -61
[  343.106170][ T3685] usb 4-1: can't read configurations, error -61
[  343.149820][ T7444] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎsÅ‚Ün02ÖÌü䧑
[  343.164236][ T7449] loop0: detected capacity change from 0 to 128
[  343.172224][ T7448] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1142'.
[  343.209870][ T7449] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  343.226352][ T7449] ext4 filesystem being mounted at /250/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  343.261637][  T151] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[  343.283483][  T151] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[  343.284487][ T3685] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  343.305795][  T151] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x3
[  343.323301][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  343.345895][  T151] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  343.588502][ T3685] usb 4-1: unable to read config index 0 descriptor/start: -61
[  343.614804][ T3685] usb 4-1: can't read configurations, error -61
[  343.634740][ T3685] usb usb4-port1: unable to enumerate USB device
[  343.854281][ T7477] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1154'.
[  343.926020][ T7480] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎsÅ‚Ün02ÖÌü䧑
[  343.958781][ T7482] loop0: detected capacity change from 0 to 128
[  343.984332][ T7482] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  344.000905][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[  344.009417][ T7482] ext4 filesystem being mounted at /254/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  344.080315][ T7489] syz.2.1157 uses obsolete (PF_INET,SOCK_PACKET)
[  344.084534][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[  344.107175][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.129738][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.154795][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.173944][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.194190][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.211702][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.232686][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.246740][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.256313][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.266481][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.274974][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.286451][ T4148] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[  344.299592][ T4148] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  344.322890][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  344.394589][ T7503] loop3: detected capacity change from 0 to 128
[  344.665044][ T7519] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎsÅ‚Ün02ÖÌü䧑
[  344.681047][ T7517] loop1: detected capacity change from 0 to 128
[  344.722917][ T7517] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  344.745580][ T7517] ext4 filesystem being mounted at /8/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  344.764565][ T3718] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  344.860791][ T6988] EXT4-fs (loop1): unmounting filesystem.
[  345.157305][ T7533] loop0: detected capacity change from 0 to 256
[  345.196022][ T3718] usb 3-1: unable to read config index 0 descriptor/start: -61
[  345.214028][ T3718] usb 3-1: can't read configurations, error -61
[  345.227430][ T7533] FAT-fs (loop0): Directory bread(block 64) failed
[  345.249541][ T7533] FAT-fs (loop0): Directory bread(block 65) failed
[  345.265167][ T7533] FAT-fs (loop0): Directory bread(block 66) failed
[  345.271790][ T7533] FAT-fs (loop0): Directory bread(block 67) failed
[  345.301258][ T7533] FAT-fs (loop0): Directory bread(block 68) failed
[  345.320908][ T7533] FAT-fs (loop0): Directory bread(block 69) failed
[  345.338385][ T7533] FAT-fs (loop0): Directory bread(block 70) failed
[  345.348480][ T7533] FAT-fs (loop0): Directory bread(block 71) failed
[  345.364656][ T3718] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  345.368902][ T7533] FAT-fs (loop0): Directory bread(block 72) failed
[  345.390454][ T7533] FAT-fs (loop0): Directory bread(block 73) failed
[  345.547284][    T9] kworker/u4:0: attempt to access beyond end of device
[  345.547284][    T9] loop0: rw=1, sector=1224, nr_sectors = 4 limit=256
[  345.569505][ T7546] loop3: detected capacity change from 0 to 128
[  345.601441][ T7546] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  345.624809][ T7546] ext4 filesystem being mounted at /106/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  345.699798][ T7553] loop0: detected capacity change from 0 to 128
[  345.728103][ T7553] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  345.750150][ T7553] ext4 filesystem being mounted at /261/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  345.825616][ T3718] usb 3-1: unable to read config index 0 descriptor/start: -61
[  345.833374][ T3718] usb 3-1: can't read configurations, error -61
[  345.844042][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  345.860922][ T3718] usb usb3-port1: attempt power cycle
[  345.989007][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  346.284636][ T3718] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  346.536082][ T3718] usb 3-1: unable to read config index 0 descriptor/start: -61
[  346.609267][ T7601] Cannot find del_set index 0 as target
[  346.637103][ T7599] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1201'.
[  346.731462][ T7601] loop4: detected capacity change from 0 to 1024
[  346.781066][ T7601] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  346.792531][ T7601] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  346.853883][ T7601] JBD2: no valid journal superblock found
[  346.860165][ T7601] EXT4-fs (loop4): error loading journal
[  346.903212][ T3718] usb 3-1: can't read configurations, error -61
[  347.479112][ T3718] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  347.584608][ T3718] usb 3-1: device descriptor read/8, error -71
[  347.724779][ T3718] usb usb3-port1: unable to enumerate USB device
[  347.796656][ T7618] syz.4.1212[7618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.796782][ T7618] syz.4.1212[7618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.939200][ T7621] loop2: detected capacity change from 0 to 512
[  348.027427][ T7621] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  348.041715][ T7621] EXT4-fs (loop2): orphan cleanup on readonly fs
[  348.050853][ T7621] __quota_error: 69 callbacks suppressed
[  348.050891][ T7621] Quota error (device loop2): dq_insert_tree: Quota tree root isn't allocated!
[  348.069421][ T7621] Quota error (device loop2): qtree_write_dquot: Error -5 occurred while creating quota
[  348.079648][ T7621] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.1213: Failed to acquire dquot type 1
[  348.102782][ T7621] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1213: bg 0: block 40: padding at end of block bitmap is not set
[  348.153106][ T7621] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  348.204303][ T7621] EXT4-fs (loop2): 1 truncate cleaned up
[  348.237685][ T7621] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  348.276096][   T26] audit: type=1326 audit(1727348794.999:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7605 comm="syz.1.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  348.469191][ T7641] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  348.577133][ T7648] Cannot find del_set index 0 as target
[  348.667661][ T7648] loop4: detected capacity change from 0 to 1024
[  348.681838][ T3685] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  348.726475][ T7648] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  348.737659][ T7648] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  348.791077][ T7648] JBD2: no valid journal superblock found
[  348.797002][ T7648] EXT4-fs (loop4): error loading journal
[  349.315681][ T3685] usb 1-1: unable to read config index 0 descriptor/start: -61
[  349.389637][ T3685] usb 1-1: can't read configurations, error -61
[  349.427050][ T6660] EXT4-fs (loop2): unmounting filesystem.
[  349.511432][ T7652] loop2: detected capacity change from 0 to 128
[  349.574165][   T26] audit: type=1800 audit(1727348796.289:354): pid=7652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1226" name="bus" dev="loop2" ino=1048666 res=0 errno=0
[  349.602004][ T3685] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  349.732086][ T7661] bridge0: port 1(macsec0) entered blocking state
[  349.739574][ T7661] bridge0: port 1(macsec0) entered disabled state
[  349.747481][ T7661] device macsec0 entered promiscuous mode
[  349.760590][ T7661] bridge0: port 1(macsec0) entered blocking state
[  349.767242][ T7661] bridge0: port 1(macsec0) entered forwarding state
[  350.035523][ T3685] usb 1-1: unable to read config index 0 descriptor/start: -61
[  350.049889][ T3685] usb 1-1: can't read configurations, error -61
[  350.057887][ T3685] usb usb1-port1: attempt power cycle
[  350.070244][   T26] audit: type=1326 audit(1727348796.789:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7673 comm="syz.4.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  350.117858][   T26] audit: type=1326 audit(1727348796.819:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7673 comm="syz.4.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  350.120388][ T7677] loop1: detected capacity change from 0 to 512
[  350.155446][   T26] audit: type=1326 audit(1727348796.819:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7673 comm="syz.4.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  350.179842][   T26] audit: type=1326 audit(1727348796.819:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7673 comm="syz.4.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  350.208433][   T26] audit: type=1326 audit(1727348796.819:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7673 comm="syz.4.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  350.234326][   T26] audit: type=1326 audit(1727348796.829:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7673 comm="syz.4.1236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  350.278473][ T7677] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  350.298388][ T7677] EXT4-fs (loop1): orphan cleanup on readonly fs
[  350.326008][ T7677] EXT4-fs error (device loop1): ext4_acquire_dquot:6800: comm syz.1.1237: Failed to acquire dquot type 1
[  350.369082][ T7677] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1237: bg 0: block 40: padding at end of block bitmap is not set
[  350.398628][ T7677] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  350.468765][ T7691] Cannot find del_set index 0 as target
[  350.557465][ T7691] loop3: detected capacity change from 0 to 1024
[  350.616938][ T7691] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  350.628107][ T7691] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  350.676909][ T7691] JBD2: no valid journal superblock found
[  350.682833][ T7691] EXT4-fs (loop3): error loading journal
[  350.727072][ T7677] EXT4-fs (loop1): 1 truncate cleaned up
[  350.736878][ T7677] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  351.344455][ T3685] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  351.584897][ T3685] usb 1-1: device not accepting address 31, error -71
[  351.601068][ T7701] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  351.650271][ T7703] syz.0.1248[7703] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  351.650391][ T7703] syz.0.1248[7703] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  351.683667][ T7705] device team0 entered promiscuous mode
[  351.743485][ T7705] device team_slave_0 entered promiscuous mode
[  351.764925][ T7705] device team_slave_1 entered promiscuous mode
[  351.803562][ T6988] EXT4-fs (loop1): unmounting filesystem.
[  351.840820][ T7707] team0: Port device team_slave_0 removed
[  351.873754][ T7704] device team0 left promiscuous mode
[  351.898579][ T7704] device team_slave_1 left promiscuous mode
[  351.917344][ T7711] loop0: detected capacity change from 0 to 512
[  351.939847][ T7711] EXT4-fs: Ignoring removed i_version option
[  351.961522][ T7711] EXT4-fs: Ignoring removed nobh option
[  351.985794][ T7711] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  351.987369][ T7717] xt_connbytes: Forcing CT accounting to be enabled
[  352.025240][ T7717] Cannot find add_set index 0 as target
[  352.049382][ T7711] EXT4-fs (loop0): 1 truncate cleaned up
[  352.067882][ T7711] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  352.270663][ T7736] Cannot find del_set index 0 as target
[  352.353891][ T7736] loop4: detected capacity change from 0 to 1024
[  352.395177][ T7736] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  352.406313][ T7736] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  352.444867][ T3687] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  352.465843][ T7736] JBD2: no valid journal superblock found
[  352.471769][ T7736] EXT4-fs (loop4): error loading journal
[  352.878347][ T7734] loop3: detected capacity change from 0 to 512
[  352.885346][ T3687] usb 2-1: config 0 has no interfaces?
[  352.897521][ T3687] usb 2-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[  353.025899][ T3687] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  353.090113][ T7734] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  353.115541][ T3687] usb 2-1: config 0 descriptor??
[  353.115780][ T7734] EXT4-fs (loop3): orphan cleanup on readonly fs
[  353.135928][ T7734] __quota_error: 13 callbacks suppressed
[  353.135949][ T7734] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated!
[  353.141705][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  353.158450][ T7734] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota
[  353.180738][ T7734] EXT4-fs error (device loop3): ext4_acquire_dquot:6800: comm syz.3.1262: Failed to acquire dquot type 1
[  353.206108][ T7734] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1262: bg 0: block 40: padding at end of block bitmap is not set
[  353.236278][ T7734] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  353.248870][   T26] audit: type=1326 audit(1727348799.969:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7742 comm="syz.0.1263" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9dbf77df39 code=0x0
[  353.279405][ T7734] EXT4-fs (loop3): 1 truncate cleaned up
[  353.285407][ T7734] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  353.423504][ T4148] usb 2-1: USB disconnect, device number 12
[  353.620719][ T7759] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  353.849576][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  354.442068][ T7781] netlink: 2008 bytes leftover after parsing attributes in process `syz.4.1273'.
[  354.467659][ T7781] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1273'.
[  354.589355][ T7787] Cannot find del_set index 0 as target
[  354.675812][ T7787] loop2: detected capacity change from 0 to 1024
[  354.777815][ T7787] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  354.789213][ T7787] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  354.847366][ T7787] JBD2: no valid journal superblock found
[  354.853251][ T7787] EXT4-fs (loop2): error loading journal
[  355.547643][ T7794] loop0: detected capacity change from 0 to 1024
[  355.605173][ T7794] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  355.632710][ T7794] EXT4-fs (loop0): orphan cleanup on readonly fs
[  355.669441][ T7794] Quota error (device loop0): v2_read_file_info: Can't read info structure
[  355.681190][   T26] audit: type=1326 audit(1727348802.399:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  355.730691][ T7794] EXT4-fs warning (device loop0): ext4_enable_quotas:7035: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  355.804550][   T26] audit: type=1326 audit(1727348802.429:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  355.814807][ T7794] EXT4-fs (loop0): Cannot turn on quotas: error -5
[  355.851830][ T7794] EXT4-fs (loop0): 1 truncate cleaned up
[  355.874493][ T7794] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  355.932998][   T26] audit: type=1326 audit(1727348802.429:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  356.042639][   T26] audit: type=1326 audit(1727348802.429:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  356.134600][   T26] audit: type=1326 audit(1727348802.439:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  356.204811][   T26] audit: type=1326 audit(1727348802.439:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7799 comm="syz.4.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29db37df39 code=0x7ffc0000
[  356.228728][ T7821] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1279'.
[  356.449572][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  356.533375][ T7830] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  356.664441][ T3687] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  357.034756][ T3687] usb 4-1: config 0 has no interfaces?
[  357.041095][ T3687] usb 4-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[  357.102310][ T3687] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.190051][ T3687] usb 4-1: config 0 descriptor??
[  357.227407][ T7859] loop1: detected capacity change from 0 to 1024
[  357.901246][ T7859] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  357.994669][ T4148] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  358.038927][ T7859] EXT4-fs (loop1): orphan cleanup on readonly fs
[  358.075276][ T7859] EXT4-fs warning (device loop1): ext4_enable_quotas:7035: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  358.080230][ T3685] usb 4-1: USB disconnect, device number 10
[  358.148359][ T7859] EXT4-fs (loop1): Cannot turn on quotas: error -5
[  358.176132][ T7859] EXT4-fs (loop1): 1 truncate cleaned up
[  358.181876][ T7859] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  358.324427][ T4148] usb 3-1: Using ep0 maxpacket: 8
[  358.508912][ T4148] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  358.522431][ T4148] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  358.536744][ T4148] usb 3-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  358.547150][ T7871] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1303'.
[  358.740099][ T4148] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.751323][ T4148] usb 3-1: config 0 descriptor??
[  358.772721][ T6988] EXT4-fs (loop1): unmounting filesystem.
[  360.739218][ T7920] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1321'.
[  361.017949][ T4148] usbhid 3-1:0.0: can't add hid device: -71
[  361.024003][ T4148] usbhid: probe of 3-1:0.0 failed with error -71
[  361.068846][ T4148] usb 3-1: USB disconnect, device number 21
[  361.320755][   T26] kauditd_printk_skb: 64 callbacks suppressed
[  361.320773][   T26] audit: type=1326 audit(1727348808.039:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.349356][    C1] vkms_vblank_simulate: vblank timer overrun
[  361.365817][   T26] audit: type=1326 audit(1727348808.079:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.430341][   T26] audit: type=1326 audit(1727348808.079:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd34217c8d0 code=0x7ffc0000
[  361.452717][    C1] vkms_vblank_simulate: vblank timer overrun
[  361.461437][   T26] audit: type=1326 audit(1727348808.079:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd34217c8d0 code=0x7ffc0000
[  361.483827][    C1] vkms_vblank_simulate: vblank timer overrun
[  361.508326][   T26] audit: type=1326 audit(1727348808.079:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.531195][ T4148] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  361.569138][   T26] audit: type=1326 audit(1727348808.079:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.603254][   T26] audit: type=1326 audit(1727348808.129:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.634785][   T26] audit: type=1326 audit(1727348808.129:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.667206][   T26] audit: type=1326 audit(1727348808.129:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  361.691043][   T26] audit: type=1326 audit(1727348808.129:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd34217df39 code=0x7ffc0000
[  364.034487][   T14] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  364.164728][ T4148] usb 3-1: unable to read config index 0 descriptor/start: -71
[  364.188348][ T4148] usb 3-1: can't read configurations, error -71
[  364.287851][   T14] usb 5-1: Using ep0 maxpacket: 8
[  364.407478][   T14] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  364.423366][ T7987] device vlan0 entered promiscuous mode
[  364.431662][   T14] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  364.452118][   T14] usb 5-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  364.462930][   T14] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.487319][   T14] usb 5-1: config 0 descriptor??
[  364.576751][ T7991] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1355'.
[  364.597647][ T7991] netlink: 'syz.2.1355': attribute type 10 has an invalid length.
[  365.316302][ T7991] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  365.664364][    C0] sched: RT throttling activated
[  365.774914][   T48] Bluetooth: hci0: command 0x0406 tx timeout
[  366.024517][   T14] usbhid 5-1:0.0: can't add hid device: -71
[  366.030566][   T14] usbhid: probe of 5-1:0.0 failed with error -71
[  366.050656][   T14] usb 5-1: USB disconnect, device number 9
[  366.097947][ T8008] Cannot find del_set index 0 as target
[  366.183531][ T8008] loop3: detected capacity change from 0 to 1024
[  366.308352][ T8008] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  366.319634][ T8008] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  366.359176][ T8008] JBD2: no valid journal superblock found
[  366.365066][ T8008] EXT4-fs (loop3): error loading journal
[  367.268579][ T8022] syz.1.1368[8022] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  367.268677][ T8022] syz.1.1368[8022] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  368.095960][ T3689] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  368.541172][ T8049] loop4: detected capacity change from 0 to 512
[  368.564467][ T3689] usb 3-1: Using ep0 maxpacket: 8
[  368.616664][ T8049] EXT4-fs error (device loop4): ext4_quota_enable:6987: comm syz.4.1379: Bad quota inum: 4294967295, type: 1
[  368.634130][ T8049] EXT4-fs warning (device loop4): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-117, ino=4294967295). Please run e2fsck to fix.
[  368.771125][ T8061] Cannot find del_set index 0 as target
[  368.861810][ T8061] loop0: detected capacity change from 0 to 1024
[  368.880419][ T3689] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  368.920445][ T8061] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  368.931501][ T8061] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  368.970186][ T8061] JBD2: no valid journal superblock found
[  368.976070][ T8061] EXT4-fs (loop0): error loading journal
[  369.054098][ T8049] EXT4-fs (loop4): mount failed
[  369.084103][ T3689] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  369.208193][ T3689] usb 3-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  369.327235][ T3689] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.533197][ T3689] usb 3-1: config 0 descriptor??
[  369.731210][ T8066] loop3: detected capacity change from 0 to 512
[  369.830919][ T8066] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  369.855573][ T8066] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038 (0x7fffffff)
[  369.886368][ T8078] futex_wake_op: syz.1.1387 tries to shift op by -1; fix this program
[  369.909268][ T8078] loop1: detected capacity change from 0 to 512
[  369.936135][ T3689] usbhid 3-1:0.0: can't add hid device: -71
[  369.948791][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  369.956695][ T3689] usbhid: probe of 3-1:0.0 failed with error -71
[  369.971799][ T8078] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  369.974527][   T26] kauditd_printk_skb: 51 callbacks suppressed
[  369.974543][   T26] audit: type=1326 audit(1727348816.689:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbf77df39 code=0x7ffc0000
[  369.983692][ T3689] usb 3-1: USB disconnect, device number 24
[  369.991694][ T8082] loop0: detected capacity change from 0 to 256
[  370.035150][ T8078] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038 (0x7fffffff)
[  370.040750][   T26] audit: type=1326 audit(1727348816.689:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9dbf77df39 code=0x7ffc0000
[  370.067689][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.077452][   T26] audit: type=1326 audit(1727348816.689:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9dbf77df73 code=0x7ffc0000
[  370.099532][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.110290][   T26] audit: type=1326 audit(1727348816.709:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9dbf77ca1f code=0x7ffc0000
[  370.132429][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.153576][   T26] audit: type=1326 audit(1727348816.709:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f9dbf77dfc7 code=0x7ffc0000
[  370.178319][   T26] audit: type=1326 audit(1727348816.709:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9dbf77c8d0 code=0x7ffc0000
[  370.180873][ T6988] EXT4-fs (loop1): unmounting filesystem.
[  370.200972][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.204732][   T26] audit: type=1326 audit(1727348816.709:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9dbf77db3b code=0x7ffc0000
[  370.235254][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.271059][   T26] audit: type=1326 audit(1727348816.769:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9dbf77cbca code=0x7ffc0000
[  370.336203][   T26] audit: type=1326 audit(1727348816.769:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f9dbf77cbca code=0x7ffc0000
[  370.370769][ T8088] loop1: detected capacity change from 0 to 512
[  370.466561][   T26] audit: type=1326 audit(1727348816.769:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8081 comm="syz.0.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f9dbf77c7d7 code=0x7ffc0000
[  370.480732][ T8088] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  370.544258][ T8088] EXT4-fs (loop1): orphan cleanup on readonly fs
[  370.560996][ T8098] loop0: detected capacity change from 0 to 512
[  370.574682][ T8098] EXT4-fs (loop0): filesystem is read-only
[  370.587328][ T8088] EXT4-fs error (device loop1): ext4_acquire_dquot:6800: comm syz.1.1393: Failed to acquire dquot type 1
[  370.637777][ T8088] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1393: bg 0: block 40: padding at end of block bitmap is not set
[  370.654263][ T8098] EXT4-fs (loop0): filesystem is read-only
[  370.699193][ T8098] EXT4-fs (loop0): orphan cleanup on readonly fs
[  370.725082][ T8098] EXT4-fs error (device loop0): ext4_orphan_get:1422: comm syz.0.1398: bad orphan inode 16
[  370.737041][ T8088] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  370.746528][ T8098] ext4_test_bit(bit=15, block=3) = 0
[  370.751907][ T8098] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  370.758690][ T8088] EXT4-fs (loop1): 1 truncate cleaned up
[  370.778451][ T8088] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  370.864180][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  370.887199][ T8110] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1402'.
[  370.915776][ T8110] netlink: 'syz.4.1402': attribute type 10 has an invalid length.
[  370.951851][ T8110] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  371.083355][ T8116] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  371.181076][ T8121] loop3: detected capacity change from 0 to 1024
[  371.188580][ T8121] EXT4-fs: Ignoring removed orlov option
[  371.195491][ T8121] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.243369][ T8121] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802e018, mo2=0002]
[  371.281600][ T8121] System zones: 0-1, 3-12
[  371.301240][ T8121] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  371.315167][ T6988] EXT4-fs (loop1): unmounting filesystem.
[  371.402570][ T8121] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2738: inode #14: comm syz.3.1406: corrupted in-inode xattr
[  371.433676][ T8131] device veth1_vlan left promiscuous mode
[  371.658446][ T8121] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #14: comm syz.3.1406: attempt to clear invalid blocks 1886221359 len 1
[  372.484573][ T3685] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  372.626405][ T8143] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1414'.
[  372.714184][ T8147] loop4: detected capacity change from 0 to 1024
[  372.714534][ T6050] EXT4-fs (loop3): unmounting filesystem.
[  372.742914][ T8147] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  372.774615][ T8147] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  372.824817][ T3685] usb 3-1: Using ep0 maxpacket: 8
[  372.849795][ T8147] JBD2: no valid journal superblock found
[  372.861400][ T8147] EXT4-fs (loop4): error loading journal
[  372.862441][ T8154] device team_slave_0 entered promiscuous mode
[  372.885160][ T8150] loop0: detected capacity change from 0 to 2048
[  372.975223][ T3685] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  372.992445][ T8150] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  373.021366][ T3685] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.055857][ T8150] syz.0.1418[8150] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  373.055969][ T8150] syz.0.1418[8150] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  373.089844][ T3685] usb 3-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  373.157148][ T3685] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.188818][ T3685] usb 3-1: config 0 descriptor??
[  373.212168][ T8164] loop4: detected capacity change from 0 to 512
[  373.243672][ T8164] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  373.255707][ T8164] EXT4-fs (loop4): orphan cleanup on readonly fs
[  373.282991][ T8164] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.1421: Failed to acquire dquot type 1
[  373.310499][ T3641] EXT4-fs (loop0): unmounting filesystem.
[  373.336036][ T8164] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1421: bg 0: block 40: padding at end of block bitmap is not set
[  373.396032][ T8164] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  373.449367][ T8164] EXT4-fs (loop4): 1 truncate cleaned up
[  373.458906][ T8164] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  373.624767][ T8179] devpts: called with bogus options
[  373.679070][ T8182] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  373.996820][ T8190] Cannot find del_set index 0 as target
[  374.102517][ T8190] loop1: detected capacity change from 0 to 1024
[  374.136994][ T8190] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  374.148455][ T8190] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  374.220347][ T8190] JBD2: no valid journal superblock found
[  374.226612][ T8190] EXT4-fs (loop1): error loading journal
[  375.054552][ T3685] usbhid 3-1:0.0: can't add hid device: -71
[  375.065532][ T3685] usbhid: probe of 3-1:0.0 failed with error -71
[  375.074256][ T3685] usb 3-1: USB disconnect, device number 25
[  375.081101][   T26] kauditd_printk_skb: 73 callbacks suppressed
[  375.081116][   T26] audit: type=1326 audit(1727348821.799:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8741f7df39 code=0x7ffc0000
[  375.118050][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  375.212797][   T26] audit: type=1326 audit(1727348821.799:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8741f7df39 code=0x7ffc0000
[  375.235121][    C1] vkms_vblank_simulate: vblank timer overrun
[  375.273386][   T26] audit: type=1326 audit(1727348821.849:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f8741f7df39 code=0x7ffc0000
[  375.387472][   T26] audit: type=1326 audit(1727348821.849:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8741f7df39 code=0x7ffc0000
[  375.452194][   T26] audit: type=1326 audit(1727348821.849:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f8741f7df39 code=0x7ffc0000
[  375.538693][   T26] audit: type=1326 audit(1727348821.849:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8741f7df39 code=0x7ffc0000
[  375.760390][   T26] audit: type=1326 audit(1727348822.069:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbf77df39 code=0x7ffc0000
[  375.782695][    C1] vkms_vblank_simulate: vblank timer overrun
[  375.790103][   T26] audit: type=1326 audit(1727348822.069:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbf77df39 code=0x7ffc0000
[  375.833770][ T8217] device vlan2 entered promiscuous mode
[  375.853453][ T8217] device dummy0 entered promiscuous mode
[  375.914193][ T8217] device dummy0 left promiscuous mode
[  376.496567][   T26] audit: type=1326 audit(1727348822.099:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9dbf77df39 code=0x7ffc0000
[  376.518982][    C1] vkms_vblank_simulate: vblank timer overrun
[  376.568595][   T26] audit: type=1326 audit(1727348822.099:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.0.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbf77df39 code=0x7ffc0000
[  376.866292][ T8233] loop4: detected capacity change from 0 to 512
[  376.956169][ T8233] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  377.000765][ T8233] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038 (0x7fffffff)
[  377.209118][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  377.386038][ T8256] ALSA: seq fatal error: cannot create timer (-22)
[  377.474946][ T8265] loop0: detected capacity change from 0 to 128
[  377.643994][ T8272] syz.0.1460: attempt to access beyond end of device
[  377.643994][ T8272] loop0: rw=2049, sector=145, nr_sectors = 264 limit=128
[  377.767036][ T8276] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1463'.
[  377.932914][ T7046] kworker/u4:18: attempt to access beyond end of device
[  377.932914][ T7046] loop0: rw=1, sector=177, nr_sectors = 1 limit=128
[  378.757347][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[  378.795366][ T8281] loop1: detected capacity change from 0 to 2048
[  378.993643][ T8281]  loop1: p1 < > p4
[  379.023688][ T8300] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1473'.
[  379.032148][ T8281] loop1: p4 size 8388608 extends beyond EOD, truncated
[  379.100225][ T8303] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1471'.
[  379.228614][ T8308] loop4: detected capacity change from 0 to 512
[  379.256411][ T8308] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  379.269712][ T8308] EXT4-fs (loop4): orphan cleanup on readonly fs
[  379.290883][ T8308] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.1475: Failed to acquire dquot type 1
[  379.321771][ T8313] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1476'.
[  379.347367][ T8308] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1475: bg 0: block 40: padding at end of block bitmap is not set
[  379.388857][ T8315] Illegal XDP return value 4294967274 on prog  (id 686) dev N/A, expect packet loss!
[  379.399481][ T8308] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  379.433356][ T8308] EXT4-fs (loop4): 1 truncate cleaned up
[  379.460331][ T8308] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  379.623682][ T8327] syz.2.1483[8327] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  379.623793][ T8327] syz.2.1483[8327] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  379.679664][ T8328] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  380.620288][ T6442] EXT4-fs (loop4): unmounting filesystem.
[  380.639217][ T8338] netlink: 272 bytes leftover after parsing attributes in process `syz.2.1488'.
[  380.675883][ T8338] ------------[ cut here ]------------
[  380.681533][ T8338] WARNING: CPU: 1 PID: 8338 at net/wireless/core.h:231 wdev_lock+0x96/0xc0
[  380.690261][ T8338] Modules linked in:
[  380.694216][ T8338] CPU: 1 PID: 8338 Comm: syz.2.1488 Not tainted 6.1.111-syzkaller #0
[  380.702388][ T8338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  380.712543][ T8338] RIP: 0010:wdev_lock+0x96/0xc0
[  380.717494][ T8338] Code: e8 7d f7 85 ed 74 1e e8 98 e4 7d f7 eb 05 e8 91 e4 7d f7 48 83 c3 48 48 89 df 31 f6 5b 41 5e 5d e9 ef 18 a3 00 e8 7a e4 7d f7 <0f> 0b eb e5 48 c7 c1 24 1a 9a 8e 80 e1 07 80 c1 03 38 c1 0f 8c 7b
[  380.737202][ T8338] RSP: 0018:ffffc90005b0ef40 EFLAGS: 00010287
[  380.743368][ T8338] RAX: ffffffff8a0ccac6 RBX: ffff888031244c90 RCX: 0000000000040000
[  380.751422][ T8338] RDX: ffffc900051c9000 RSI: 000000000000558f RDI: 0000000000005590
[  380.759432][ T8338] RBP: 0000000000000000 R08: ffffffff8a0cca9f R09: ffffed1008fef812
[  380.767526][ T8338] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  380.775566][ T8338] R13: ffff88807b408500 R14: dffffc0000000000 R15: ffff888047f7c014
[  380.783601][ T8338] FS:  00007f298c93d6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  380.792582][ T8338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  380.799239][ T8338] CR2: 000000110c2bf990 CR3: 00000000651c4000 CR4: 00000000003506e0
[  380.807281][ T8338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  380.815314][ T8338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  380.823313][ T8338] Call Trace:
[  380.826643][ T8338]  <TASK>
[  380.829599][ T8338]  ? __warn+0x15a/0x520
[  380.833788][ T8338]  ? wdev_lock+0x96/0xc0
[  380.838102][ T8338]  ? report_bug+0x2af/0x500
[  380.842638][ T8338]  ? wdev_lock+0x96/0xc0
[  380.846961][ T8338]  ? handle_bug+0x3d/0x70
[  380.851324][ T8338]  ? exc_invalid_op+0x16/0x40
[  380.856030][ T8338]  ? asm_exc_invalid_op+0x16/0x20
[  380.861131][ T8338]  ? wdev_lock+0x6f/0xc0
[  380.865413][ T8338]  ? wdev_lock+0x96/0xc0
[  380.869732][ T8338]  ? wdev_lock+0x96/0xc0
[  380.874029][ T8338]  nl80211_send_iface+0x816/0x1470
[  380.879221][ T8338]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  380.885307][ T8338]  ? nl80211_notify_iface+0x160/0x160
[  380.890765][ T8338]  ? kasan_quarantine_put+0xd4/0x220
[  380.896104][ T8338]  ? lockdep_hardirqs_on+0x94/0x130
[  380.901410][ T8338]  ? __kmem_cache_free+0x25c/0x3c0
[  380.906583][ T8338]  ? nl80211_dump_wiphy_parse+0x19c/0x580
[  380.912410][ T8338]  ? nl80211_dump_wiphy_parse+0x19c/0x580
[  380.918198][ T8338]  ? nl80211_exit+0x20/0x20
[  380.922800][ T8338]  nl80211_dump_interface+0x490/0x6a0
[  380.928249][ T8338]  ? nl80211_get_interface+0x200/0x200
[  380.933774][ T8338]  ? netlink_dump+0x267/0xca0
[  380.938518][ T8338]  ? __alloc_skb+0x419/0x670
[  380.943163][ T8338]  netlink_dump+0x5a2/0xca0
[  380.947792][ T8338]  ? netlink_lookup+0x200/0x200
[  380.952703][ T8338]  ? genl_start+0x2e1/0x490
[  380.957303][ T8338]  __netlink_dump_start+0x521/0x6c0
[  380.962564][ T8338]  genl_rcv_msg+0x9f3/0xf70
[  380.967186][ T8338]  ? nl80211_get_interface+0x200/0x200
[  380.972693][ T8338]  ? genl_bind+0x400/0x400
[  380.977217][ T8338]  ? genl_rcv_msg+0xf70/0xf70
[  380.981928][ T8338]  ? nl80211_get_interface+0x200/0x200
[  380.987435][ T8338]  ? genl_lock_done+0xd0/0xd0
[  380.992204][ T8338]  ? read_lock_is_recursive+0x10/0x10
[  380.997633][ T8338]  ? __might_sleep+0xb0/0xb0
[  381.002317][ T8338]  ? ref_tracker_free+0x638/0x7d0
[  381.007377][ T8338]  ? nl80211_set_wiphy+0x2f60/0x2f60
[  381.012746][ T8338]  ? nl80211_get_interface+0x200/0x200
[  381.018240][ T8338]  ? refcount_inc+0x80/0x80
[  381.022832][ T8338]  ? __copy_skb_header+0x47b/0x600
[  381.028003][ T8338]  netlink_rcv_skb+0x1cd/0x410
[  381.032869][ T8338]  ? genl_bind+0x400/0x400
[  381.037325][ T8338]  ? netlink_ack+0x1290/0x1290
[  381.042196][ T8338]  genl_rcv+0x24/0x40
[  381.046209][ T8338]  netlink_unicast+0x7d8/0x970
[  381.051020][ T8338]  ? netlink_detachskb+0x90/0x90
[  381.056036][ T8338]  ? __virt_addr_valid+0x45b/0x530
[  381.061189][ T8338]  ? __phys_addr_symbol+0x2b/0x70
[  381.066311][ T8338]  ? __check_object_size+0x4dd/0xa30
[  381.071638][ T8338]  ? bpf_lsm_netlink_send+0x5/0x10
[  381.076833][ T8338]  netlink_sendmsg+0xa26/0xd60
[  381.081749][ T8338]  ? netlink_getsockopt+0x580/0x580
[  381.087040][ T8338]  ? aa_sock_msg_perm+0x91/0x150
[  381.092025][ T8338]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  381.097400][ T8338]  ? security_socket_sendmsg+0x7d/0xa0
[  381.102901][ T8338]  ? netlink_getsockopt+0x580/0x580
[  381.108191][ T8338]  ____sys_sendmsg+0x5a5/0x8f0
[  381.113106][ T8338]  ? __sys_sendmsg_sock+0x30/0x30
[  381.118248][ T8338]  __sys_sendmsg+0x2a9/0x390
[  381.122884][ T8338]  ? ____sys_sendmsg+0x8f0/0x8f0
[  381.125381][ T8347] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  381.127889][ T8338]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  381.141253][ T8338]  ? syscall_enter_from_user_mode+0x2e/0x230
[  381.147278][ T8338]  ? lockdep_hardirqs_on+0x94/0x130
[  381.152552][ T8338]  ? syscall_enter_from_user_mode+0x2e/0x230
[  381.158581][ T8338]  do_syscall_64+0x3b/0xb0
[  381.163092][ T8338]  ? clear_bhb_loop+0x45/0xa0
[  381.167815][ T8338]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  381.173795][ T8338] RIP: 0033:0x7f298bb7df39
[  381.178256][ T8338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.197965][ T8338] RSP: 002b:00007f298c93d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  381.206544][ T8338] RAX: ffffffffffffffda RBX: 00007f298bd35f80 RCX: 00007f298bb7df39
[  381.214581][ T8338] RDX: 0000000000000000 RSI: 0000000020000c40 RDI: 0000000000000006
[  381.222639][ T8338] RBP: 00007f298bbf0216 R08: 0000000000000000 R09: 0000000000000000
[  381.230702][ T8338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  381.238764][ T8338] R13: 0000000000000000 R14: 00007f298bd35f80 R15: 00007fff3433a968
[  381.246797][ T8338]  </TASK>
[  381.249910][ T8338] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  381.257247][ T8338] CPU: 1 PID: 8338 Comm: syz.2.1488 Not tainted 6.1.111-syzkaller #0
[  381.265310][ T8338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  381.275368][ T8338] Call Trace:
[  381.278649][ T8338]  <TASK>
[  381.281592][ T8338]  dump_stack_lvl+0x1e3/0x2cb
[  381.286320][ T8338]  ? nf_tcp_handle_invalid+0x642/0x642
[  381.291788][ T8338]  ? panic+0x764/0x764
[  381.295861][ T8338]  ? 0xffffffffa0001ae4
[  381.300043][ T8338]  ? vscnprintf+0x59/0x80
[  381.304380][ T8338]  panic+0x318/0x764
[  381.308294][ T8338]  ? __warn+0x169/0x520
[  381.312474][ T8338]  ? memcpy_page_flushcache+0xfc/0xfc
[  381.317903][ T8338]  __warn+0x348/0x520
[  381.322012][ T8338]  ? wdev_lock+0x96/0xc0
[  381.326294][ T8338]  report_bug+0x2af/0x500
[  381.330644][ T8338]  ? wdev_lock+0x96/0xc0
[  381.334902][ T8338]  handle_bug+0x3d/0x70
[  381.339068][ T8338]  exc_invalid_op+0x16/0x40
[  381.343588][ T8338]  asm_exc_invalid_op+0x16/0x20
[  381.348445][ T8338] RIP: 0010:wdev_lock+0x96/0xc0
[  381.353339][ T8338] Code: e8 7d f7 85 ed 74 1e e8 98 e4 7d f7 eb 05 e8 91 e4 7d f7 48 83 c3 48 48 89 df 31 f6 5b 41 5e 5d e9 ef 18 a3 00 e8 7a e4 7d f7 <0f> 0b eb e5 48 c7 c1 24 1a 9a 8e 80 e1 07 80 c1 03 38 c1 0f 8c 7b
[  381.372962][ T8338] RSP: 0018:ffffc90005b0ef40 EFLAGS: 00010287
[  381.379131][ T8338] RAX: ffffffff8a0ccac6 RBX: ffff888031244c90 RCX: 0000000000040000
[  381.387147][ T8338] RDX: ffffc900051c9000 RSI: 000000000000558f RDI: 0000000000005590
[  381.395157][ T8338] RBP: 0000000000000000 R08: ffffffff8a0cca9f R09: ffffed1008fef812
[  381.403169][ T8338] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  381.411172][ T8338] R13: ffff88807b408500 R14: dffffc0000000000 R15: ffff888047f7c014
[  381.419182][ T8338]  ? wdev_lock+0x6f/0xc0
[  381.423461][ T8338]  ? wdev_lock+0x96/0xc0
[  381.427748][ T8338]  nl80211_send_iface+0x816/0x1470
[  381.432925][ T8338]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  381.438961][ T8338]  ? nl80211_notify_iface+0x160/0x160
[  381.444463][ T8338]  ? kasan_quarantine_put+0xd4/0x220
[  381.449782][ T8338]  ? lockdep_hardirqs_on+0x94/0x130
[  381.455193][ T8338]  ? __kmem_cache_free+0x25c/0x3c0
[  381.460339][ T8338]  ? nl80211_dump_wiphy_parse+0x19c/0x580
[  381.466107][ T8338]  ? nl80211_dump_wiphy_parse+0x19c/0x580
[  381.471924][ T8338]  ? nl80211_exit+0x20/0x20
[  381.476480][ T8338]  nl80211_dump_interface+0x490/0x6a0
[  381.481899][ T8338]  ? nl80211_get_interface+0x200/0x200
[  381.487385][ T8338]  ? netlink_dump+0x267/0xca0
[  381.492110][ T8338]  ? __alloc_skb+0x419/0x670
[  381.496752][ T8338]  netlink_dump+0x5a2/0xca0
[  381.501310][ T8338]  ? netlink_lookup+0x200/0x200
[  381.506198][ T8338]  ? genl_start+0x2e1/0x490
[  381.510744][ T8338]  __netlink_dump_start+0x521/0x6c0
[  381.515991][ T8338]  genl_rcv_msg+0x9f3/0xf70
[  381.520526][ T8338]  ? nl80211_get_interface+0x200/0x200
[  381.526013][ T8338]  ? genl_bind+0x400/0x400
[  381.530475][ T8338]  ? genl_rcv_msg+0xf70/0xf70
[  381.535175][ T8338]  ? nl80211_get_interface+0x200/0x200
[  381.540750][ T8338]  ? genl_lock_done+0xd0/0xd0
[  381.545451][ T8338]  ? read_lock_is_recursive+0x10/0x10
[  381.550865][ T8338]  ? __might_sleep+0xb0/0xb0
[  381.555488][ T8338]  ? ref_tracker_free+0x638/0x7d0
[  381.560553][ T8338]  ? nl80211_set_wiphy+0x2f60/0x2f60
[  381.565864][ T8338]  ? nl80211_get_interface+0x200/0x200
[  381.571354][ T8338]  ? refcount_inc+0x80/0x80
[  381.575887][ T8338]  ? __copy_skb_header+0x47b/0x600
[  381.581051][ T8338]  netlink_rcv_skb+0x1cd/0x410
[  381.585859][ T8338]  ? genl_bind+0x400/0x400
[  381.590302][ T8338]  ? netlink_ack+0x1290/0x1290
[  381.595129][ T8338]  genl_rcv+0x24/0x40
[  381.599140][ T8338]  netlink_unicast+0x7d8/0x970
[  381.603951][ T8338]  ? netlink_detachskb+0x90/0x90
[  381.608923][ T8338]  ? __virt_addr_valid+0x45b/0x530
[  381.614074][ T8338]  ? __phys_addr_symbol+0x2b/0x70
[  381.619148][ T8338]  ? __check_object_size+0x4dd/0xa30
[  381.624478][ T8338]  ? bpf_lsm_netlink_send+0x5/0x10
[  381.629620][ T8338]  netlink_sendmsg+0xa26/0xd60
[  381.634413][ T8338]  ? netlink_getsockopt+0x580/0x580
[  381.639629][ T8338]  ? aa_sock_msg_perm+0x91/0x150
[  381.644573][ T8338]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  381.649862][ T8338]  ? security_socket_sendmsg+0x7d/0xa0
[  381.655354][ T8338]  ? netlink_getsockopt+0x580/0x580
[  381.660563][ T8338]  ____sys_sendmsg+0x5a5/0x8f0
[  381.665354][ T8338]  ? __sys_sendmsg_sock+0x30/0x30
[  381.670438][ T8338]  __sys_sendmsg+0x2a9/0x390
[  381.675160][ T8338]  ? ____sys_sendmsg+0x8f0/0x8f0
[  381.680132][ T8338]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  381.686135][ T8338]  ? syscall_enter_from_user_mode+0x2e/0x230
[  381.692157][ T8338]  ? lockdep_hardirqs_on+0x94/0x130
[  381.697438][ T8338]  ? syscall_enter_from_user_mode+0x2e/0x230
[  381.703460][ T8338]  do_syscall_64+0x3b/0xb0
[  381.707919][ T8338]  ? clear_bhb_loop+0x45/0xa0
[  381.712645][ T8338]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  381.718585][ T8338] RIP: 0033:0x7f298bb7df39
[  381.723022][ T8338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.742661][ T8338] RSP: 002b:00007f298c93d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  381.751132][ T8338] RAX: ffffffffffffffda RBX: 00007f298bd35f80 RCX: 00007f298bb7df39
[  381.759110][ T8338] RDX: 0000000000000000 RSI: 0000000020000c40 RDI: 0000000000000006
[  381.767082][ T8338] RBP: 00007f298bbf0216 R08: 0000000000000000 R09: 0000000000000000
[  381.775061][ T8338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  381.783044][ T8338] R13: 0000000000000000 R14: 00007f298bd35f80 R15: 00007fff3433a968
[  381.791035][ T8338]  </TASK>
[  381.794212][ T8338] Kernel Offset: disabled
[  381.798626][ T8338] Rebooting in 86400 seconds..