last executing test programs:

2m29.387415774s ago: executing program 4 (id=241):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000000c0a010400000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d65b000014000000110001000000ffff000000000700000a00002100000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x24000840}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x4, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a010300000000000000000a0000010900020073797a31000000000900010073797a31"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

2m29.150809828s ago: executing program 1 (id=242):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'erspan0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="4000000213a79448b130443adb686df3e0a400050400"/35, @ANYRES32=r3, @ANYBLOB="0000000000000000200012800b00010065727370616e00001000028005001600fc00000004001200"], 0x40}}, 0x0)
r4 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e20, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYRES32=r3], 0x28}, 0xfc40)
r5 = socket$kcm(0x21, 0x7, 0xa)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000100144b19be732d3e026b5a383000001000000dc000000009c8d97"], 0x18}, 0xfc00)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0), 0x101001, 0x0)
ioctl$RTC_EPOCH_SET(r6, 0x4008700e, 0x6)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ipvlan1\x00', <r7=>0x0})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="3000000010000108fdffffff0000000000000000c5dd63207ff42ced0cf6ae1f3b6872c0e63f503499d125d45b5d9fc61fceeb480cb57839c9982a58e2860325edccc24508325dedb085b8348cb18a", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b000000000008001a8004000a80"], 0x30}}, 0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r9)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r12 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r12, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x2})
ioctl$vim2m_VIDIOC_STREAMOFF(r12, 0x40045612, &(0x7f0000000240)=0x1)
r13 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x200}]})
close_range(r13, r12, 0x0)
ioctl$TUNSETOWNER(r11, 0x800454df, 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010080ffffff00000000010000000c000480040003000200000008000100020000000800020003"], 0x30}}, 0x20000000)
r14 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r14, 0x0, 0x48f, &(0x7f0000000100)={0x87, @remote, 0x4e21, 0x1, 'sed\x00', 0x0, 0x1cc, 0x5d}, 0x2c)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@newtfilter={0x24, 0x11, 0xd27, 0x2000, 0x0, {0x0, 0x0, 0x74, r7, {}, {0xafabc05531515610, 0xfff3}, {0xf, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x1c004}, 0x4008054)

2m28.72251161s ago: executing program 1 (id=246):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x9, 0x687, 0x6, 0xfffa}, 0x1d, [0x108e8fd7, 0xc95a, 0xfffffff3, 0x1000009, 0xc, 0x20002, 0x20003, 0x84, 0x6, 0x4d, 0x39cc191a, 0x5c, 0x9, 0x5b2, 0x2, 0x0, 0x6, 0x3, 0x0, 0x0, 0x4, 0x10007, 0x4, 0x3c5b, 0x1, 0xb, 0x40000009, 0xfffffffd, 0x1f461e2c, 0x7, 0xe661, 0x7fff, 0xb, 0x3, 0x7fff, 0x4c74, 0x80000000, 0x800242, 0xffffffff, 0x11, 0x0, 0xffffffff, 0x2, 0x406, 0x3, 0x2, 0x5, 0x3e, 0x8b, 0x6, 0x6, 0x3, 0x80092a3, 0x4, 0x20000001, 0x20000000, 0x82, 0x0, 0x7, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000009, 0x5, 0x12f, 0x6, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x5, 0x1001, 0xfffffffc, 0x43, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x0, 0x0, 0xfffffffe, 0x8, 0x4, 0x8002, 0x9, 0x3fe, 0x401, 0x6, 0x4, 0xfb, 0x5, 0x8000, 0x5f31, 0xbcf5, 0x1, 0x1, 0x2, 0x9, 0x4, 0x9, 0x5, 0x9, 0x6, 0xb, 0x100000a, 0x1, 0x6, 0x9, 0x2, 0x7f, 0x7, 0x1, 0x3, 0x9, 0x425, 0x7, 0x3, 0x9, 0x48c93690, 0x40042, 0x400004], [0x6, 0x6, 0x80000001, 0x2, 0xff, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x1, 0xb, 0x4, 0x5, 0x1005, 0x0, 0x1f0, 0x2, 0x2, 0x86, 0x1, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x800, 0x8, 0x5, 0x8001, 0x7, 0x2, 0x800003, 0x200, 0x80, 0x2, 0xcc52, 0x950bfaf, 0x1000, 0xa2, 0x7, 0x0, 0xfffffff9, 0x6, 0xac8, 0xbf, 0x10002, 0x403, 0x7ff, 0xffffffff, 0x0, 0x1, 0xffff, 0x0, 0x6, 0x1c, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0x800ff], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x1, 0x6, 0x5, 0x0, 0x3, 0x1, 0x1ff, 0x3, 0x7, 0xfd, 0x1003, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xe620, 0x2002, 0xf, 0x9, 0x2, 0x14c, 0x60a7, 0x6, 0x2, 0xffffffff, 0x2, 0x7, 0x8, 0xc8, 0xee1, 0x0, 0xffff, 0x3, 0x7b, 0x20100, 0x9602, 0x4, 0x2, 0xffff, 0x6, 0x1, 0x10080, 0x6, 0x2, 0x30b1d693, 0x5a2b, 0xc, 0x7, 0x1, 0x6c1b, 0x800, 0x8, 0x5, 0xb1c, 0x1, 0x1fd, 0xffff3441, 0xfff]}, 0x45c) (async)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x9, 0x687, 0x6, 0xfffa}, 0x1d, [0x108e8fd7, 0xc95a, 0xfffffff3, 0x1000009, 0xc, 0x20002, 0x20003, 0x84, 0x6, 0x4d, 0x39cc191a, 0x5c, 0x9, 0x5b2, 0x2, 0x0, 0x6, 0x3, 0x0, 0x0, 0x4, 0x10007, 0x4, 0x3c5b, 0x1, 0xb, 0x40000009, 0xfffffffd, 0x1f461e2c, 0x7, 0xe661, 0x7fff, 0xb, 0x3, 0x7fff, 0x4c74, 0x80000000, 0x800242, 0xffffffff, 0x11, 0x0, 0xffffffff, 0x2, 0x406, 0x3, 0x2, 0x5, 0x3e, 0x8b, 0x6, 0x6, 0x3, 0x80092a3, 0x4, 0x20000001, 0x20000000, 0x82, 0x0, 0x7, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000009, 0x5, 0x12f, 0x6, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x5, 0x1001, 0xfffffffc, 0x43, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x0, 0x0, 0xfffffffe, 0x8, 0x4, 0x8002, 0x9, 0x3fe, 0x401, 0x6, 0x4, 0xfb, 0x5, 0x8000, 0x5f31, 0xbcf5, 0x1, 0x1, 0x2, 0x9, 0x4, 0x9, 0x5, 0x9, 0x6, 0xb, 0x100000a, 0x1, 0x6, 0x9, 0x2, 0x7f, 0x7, 0x1, 0x3, 0x9, 0x425, 0x7, 0x3, 0x9, 0x48c93690, 0x40042, 0x400004], [0x6, 0x6, 0x80000001, 0x2, 0xff, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x1, 0xb, 0x4, 0x5, 0x1005, 0x0, 0x1f0, 0x2, 0x2, 0x86, 0x1, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x800, 0x8, 0x5, 0x8001, 0x7, 0x2, 0x800003, 0x200, 0x80, 0x2, 0xcc52, 0x950bfaf, 0x1000, 0xa2, 0x7, 0x0, 0xfffffff9, 0x6, 0xac8, 0xbf, 0x10002, 0x403, 0x7ff, 0xffffffff, 0x0, 0x1, 0xffff, 0x0, 0x6, 0x1c, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0x800ff], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x1, 0x6, 0x5, 0x0, 0x3, 0x1, 0x1ff, 0x3, 0x7, 0xfd, 0x1003, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xe620, 0x2002, 0xf, 0x9, 0x2, 0x14c, 0x60a7, 0x6, 0x2, 0xffffffff, 0x2, 0x7, 0x8, 0xc8, 0xee1, 0x0, 0xffff, 0x3, 0x7b, 0x20100, 0x9602, 0x4, 0x2, 0xffff, 0x6, 0x1, 0x10080, 0x6, 0x2, 0x30b1d693, 0x5a2b, 0xc, 0x7, 0x1, 0x6c1b, 0x800, 0x8, 0x5, 0xb1c, 0x1, 0x1fd, 0xffff3441, 0xfff]}, 0x45c)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x181503e, &(0x7f0000002580)=ANY=[@ANYBLOB="666c7573682c756e695f786c6174653d312c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c757466383d312c6e6f6e756d7461696c3d302c756e695f786c6174653d312c646f733178666c6f7070792c636865636b3d72656c617865642c73686f72746e616d653d77696e6e742c726f6469722c73686f72746e616d653d77696e6e742c756e695f787b6174653d312c6e6f6e756d7461696c3d302c757365667265652c757466383d312c00b3c6df3745b1b2f7ea92d20d3f3ffa31ec18e46c7acb9a9107d3ce985f76b3a3dc9d46f6169759de80d2f3cf06d8371513b924dffc1f6593f8aebda2135247712e6272687934be114c6763c847faf7c4d3fae3941cabc5ab2e9e5b3d2c39a940e89c46b2a11ff4ea26caf8c72d4e9b093cf5f95b64d5864755b8be6e0fcb0e3d58e260b9ba7f96d7f8d7a853964b0aba61dc573dfb949cc8e577059a6abd2708ab31a9c71522fca70047fcc10e67fe50d6af857d89ec0aaa3c192f7a1a8f338a9c95477ce6c6b5998ed9efb7e7f537ece1f9ddf772ec8e4bd023a714f6ea75e833dc1423015509bcf375e54a1cf8c57e0329dc9cd99407720d3289b963", @ANYBLOB="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"], 0x1, 0x2e6, &(0x7f0000000540)="$eJzs3ctrE18UwPGTV5O0v/6ShYiIwqWCKNKhCbhz0SItiAGlbQQrCFM71ZBpUjKhEBGbheDWtYsuXIoggjs3Im678S/wteumOwsWR6Yzk6bJGNNqX/b7WTSnOffMvZm56eO2uVm59GSuOGtp321XdFjqshaStIQlIq66nH+/9On0xLv/3M+VGhuZzGSVCovIrQcvBt5W+268/v9NXJbTt1dWs1+XT02K/Ji8V7BUwVIl21a6mi6XqyGneKZgFTWlrpuGbhmqULKMStXL69OmoWbN8vx8Temlmf7e+YphWUov1VTRqKlqWVUrNaXf1QslpWma6u8ViEi6EYXbcqFOhfnna7Ytq86Fj9fFtu2A1nU/iHm38T8bLA6SluvfsW3b5Ijs5siwF9bsaNfXH/8e9/n/+SnX/2iauDl1dSSXGx1XKiEy93ghv5B3b938xz4piCmGLI1fmFoXsRsk5Hwcu5IbHVIb0nJ2btGrX1zIu98cRma9+oyknJ9TmurFr8+49WprfUx6m+uzkpJjwfVZv17CTfU9cu5MU70mKflwR8piyow4tZv1DzNKXb6Wa+k/udEOAAAAAAAAAIDDSFMNm+v3oc0/9WpafOM/Phr5pHOv087NN9bXhyQl68Hr80OB6/tRORndv8cNAAAAAMBRYtXuF3XTNCq7E0SeJTt0ERMRJxB5NOAMpuMBj3sj7q73HhFpT0U6d7ElSF50+3s57g1MdvNE/aXAf7FGUTdf+amkBDUOb2sCDPYEnvnEnj5A6aaxJHY2seNdT63WILTu33MisI0d+v1xbN2Mba/34W09HX4ZJFpP1OAX97hmhy8a3xpLfAAAAAAOkaZfnAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwD7Z0eZh/r79W1PivUV8+5Zsre8Tz77/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6gnwEAAP//JZK+GA==")
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x301041, 0x0) (async)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x301041, 0x0)
ioctl$TUNGETIFF(r2, 0x800454d2, &(0x7f0000000200)={'team0\x00'})
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @local, 0x5}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) (async)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
sendmsg$inet(r1, &(0x7f00000017c0)={0x0, 0x0, 0x0}, 0x8000) (async)
sendmsg$inet(r1, &(0x7f00000017c0)={0x0, 0x0, 0x0}, 0x8000)
sendto$inet6(r1, &(0x7f00000000c0)="b3", 0x1, 0x24000084, 0x0, 0x0)
accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0) (async)
r3 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000880)=@security={'security\x00', 0xe, 0x4, 0x658, 0xffffffff, 0x0, 0x4b8, 0x160, 0xffffffff, 0xffffffff, 0x588, 0x588, 0x588, 0xffffffff, 0x4, &(0x7f00000000c0), {[{{@ipv6={@local, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, [0x0, 0xff, 0xffffffff, 0xffffffff], [0xff, 0x0, 0xffffff00, 0xffffff00], 'veth1_to_hsr\x00', 'ip6erspan0\x00', {}, {}, 0x4d, 0x3, 0x1, 0x44}, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x2, 0x2, 0x2, 0x1, 0x7507, @mcast1, @dev={0xfe, 0x80, '\x00', 0x3d}, @dev={0xfe, 0x80, '\x00', 0x1e}, [0xff000000, 0x0, 0x807fffff], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], [0x0, 0xffffffff, 0xff000000, 0x7f000000], 0x39d2, 0x2000}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x7c}}}, {{@uncond, 0x0, 0x318, 0x358, 0x0, {}, [@common=@rt={{0x138}, {0x1, [0x9e, 0x84d9605], 0x6, 0x4, 0x5, [@loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2, @empty, @ipv4={'\x00', '\xff\xff', @broadcast}, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @remote, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x3f}, @local, @empty, @loopback, @dev={0xfe, 0x80, '\x00', 0xc}], 0x10}}, @common=@rt={{0x138}, {0x200, [0x1, 0x80], 0x38, 0x8, 0x6, [@mcast1, @local, @loopback, @mcast2, @mcast2, @mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, @local, @private0, @local, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00', @empty], 0xa}}]}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "4fcbb327fbd1c8c3084504ad0c7564e3e668d7f7263ccf17c54023df89b8"}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}, [0xffffff, 0xffffffff], [0xffffffff, 0xffffffff, 0x0, 0xffffff00], 'gretap0\x00', 'veth0\x00', {}, {}, 0x2c, 0x6, 0x0, 0x74}, 0x0, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x7, 0x4}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6b8) (async)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000880)=@security={'security\x00', 0xe, 0x4, 0x658, 0xffffffff, 0x0, 0x4b8, 0x160, 0xffffffff, 0xffffffff, 0x588, 0x588, 0x588, 0xffffffff, 0x4, &(0x7f00000000c0), {[{{@ipv6={@local, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, [0x0, 0xff, 0xffffffff, 0xffffffff], [0xff, 0x0, 0xffffff00, 0xffffff00], 'veth1_to_hsr\x00', 'ip6erspan0\x00', {}, {}, 0x4d, 0x3, 0x1, 0x44}, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x2, 0x2, 0x2, 0x1, 0x7507, @mcast1, @dev={0xfe, 0x80, '\x00', 0x3d}, @dev={0xfe, 0x80, '\x00', 0x1e}, [0xff000000, 0x0, 0x807fffff], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], [0x0, 0xffffffff, 0xff000000, 0x7f000000], 0x39d2, 0x2000}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x7c}}}, {{@uncond, 0x0, 0x318, 0x358, 0x0, {}, [@common=@rt={{0x138}, {0x1, [0x9e, 0x84d9605], 0x6, 0x4, 0x5, [@loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2, @empty, @ipv4={'\x00', '\xff\xff', @broadcast}, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @remote, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x3f}, @local, @empty, @loopback, @dev={0xfe, 0x80, '\x00', 0xc}], 0x10}}, @common=@rt={{0x138}, {0x200, [0x1, 0x80], 0x38, 0x8, 0x6, [@mcast1, @local, @loopback, @mcast2, @mcast2, @mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, @empty, @local, @private0, @local, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00', @empty], 0xa}}]}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "4fcbb327fbd1c8c3084504ad0c7564e3e668d7f7263ccf17c54023df89b8"}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}, [0xffffff, 0xffffffff], [0xffffffff, 0xffffffff, 0x0, 0xffffff00], 'gretap0\x00', 'veth0\x00', {}, {}, 0x2c, 0x6, 0x0, 0x74}, 0x0, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x7, 0x4}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6b8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x90}, [@ldst={0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffff0}]}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xcab5, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x90}, [@ldst={0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffff0}]}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xcab5, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000c80)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003a00000008000300", @ANYRES32=r6, @ANYBLOB="05005b"], 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000180)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000f40)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r5, @ANYBLOB="000228bd7000fedbdf253f00000008000300", @ANYRES32=r8, @ANYBLOB="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"], 0xac}, 0x1, 0x0, 0x0, 0x91}, 0x4004)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r10)
sendmsg$NLBL_MGMT_C_ADD(r10, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000c80)={0x2c, r11, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast1}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r12=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r9, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r12, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

2m28.722031289s ago: executing program 4 (id=247):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000240)={[{@dioread_nolock}, {@resuid}, {@barrier_val={'barrier', 0x3d, 0x9}}]}, 0x1, 0x4b2, &(0x7f0000000540)="$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")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x12, r0, 0x852ac000)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x20741, 0x0)
writev(r1, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000100)="48a0f96c33a017488c1e064596ff779d12d911fb4b43cad0091e548d2cacb792e462020a5282d0d3e4181c9e55936f8e960bc2dc05fc85170d5f1af7c76fd0bcab2b11b28e5c4a73c92e6143667ec57676dd15681015cd980e583c160f671f1ea3bf24c6f8d5d9b14a9596b2664eb142351962cfb4eda29f922ab26db2716dc720ebef96d4f6df0005d7f744ec8204c46aff0db8225878a8dd190a8af4d31a9d", 0xfeb7}], 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f0000000080)=0x10000)
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x6000, 0x0)

2m28.639459697s ago: executing program 1 (id=248):
r0 = socket$kcm(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002480)=@newtaction={0x850, 0x31, 0xffff, 0x0, 0x0, {}, [{0x83c, 0x1, [@m_police={0x838, 0x1, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0xfffff3ba, 0x6, 0x3, 0x1, 0xaf7, 0x1, 0xa, 0x6, 0x3, 0xfffffff3, 0x9, 0xe5c5, 0x6, 0x8, 0x2, 0x9, 0x5, 0x7, 0x5, 0x1d1a, 0x7fffffff, 0x6, 0x81, 0x8, 0x0, 0x5, 0xc62, 0x9, 0xb780, 0x4, 0x4, 0x5, 0x6, 0xc, 0x0, 0x1, 0x9, 0x5, 0x2, 0x80000000, 0x1, 0x1, 0xf0f8, 0xd9, 0xffff0000, 0x4dab, 0x7, 0x5, 0xffffffff, 0x7, 0x478c, 0xfd, 0x9c40, 0x5, 0x7, 0x401, 0x7, 0x3000000, 0x4, 0x0, 0x6, 0x1000, 0x80000000, 0x101, 0x7, 0x2ecd80fd, 0x8, 0x100, 0x4, 0x7fffffff, 0xe33, 0xfffffffd, 0xac, 0x100, 0xfffffff9, 0x2a276df0, 0x9, 0x0, 0x8c, 0x9, 0x2, 0x9, 0x9, 0x9, 0x30, 0x646, 0x7, 0xc3e4c1ab, 0x4, 0x6, 0x2c16, 0x9, 0x23a2, 0xffff, 0xf, 0x800, 0xa, 0x120000, 0x1, 0x7c, 0x0, 0x80, 0xbf5, 0xb5c0, 0xe4, 0x0, 0x3, 0x3, 0x8fa6, 0x80000000, 0xffff, 0xe4, 0x4, 0x80000001, 0x200, 0x40, 0x4, 0x10, 0xa, 0x4, 0x2, 0x9, 0x6, 0x4490fe34, 0x4a3, 0x9, 0xffff0000, 0x4, 0x30c, 0x6, 0x7, 0x10000, 0x6, 0xe722, 0x9, 0x2, 0x80000000, 0x3, 0xdc, 0x2, 0x2, 0x4, 0x4, 0x1, 0xc5, 0xafb, 0x1e2a, 0x0, 0x77bf6f3, 0x1, 0xff, 0x80, 0xfffff001, 0xfffffffe, 0x7, 0x17c, 0x2, 0x9, 0xf05, 0x101, 0x10001, 0x4, 0x4, 0x3, 0x4, 0x5b, 0xe28a, 0x5, 0x4, 0x265, 0x4, 0x5, 0x6, 0xfffff001, 0x8, 0x81, 0x810, 0x7, 0x3, 0x7, 0x200, 0x2138, 0x7ff, 0x5, 0x8, 0x3, 0x6ce3, 0xc, 0x7, 0x40, 0xa, 0x6, 0x9, 0x40, 0x760, 0x8000, 0x8001, 0x80000000, 0x6, 0x3ff, 0x7fff, 0x7ff, 0xa, 0x67a, 0x400, 0x6, 0x5, 0x100, 0x8, 0x5, 0x3, 0x1, 0x101, 0x278, 0x2, 0xe, 0x200, 0x3, 0xfffffffa, 0x10001, 0x28, 0xfffffffe, 0xd, 0x4, 0x6, 0x7f, 0xf, 0x1f08, 0xfffffffc, 0x2, 0x2, 0x4b6, 0x9, 0x1, 0x0, 0xc, 0x5, 0x8, 0x7, 0x5, 0x6, 0xfffffffd, 0xe80, 0x2, 0x0, 0x8, 0xc5, 0xfff, 0x5, 0xffff7fff, 0x9, 0x1, 0xfffffffc, 0x100, 0x2, 0x20]}, @TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x0, 0x6, 0x7, 0x5, 0x80000001, 0x1, 0x6, 0x80000000, 0x4, 0x6, 0x0, 0xb, 0xd1, 0x9, 0x4, 0xffff, 0x6, 0x4, 0x9, 0x2, 0x3, 0x9, 0x4, 0x5, 0x0, 0x2, 0x5, 0x96be, 0x1ff3, 0x8, 0x8, 0x400, 0xffffff73, 0x2, 0x1, 0xff, 0x6, 0x5, 0x7f, 0xfffffffb, 0x800, 0xfffffffc, 0x1, 0x2e, 0x8, 0x7ff, 0x7, 0x101, 0x1, 0x10001, 0x3, 0x3, 0x9, 0x1, 0x69, 0x80000001, 0x9, 0x9, 0x8001, 0x0, 0xa, 0x4, 0x0, 0x5, 0x7e, 0x8000, 0x7, 0xfffffffa, 0x8, 0x4, 0x40, 0x9, 0x0, 0x9, 0x100, 0xfd4b, 0x9, 0x31, 0x18c9, 0x8, 0x8, 0xfffffffe, 0x4, 0x6, 0x9, 0x371a, 0x7f, 0x8, 0x59d, 0x0, 0x8, 0x3eb9, 0x100, 0x19, 0x8, 0x2, 0x7, 0x40, 0x7fff, 0xa5c, 0x2, 0x9, 0x2, 0x3, 0x7, 0xfffffffd, 0x2, 0x8, 0x5, 0x3, 0x7fffffff, 0x400, 0x5, 0x8, 0xce8e, 0x8, 0x4, 0x5, 0x10000, 0x8, 0x9, 0xcd, 0x1ff, 0x5d0c, 0x4, 0x7, 0xfffff0b3, 0x803, 0x7, 0x7, 0x9, 0x7, 0x4, 0x1, 0xa13, 0x9, 0x5, 0x9, 0x3ff, 0x9, 0x0, 0x800, 0x2, 0x7, 0x4, 0x3, 0x0, 0x0, 0x6, 0xfffffff9, 0x4, 0xe0, 0x6, 0x4, 0x2, 0x4, 0xe45c, 0x229a, 0x8000, 0x8, 0x2, 0x9, 0x9, 0xe554, 0x9, 0xff, 0xca, 0xc, 0x1, 0x1, 0x101, 0x1000, 0x1, 0x1, 0x65802f45, 0x325, 0x3ff, 0x1, 0x80000001, 0xfffffff9, 0x3ff, 0x100, 0x5, 0xfffffff9, 0xffffa91f, 0x2, 0x0, 0x7, 0x9, 0x8, 0x1, 0x0, 0x1ff, 0x0, 0x0, 0x5, 0x2e, 0x8000, 0xdd, 0x37d, 0x7fffffff, 0x800, 0x2, 0xa02, 0x6, 0x5, 0x0, 0x7f, 0x7, 0xfffffffb, 0x56, 0x13, 0x68, 0x13, 0x7, 0x6, 0x5, 0x80000001, 0x2, 0x7, 0x3, 0x66, 0x6, 0x3, 0x7, 0x8, 0x5, 0x4, 0x5, 0x0, 0x3ff, 0x1, 0x200, 0x8, 0x5, 0x7fffffff, 0x5e2, 0x3a, 0x1ff, 0x4, 0x81, 0x8001, 0x2, 0x2, 0x3, 0x1, 0x9c6, 0x9, 0x3, 0xb, 0x5, 0x1, 0x8, 0x9, 0xfffffffd]}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x850}}, 0x0)

2m28.616982211s ago: executing program 4 (id=249):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4016, &(0x7f0000000780)={[{@dioread_nolock}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@noauto_da_alloc}, {@commit={'commit', 0x3d, 0x1}}, {@grpjquota}, {@quota}]}, 0x1, 0x43c, &(0x7f0000000280)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getrlimit(0x8, &(0x7f0000000080))
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
timer_create(0x2, 0x0, &(0x7f0000bbdffc))
sendmsg$nl_route_sched_retired(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x12, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000010000000000000000000000711816000000000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m28.41564836s ago: executing program 1 (id=252):
r0 = socket$kcm(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001540)=ANY=[@ANYRESDEC=r0], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r2, 0x0, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYRES8=r1, @ANYRESOCT=r1, @ANYBLOB="050000000000000000000000000000000066b25284a4f2ac85c05b29a3448dc6bdcbb6d09b8cbe0f771405ae0c00e568a96cad95cd2ae72fbd5119a5310e63bc1cfff1d00000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4)
syz_open_dev$loop(&(0x7f0000000140), 0xffffffffffffffff, 0x3952c2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x6, 0xfc, 0xa}]}, 0x10)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file7\x00', 0x40, &(0x7f0000000080)={[{@i_version}, {@oldalloc}, {@user_xattr}, {@nodiscard}, {@dioread_nolock}]}, 0x1, 0x507, &(0x7f0000001300)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001240)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000080), 0x208e24b)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
setsockopt$bt_BT_SECURITY(r6, 0x112, 0x4, &(0x7f0000000080)={0x4, 0x4}, 0x2)
socket$packet(0x11, 0x3, 0x300)
pselect6(0x40, &(0x7f0000000240)={0x2, 0xc9, 0x4, 0x6, 0x2, 0x0, 0x100, 0x5}, &(0x7f0000000040)={0x1d, 0x5, 0x40, 0x7eff, 0x0, 0xfffffffffffffffe, 0x71e7, 0x8}, 0x0, 0x0, 0x0)
lseek(r4, 0x102, 0x3)
syz_open_dev$loop(&(0x7f0000000000), 0xe, 0x20000)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$getregset(0x4204, r7, 0x407, &(0x7f0000000000)={0x0})
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000080)='cubic', 0x5)
sendmsg$inet(r3, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0x100120}], 0x1}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

2m27.830865532s ago: executing program 1 (id=256):
write(0xffffffffffffffff, &(0x7f0000001280), 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40242, 0x31)
listen(r0, 0x3ff)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x84}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="17000000000000000084000001"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2, <r3=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r3, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0xfffffffc, 0x0, 0x3132564e, 0x0, 0x0, [{}, {}, {0x0, 0x3}], 0x0, 0x1}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x10})
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000ff2000/0xe000)=nil, 0xe000}, 0x2})
ioctl$UFFDIO_WRITEPROTECT(r7, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000fff000/0x1000)=nil, 0x1000}})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, r7, {0xde57}}, './file0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x141000, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x1010410, &(0x7f00000000c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x9}}, {@noquota}]}, 0x0, 0x76a, &(0x7f0000000fc0)="$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")
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="040e04fd0a20"], 0x7)

2m27.626939663s ago: executing program 4 (id=261):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x101842, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)=0x40000000)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$sock(r2, &(0x7f0000000780)={&(0x7f0000000380)=@in={0x2, 0x4e22, @local}, 0x80, 0x0, 0x0, &(0x7f0000000700)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}], 0x18}, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
setsockopt$inet6_int(r1, 0x29, 0x3a, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r1, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003180)=""/23, 0x17}, 0xfffffff9}], 0x1, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r3 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, 0x0)
mmap(&(0x7f000051f000/0x2000)=nil, 0x2000, 0x2000003, 0x30, 0xffffffffffffffff, 0x1000)
syz_clone3(&(0x7f0000000480)={0x42200280, 0x0, 0x0, 0x0, {0x1d}, 0x0, 0x0, 0x0, 0x0}, 0x90)

2m27.182478384s ago: executing program 1 (id=266):
bpf$LINK_GET_NEXT_ID(0x1f, 0x0, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000006100)=@delchain={0x24, 0x66, 0x1, 0x70bd2e, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xffff, 0xc}, {}, {0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004004)
r4 = socket$kcm(0x10, 0x2, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES8=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r6 = socket$kcm(0x10, 0x0, 0x0)
syz_clone(0x28a0000, 0x0, 0x0, &(0x7f0000000400), 0x0, &(0x7f0000000480))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="16000000"], 0x48)
fstat(r5, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r7}, 0x0, 0x0}, 0xffffffffffffff1d)
sendmsg$kcm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000500)="d8000000180081054e81f782db4cb904021d0800ff207c05e8fe55a10a0015000200142603600e12080005007f370401a8001600200006000500027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2e98a61e284ce5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e970392", 0xd8}], 0x1}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000003c0)={'syztnl0\x00', &(0x7f0000000340)={'syztnl0\x00', <r10=>0x0, 0x8880, 0x700, 0x4, 0xf101, {{0xe, 0x4, 0x0, 0x9, 0x38, 0x65, 0x0, 0x6a, 0x4, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@cipso={0x86, 0x24, 0x3, [{0x7, 0x7, "2e5d4b25e9"}, {0x5, 0x6, "fb7e02cc"}, {0x7, 0x11, "62623a712d72430162127a00e8602d"}]}]}}}}})
sendmsg$ETHTOOL_MSG_EEE_SET(r8, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB="34790197f0f74403b9b1848849c0641640269fe4c77a3fe718205c7d5b4bf0d08935f1cf35ce4d2fbe436b3b", @ANYRES16=r9, @ANYBLOB="00042abd7000fedbdf25180000002000018008000100", @ANYRES32=r10, @ANYBLOB="1400020070696d72656700"/20], 0x34}, 0x1, 0x0, 0x0, 0x24008801}, 0x6000)
r11 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r11, 0x3b87, &(0x7f0000000280)={0x18, 0x0, 0x1, 0x0, 0x0, 0x9})
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8, 0x0)
r12 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000300), r13)
ioctl$IOCTL_GET_NCIDEV_IDX(r12, 0x0, &(0x7f00000000c0))

2m27.145059348s ago: executing program 32 (id=266):
bpf$LINK_GET_NEXT_ID(0x1f, 0x0, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000006100)=@delchain={0x24, 0x66, 0x1, 0x70bd2e, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xffff, 0xc}, {}, {0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004004)
r4 = socket$kcm(0x10, 0x2, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES8=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r6 = socket$kcm(0x10, 0x0, 0x0)
syz_clone(0x28a0000, 0x0, 0x0, &(0x7f0000000400), 0x0, &(0x7f0000000480))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="16000000"], 0x48)
fstat(r5, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r7}, 0x0, 0x0}, 0xffffffffffffff1d)
sendmsg$kcm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000500)="d8000000180081054e81f782db4cb904021d0800ff207c05e8fe55a10a0015000200142603600e12080005007f370401a8001600200006000500027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2e98a61e284ce5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e970392", 0xd8}], 0x1}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000003c0)={'syztnl0\x00', &(0x7f0000000340)={'syztnl0\x00', <r10=>0x0, 0x8880, 0x700, 0x4, 0xf101, {{0xe, 0x4, 0x0, 0x9, 0x38, 0x65, 0x0, 0x6a, 0x4, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@cipso={0x86, 0x24, 0x3, [{0x7, 0x7, "2e5d4b25e9"}, {0x5, 0x6, "fb7e02cc"}, {0x7, 0x11, "62623a712d72430162127a00e8602d"}]}]}}}}})
sendmsg$ETHTOOL_MSG_EEE_SET(r8, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB="34790197f0f74403b9b1848849c0641640269fe4c77a3fe718205c7d5b4bf0d08935f1cf35ce4d2fbe436b3b", @ANYRES16=r9, @ANYBLOB="00042abd7000fedbdf25180000002000018008000100", @ANYRES32=r10, @ANYBLOB="1400020070696d72656700"/20], 0x34}, 0x1, 0x0, 0x0, 0x24008801}, 0x6000)
r11 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r11, 0x3b87, &(0x7f0000000280)={0x18, 0x0, 0x1, 0x0, 0x0, 0x9})
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x8, 0x0)
r12 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000300), r13)
ioctl$IOCTL_GET_NCIDEV_IDX(r12, 0x0, &(0x7f00000000c0))

2m27.106756594s ago: executing program 4 (id=269):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0x2}, @union={0x0, 0x0, 0x0, 0x5, 0x1, 0x7ff}]}}, &(0x7f0000000f40)=""/4089, 0x32, 0xff9, 0x1, 0x7fb}, 0x28)

2m26.450039379s ago: executing program 4 (id=276):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000180)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f00000004c0)={0xa, 0xfffe, 0x0, @mcast2, 0x7}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="82", 0x1}, {&(0x7f0000000180)='K', 0x1}], 0x2}}], 0x1, 0x4400c800)
sendto$inet6(r0, &(0x7f0000000100)="cfc850de0827f31e2d202236f427cac8a8cd677665f6f6381ebb", 0x1a, 0x3b00, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000079c0)={@fallback, 0xffffffffffffffff, 0x7, 0x16}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000540)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x1001, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x40, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0xc2240edb8ac75ac7}, @TCA_TBF_BURST={0x8, 0x6, 0xff}, @TCA_TBF_PARMS={0x28, 0x1, {{0x5a, 0x2, 0x84a, 0x9, 0x1, 0x800}, {0x8c, 0x1, 0xfffc, 0x7fff, 0x4, 0xb}, 0x5, 0x34, 0x91f}}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x50)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b922, 0x25dfdc01, {0x0, 0x0, 0x0, r8, {0x0, 0xd}, {0xffff, 0xb}, {0x7, 0xf}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x9}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040a1}, 0x4890)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000380), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)

2m26.296638793s ago: executing program 33 (id=276):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000180)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f00000004c0)={0xa, 0xfffe, 0x0, @mcast2, 0x7}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="82", 0x1}, {&(0x7f0000000180)='K', 0x1}], 0x2}}], 0x1, 0x4400c800)
sendto$inet6(r0, &(0x7f0000000100)="cfc850de0827f31e2d202236f427cac8a8cd677665f6f6381ebb", 0x1a, 0x3b00, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000079c0)={@fallback, 0xffffffffffffffff, 0x7, 0x16}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000540)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x1001, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x40, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0xc2240edb8ac75ac7}, @TCA_TBF_BURST={0x8, 0x6, 0xff}, @TCA_TBF_PARMS={0x28, 0x1, {{0x5a, 0x2, 0x84a, 0x9, 0x1, 0x800}, {0x8c, 0x1, 0xfffc, 0x7fff, 0x4, 0xb}, 0x5, 0x34, 0x91f}}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x50)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b922, 0x25dfdc01, {0x0, 0x0, 0x0, r8, {0x0, 0xd}, {0xffff, 0xb}, {0x7, 0xf}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x9}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040a1}, 0x4890)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000380), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)

2m6.98877631s ago: executing program 6 (id=434):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000240)={0x24, r3, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x3821}]}, 0x24}, 0x1, 0x0, 0x0, 0x805}, 0x40084)
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x800, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20044010}, 0x40002)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xd, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000001000000000000000000000085000000500000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000006c00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000400)={'wlan0\x00'}) (async)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000240)={0x24, r3, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x3821}]}, 0x24}, 0x1, 0x0, 0x0, 0x805}, 0x40084) (async)
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x800, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20044010}, 0x40002) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xd, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000001000000000000000000000085000000500000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000006c00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)

2m6.853990313s ago: executing program 6 (id=437):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

2m5.910779967s ago: executing program 6 (id=446):
r0 = openat$smackfs_load(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/smackfs/load-self2\x00', 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000140)={'#! ', './file0', [{0x20, '{:(,&'}, {0x20, 'rwatl'}, {0x20, '.\\^]!\'\xa8'}, {0x20, 'bXatl'}, {0x20, '!,'}, {0x20, '.\\^]!\'\xa8'}], 0xa, 'o'}, 0x31) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000a00)=[{&(0x7f0000000300)="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", 0x282}, {&(0x7f00000005c0)="0456d4856c4b88b97e45594f0ae6bff7d3ae9a40b7bd9bc564c9516b939abd7e0e204453a9bffc037cb73bc5fef9de25180231f9dd5f0663c0093c594de5dc81cb1f638308ba1228e76cd56d8f18cf325b5608e2fd59232cdab01480b8e36c6b8b179ae19b388dea13c9a8429dd4e528929af3733ecd6b773c10132ee6bc3b7430be9233c4fcb610439ee8e2414966e88d0b05868fe5aa421397c33560a46fe8cbd9e02fda254d68d3308c0efc3c02c4845691aacc963d04f433dda8b8c0d00d0df4f8d165e0dd9ad1123fa4c2b54ba6a632", 0xd2}, {&(0x7f0000000840)="def015f646c27f13274cd20d6d707e2f6be3a3a4540325436209143b8ace92f28dfdf027c9cdba457301d0450aa6e7650bd347dbf0dcdc5f6b1d131a558a071e36419ed57189b720a6d2786ed2be1a91ad79bc258f6284b98db8c647affe92814cd09d97a01e852caddeb47912a00549ed86327c1b14b6b3b090b4c2a32296a4d9f0b9bbb5840ad75fbb2bb3df4b200c41d139e60cc35006b98c9a3b9a36849b57d636a7", 0xa4}], 0x3) (async)
setresuid(0x0, 0x0, 0x0) (async)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0xc000}}) (async, rerun: 64)
read$FUSE(r2, &(0x7f0000008340)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020) (rerun: 64)
syz_fuse_handle_req(r2, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x130, 0x0, 0xf9, {0x400000000000003, 0x3, 0x0, '\x00', {0x864b299795b228e5, 0x7fd, 0xadf, 0x0, r3, 0x0, 0xc000, '\x00', 0xa, 0x83, 0x10001, 0x800002, {0x1, 0x400006}, {0x2, 0xb}, {0x2000001, 0xc}, {0x4, 0x7}, 0x2, 0x6, 0xffc, 0x3}}}})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
sendmmsg$unix(r5, &(0x7f0000002780)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002700)=[@cred={{0x1c, 0x1, 0x2, {0x0, r6, r7}}}], 0x20}}], 0x2, 0x4000010) (async)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000200)={{{@in6=@ipv4={""/10, ""/2, @local}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@dev}, 0x0, @in=@broadcast}}, &(0x7f00000006c0)=0xe8)
fsetxattr$system_posix_acl(r1, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000700)={{}, {0x1, 0x4}, [{0x2, 0x1}, {}, {0x2, 0x5, 0xee00}, {0x2, 0x1, r3}, {0x2, 0x2, r6}, {0x2, 0x7, r8}], {0x4, 0x5}, [{0x8, 0x0, 0xee01}], {0x10, 0x2}, {0x20, 0x6}}, 0x5c, 0x0)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
read$FUSE(r9, &(0x7f0000001180)={0x2020}, 0x2020) (async, rerun: 64)
r10 = socket$netlink(0x10, 0x3, 0x14) (async, rerun: 64)
r11 = getpid() (async)
r12 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x0, 0x0) (async)
read$FUSE(r12, &(0x7f0000001180)={0x2020}, 0x2020) (async)
r13 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r13, 0x6, 0x0, 0x0, 0x0) (async)
fsmount(r13, 0x0, 0x8) (async)
fsconfig$FSCONFIG_CMD_CREATE(r13, 0x6, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000000)={0xe, 0xc1, {<r14=>0xffffffffffffffff}, {0xee01}, 0xf, 0x8}) (async, rerun: 32)
r15 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x0)
kcmp(r11, r14, 0x3, r15, r0) (async)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000340)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a2f000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)

2m5.812603212s ago: executing program 6 (id=447):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000002c0), 0x3, 0x43d, &(0x7f0000000d80)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x2e508d, 0x0, 0x1, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0, <r2=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000300)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000004c0)={r2, &(0x7f0000000400), &(0x7f0000000480)=@tcp6, 0x1}, 0x20)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x322020, &(0x7f0000000280)=ANY=[], 0x1, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x1a1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000000)={0xd2f0, 0x2000, 0x8, 0xadea, 0xfffffffc})

2m5.666088963s ago: executing program 6 (id=448):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x101842, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)=0x40000000)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$sock(r2, &(0x7f0000000780)={&(0x7f0000000380)=@in={0x2, 0x4e22, @local}, 0x80, 0x0, 0x0, &(0x7f0000000700)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}], 0x18}, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r1, 0x29, 0x3a, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r1, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003180)=""/23, 0x17}, 0xfffffff9}], 0x1, 0x2, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

2m5.284859302s ago: executing program 6 (id=452):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000000300)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f00000002c0)=[{r1, 0x2200}], 0x1, &(0x7f0000000340)={r2, r3+60000000}, &(0x7f0000000380)={[0x6]}, 0x8)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="034886dd01000000000014000012600000000308"], 0xfdef)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
socket$inet6(0xa, 0x5, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x101)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0x2}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="1c00000000000000000000000800", @ANYRES32=0x0, @ANYBLOB], 0x38}, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r9=>0x0})
r10 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r10, 0x8916, 0x0)
r11 = socket(0x1d, 0x3, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(r11, 0x65, 0x10, 0x0, 0x20000000)
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x2c, 0x24, 0x4, 0x70bd27, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0x4}, {0xc, 0xffff}, {0xb, 0xfff3}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
socket(0x10, 0x803, 0x0)

2m5.165647978s ago: executing program 34 (id=452):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
clock_gettime(0x0, &(0x7f0000000300)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f00000002c0)=[{r1, 0x2200}], 0x1, &(0x7f0000000340)={r2, r3+60000000}, &(0x7f0000000380)={[0x6]}, 0x8)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="034886dd01000000000014000012600000000308"], 0xfdef)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
socket$inet6(0xa, 0x5, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x101)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0x2}], 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="1c00000000000000000000000800", @ANYRES32=0x0, @ANYBLOB], 0x38}, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r9=>0x0})
r10 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r10, 0x8916, 0x0)
r11 = socket(0x1d, 0x3, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(r11, 0x65, 0x10, 0x0, 0x20000000)
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x2c, 0x24, 0x4, 0x70bd27, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0x4}, {0xc, 0xffff}, {0xb, 0xfff3}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
socket(0x10, 0x803, 0x0)

7.180196971s ago: executing program 7 (id=1162):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000a40), 0x2, 0x0)
ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x917)

7.079022728s ago: executing program 7 (id=1164):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x101c0ca, &(0x7f0000000880)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRESOCT], 0x6, 0x2de, &(0x7f0000000c40)="$eJzs3T1rJVUYAOB37ueoRVJYieCAFlbr7jYWNllkF8RULinUxuDuguQGJQsBP3A2laWVhb9BEPwlgv9A8AfYucLikfnKnWxurveqNyJ5nuLu2XPed86Zc4ZkUuTNBy8eHtwr4sHJFz9Hnmcx2ImdeJzFdgyi86hrnERf9igAgP+jxynFrymlbM28Kj7f0JoAgM3qvv9XLo4azZs/XMqyAIANuvvue2/f2t29/U5R5HHn8Kvjveon++rfZvzWg/goZnE/rsdWPImoXxTGUb8tVM07KaVyVFS245XD8nivynymvfqPn5yZbLv+PH3bqPPf2r19oyhe+7qJaPOr62TxbD1/Kneq+W/GVjx/mnwm/2bRmM9/WMbeJF59ubf+a7EVP30YH8cs7tWLmOd/eaMo3kzf/Pb5+9USqvysPN6b1nFzabj50wAAAAAAAAAAAAAAAAAAAAAA4Kq41tbOmUZdv6fqauvvDJ9U/xlH0dnu19fp6gOd1g3u1wdKKZV1uZymvs71oii6AsPz/FG8MOoXFgQAAAAAAAAAAAAAAAAAAICr6+Gnnx3sz2b3j/5542h/1lUDGEXE73cj/u4Fd3o9L8Xy4Gk75/5sNmibZ2NG/Z4YdjFZxNJlVDfxb2zLCo0/2qIJ54a++37l6wyao8z/OngcFwwNVzqvNDw3VD7d0z1dB/vZ4j2cRteTt5N+O4loY+oTXXHrJhcNpVjn8ZssHNpa+ygnz9WNcklMZMsW9sYvzc61PdnTdzGpd3Vh+rht9NLPxuQrPc+RN+nnv1ZkqnUAAAAAAAAAAAAAAAAAAMBGzX/7d8HgSf2ZXl+cOkjTza4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC7L/O//r9EoI2LcXqDpGcUFwZM4evgf3yIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABXwJ8BAAD//9dpVnM=")
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x84, &(0x7f0000000000)=ANY=[@ANYBLOB="00000100000022"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000004c0)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000700)={0x84, &(0x7f0000000640)=ANY=[@ANYBLOB="201104060000000101"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.530876597s ago: executing program 7 (id=1185):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=@ipv4_newroute={0x1c, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}}, 0x1c}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

6.5183289s ago: executing program 7 (id=1187):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f0000000080)={[{@grpquota}, {@nombcache}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000480)={&(0x7f00000002c0)=""/232, 0xe8})

6.42279765s ago: executing program 7 (id=1191):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x1, 0x2, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x1838a}, [@IFLA_IFNAME={0x14, 0x3, 'batadv_slave_0\x00'}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x5365f}]}, 0x3c}, 0x1, 0x0, 0x0, 0x884}, 0x4004004)

6.032070758s ago: executing program 7 (id=1212):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x108)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
write$P9_RVERSION(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

5.970459771s ago: executing program 35 (id=1212):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x108)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
write$P9_RVERSION(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

3.312286975s ago: executing program 3 (id=1260):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close(0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}]}, 0x20}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000001c0)={0x40, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @action={{{}, {0x8}, @broadcast, @device_a, @from_mac=@broadcast, {0x0, 0x400}}, @ext_ch_sw={0x4, 0x4, {{0x0, 0x3, 0xe, 0xf9}, @void}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

3.230365915s ago: executing program 3 (id=1262):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x2, {{@in6=@remote, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0xfffffffffffffffc}, {0x0, 0xacb0, 0x3ffffffff}, 0x400}, [@tmpl={0x44, 0x5, [{{@in6=@private2={0xfc, 0x2, '\x00', 0x2}, 0x4d4, 0x32}, 0xa, @in6=@mcast2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x7}]}]}, 0xfc}}, 0x4c050)
syz_emit_ethernet(0x7a, &(0x7f00000000c0)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x34}, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "76db40", 0x44, 0x2f, 0x0, @dev={0xfe, 0x80, '\x00', 0x21}, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x200}, {}, {}, {}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10}, 0x2, {0x0, 0x1}}}}}}}}}, 0x0)

3.222239813s ago: executing program 3 (id=1264):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000840)={0x30, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1, 0x4e}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

3.138861956s ago: executing program 3 (id=1266):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0xa4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xb5}, 0x48)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1, @in, 0x4e23, 0xffff, 0x4e22, 0x0, 0xa, 0x0, 0x0, 0x6}, {0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7408, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000, 0x3}, 0x800, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x4001}, 0x2c000010)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in, 0x0, 0xfffe, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0xffffffff7ffffffd, 0x0, 0x0, 0x2, 0xfffffffffffffffe, 0x0, 0x5, 0xfffffffffffffffb}, {0x6, 0x40000000000000, 0x200000000000000}, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x4000015}, 0x2c000010)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x8}, [@tail_call={{}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r6, 0x0}, 0x20)

2.266801165s ago: executing program 5 (id=1292):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x116, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x8, "", [{{0x9, 0x4, 0x0, 0xfe, 0xdf, 0x3, 0x0, 0x3, 0x0, {0x9, 0x21, 0x81, 0x1d, 0x1, {0x22, 0x28}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x3, 0xc1}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000380)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="2022280000002821c263138526942c3cbdeace918d0fb7423752973661d67a0c554438000000a9000000000000"], 0x0, 0x0, 0x0, 0x0}, 0x0)

2.26649922s ago: executing program 2 (id=1293):
syz_usb_connect(0x2, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000e131f8104c1302007eac0102030109021b0001000000000904000001098b7500090583"], 0x0)
semtimedop(0x0, 0x0, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x400)

1.751179048s ago: executing program 2 (id=1299):
unshare(0x62040200)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6}})
write$tun(r0, &(0x7f0000000200)={@val={0xa, 0x8808}, @void, @eth={@broadcast, @remote, @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "17007e", 0x0, 0x3c, 0xff, @private2={0xfc, 0x2, '\x00', 0x6}, @mcast2}}}}}, 0x3a)

1.745601645s ago: executing program 5 (id=1300):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x4, 0x8}, 0x50)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x15, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.621761132s ago: executing program 5 (id=1301):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000000)="ea8d5b1a6844babeb89e14f088f7", 0x0, 0xfffffffc, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.54301434s ago: executing program 0 (id=1302):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0xe501, 0x3, 0x228, 0x0, 0xa, 0x1000000, 0x0, 0x0, 0x190, 0x230, 0x230, 0x190, 0x223, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x3b9, 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x10, 0x2, 0x0, 0x3, 'pptp\x00', 'syz0\x00', {0x8}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4, 0xfffffffb}}}}, 0x288)

1.540962022s ago: executing program 0 (id=1303):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newsa={0xf0, 0x10, 0x1, 0xfffffffe, 0x25dfdbfd, {{@in6=@empty, @in=@remote, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x80, 0x3c}, {@in=@dev={0xac, 0x14, 0x14, 0x17}, 0x4d4, 0x2b}, @in6=@loopback, {0x9, 0x192, 0x6, 0xffff, 0x8251a, 0xffffffffffffffff, 0xfffffffffffffff8, 0x2}, {0xffffffffffffffff, 0x2a, 0x1f, 0x7b8}, {0x2, 0xfffffffc, 0xffffffbc}, 0x70bd2a, 0x0, 0x2, 0x1, 0x0, 0x20}}, 0xf0}, 0x1, 0x0, 0x0, 0x8801}, 0x0)

1.508584473s ago: executing program 2 (id=1305):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'veth1_virt_wifi\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r1, r2, 0x25, 0x4, @val=@tcx}, 0x1c)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000680)={r3, 0xffffffffffffffff, 0x4, r1}, 0x10)

1.486291752s ago: executing program 0 (id=1306):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
syz_usb_connect(0x3, 0x8c6, &(0x7f0000000300)=ANY=[@ANYBLOB="1201500236e47e2082055c2955d4010203010902b408048006a00309047f0e01ff2dde700a2401010080020102081305052f"], &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0})
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2a08018, &(0x7f0000000180)={[{@auto_da_alloc}, {@dioread_lock}, {@init_itable}, {@block_validity}, {@usrquota}, {@auto_da_alloc}]}, 0x1, 0x49e, &(0x7f0000002140)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x143042, 0x80)
r1 = openat(0xffffffffffffffff, 0x0, 0x169202, 0x26)
sendmsg$NL80211_CMD_SET_INTERFACE(r1, 0x0, 0x44)
pwritev2(r0, 0x0, 0x0, 0x5405, 0x0, 0x0)

1.089348085s ago: executing program 2 (id=1310):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f0000000040)={@val={0x0, 0x80f3}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x67, 0x0, 0x3, 0x2f, 0x0, @private=0x1fe1, @multicast1}, {0xa000, 0x86dd, 0x10, 0x0, @gue={{0x2, 0x1, 0x2, 0x0, 0x0, @val=0x80}}}}}}}}, 0x36)

714.976438ms ago: executing program 5 (id=1311):
syz_mount_image$vfat(&(0x7f0000000880), &(0x7f0000003200)='./file1\x00', 0x4604, &(0x7f0000003240)=ANY=[], 0x3, 0x335, &(0x7f0000000a40)="$eJzs3M9rG0cUwPEnWZYlGVs6lJYWiof20l4WW+25VBQbSgU1tlVqFwxre9UKbSWjFS4qpbZPvZbccwrkYHz0zZD4H/Alt+SSS266BHKICSEb9pf107asyJFjfz8QdjQzTzujGYW3i1f1X///s5i3tLxelXBMSUhE5EQkJWEJhPxj2C1HpdmOfD3+4vHni8srP2Wy2dkFpeYyS9+klVKTUw/++ifudzsck+PUav15+tnxx8ef1t8s/VGwVMFSpXJV6Wqt/LSqr5mG2ihYRU2pedPQLUMVSpZR8drLXnveLG9u1pRe2phIbFYMy1J6qaaKRk1Vy6paqSn9d71QUpqmqYmE4ALOgi7omT6j1wc8GlyRSiWjj4hIvKMltzeUAQEAgKFqz//DTkrfV/4vk27+73Ru5P/7XxxVx385mDx0Ylfrh9Fu+f+3T7z3asn/YyLST/5/Vy6R/3dmRLdLbm+h//wf18NUtKMq1PLKyf8T/vfXtfvb/rRbIP8HAAAAAAAAAAAAAAAAAAAAAOBDcGLbSdu2k8Ex+Nd4hMB/jRvprPUfE5GYs/o263+TLS6vSMx9cM9ZY/O/rdxWzjv6HY5ExBRDpiUpr9394HPKwZNHypGSh+a2G//KOY64LZm8FNz4GUlKqj3etud+zM7OKI8ff/qYUqI5Pi1J+ah7fLo13hn/9lYuKl992RSvSVIerUtZTNlw93Uj/t8ZpX74OdsWH/dOAgAAAADADaApFfIvn1Ot17/e9bumKdW93fuVkUzevU10xv0B7/p6uuv1eST5WWTYswcAAAAA4Hawan8XddM0KucU4nJxn/4Lkd46R9tqRs/rPNI0w17HE3VvZIi867zu9fipthSCP6RoaYr5lf2NJ5j/wNZrp7kmLD1ERdoHP+VUqEuefdefyGlNcNsoesbnLPOd7xM+ZyeMDmw/f3Ln/svBfUG+Owh2wMWdd/s9V6x917mF0av+fwcAAADA+9dI+oOa75ubQ0MZFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAt8yV/KRfW2HYcwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACui7cBAAD//5Oa+gc=")
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff2, 0x4012011, r0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x15}, 0x95)
fdatasync(r0)

714.804679ms ago: executing program 2 (id=1312):
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10, &(0x7f0000000640), 0x0, 0x47c, &(0x7f00000001c0)="$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")
lseek(r0, 0x7, 0x2)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x8, 0xffffe1ac, 0x8, 0x6, 0x7})
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8, 0x4, 0x3a30, 0x1, 0x7f})

696.918728ms ago: executing program 5 (id=1313):
syz_emit_ethernet(0x52, &(0x7f00000000c0)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0xc, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x6, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x3, 0xe2}, @timestamp={0x44, 0x10, 0x5, 0x3, 0x9, [0x0, 0x0, 0x0]}, @cipso={0x86, 0x6, 0xffffffffffffffff}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0xfffc}}}}}}, 0x0)

651.264706ms ago: executing program 2 (id=1315):
r0 = syz_usb_connect$hid(0x0, 0x75, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc225, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xf0, 0x35, "", [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x81, 0x3, 0x1, {0x22, 0x28}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x3, 0xbe, 0x8}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
dup(0xffffffffffffffff)
syz_usb_control_io(r0, &(0x7f00000000c0)={0x2c, &(0x7f0000000100)={0x0, 0x4, 0x2e, {0x2e, 0x22, "c263138526792c3cbdeace918d0fb74244804e88e78881ce2a0c5544380000000000000000007a3a467f4d5c"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

648.408687ms ago: executing program 5 (id=1316):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)

538.983434ms ago: executing program 8 (id=1317):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='team_slave_0\x00', 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c)

538.794883ms ago: executing program 8 (id=1318):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
r1 = socket$netlink(0x10, 0x3, 0x0)
preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000080)=""/4, 0x4}], 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x4, 0x4, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

141.0467ms ago: executing program 0 (id=1319):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4)
setsockopt$inet6_buf(r0, 0x29, 0x3e, &(0x7f0000000140)="d84f7398", 0x4)
sendto$inet6(r0, &(0x7f0000000800)="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"/1453, 0x5ad, 0x0, &(0x7f0000000080)={0xa, 0x5e20, 0x3, @mcast2}, 0x1c)
recvmmsg(r0, &(0x7f0000008180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002a00)=""/75, 0x4b}, 0x6}], 0x1, 0x40010043, 0x0)

123.047338ms ago: executing program 3 (id=1320):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r3}, &(0x7f0000000140), &(0x7f0000000180)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
pipe2(0x0, 0x80000)
close(0x3)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000e, 0x204031, 0xffffffffffffffff, 0xd0c6f000)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

121.942135ms ago: executing program 8 (id=1321):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0xa, 0x7, 0x2, 0x4, 0x2}, 0x50)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x2, r0, 0x8a70910b37f49a67}, 0x38)

46.952547ms ago: executing program 8 (id=1322):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000bc0)=@newlink={0x38, 0x10, 0xffffff1f, 0x1, 0x10, {0x0, 0x0, 0x0, 0x0, 0x65205, 0x4000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_AF_SPEC={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x8080}, 0x0)

46.6645ms ago: executing program 3 (id=1323):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0xfe37, 0x0)
truncate(&(0x7f0000000080)='./file2\x00', 0x9)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x40)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

46.53599ms ago: executing program 0 (id=1324):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x10, 0x4, 0x4, 0x8, 0x0, 0x1}, 0x48)

43.42978ms ago: executing program 8 (id=1325):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000000104010400000000398f0000000000000500010001"], 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000000104010100000000000000000a0000000500010002"], 0x24}, 0x1, 0x0, 0x0, 0x200c8016}, 0x94)

32.29322ms ago: executing program 0 (id=1326):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000007c0)='1', 0x1}], 0x1, &(0x7f0000000880)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18, 0x40054}}], 0x1, 0x4)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

0s ago: executing program 8 (id=1327):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="120141014813442024040075ee69010203010902240001000010000904b8070259d1ca000905060200020d0006090582020002"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000480)={0x84, &(0x7f0000000140)={0x40, 0x15, 0x4, "84bd00a9"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000080)={0x44, &(0x7f0000000200)={0x0, 0xc, 0x4, "da9483aa"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000740)={0x44, &(0x7f0000000000)=ANY=[@ANYBLOB="601004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000200)={0x14, &(0x7f0000000100)={0x40, 0x10, 0x2, {0x2, 0x8}}, 0x0}, &(0x7f0000000480)={0x44, &(0x7f0000000240)={0x60, 0x30, 0x11, "3669c7ab453699c92c80196b7386dd16ba"}, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x81, 0x1, 'D'}, &(0x7f0000000340)={0x20, 0x82, 0x1, "86"}, 0x0, &(0x7f0000000400)={0x20, 0x84, 0x1, "d8"}, &(0x7f0000000440)={0x20, 0x85, 0x3, "769dbf"}})

kernel console output (not intermixed with test programs):

3842][ T6763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   75.443849][ T6763] Call trace:
[   75.443853][ T6763]  show_stack+0x2c/0x3c (C)
[   75.443877][ T6763]  __dump_stack+0x30/0x40
[   75.443888][ T6763]  dump_stack_lvl+0xd8/0x12c
[   75.443898][ T6763]  dump_stack+0x1c/0x28
[   75.443907][ T6763]  should_fail_ex+0x414/0x588
[   75.443917][ T6763]  should_fail+0x14/0x24
[   75.443924][ T6763]  should_fail_usercopy+0x20/0x30
[   75.443933][ T6763]  bpf_verifier_vlog+0x2fc/0xbcc
[   75.443942][ T6763]  __btf_verifier_log+0xe8/0x13c
[   75.443951][ T6763]  btf_parse_hdr+0x25c/0x708
[   75.443960][ T6763]  btf_new_fd+0x298/0xa58
[   75.443969][ T6763]  bpf_btf_load+0x144/0x190
[   75.443979][ T6763]  __sys_bpf+0x450/0x5f0
[   75.443988][ T6763]  __arm64_sys_bpf+0x80/0x98
[   75.443997][ T6763]  invoke_syscall+0x98/0x244
[   75.444006][ T6763]  el0_svc_common+0xe8/0x23c
[   75.444016][ T6763]  do_el0_svc+0x48/0x58
[   75.444025][ T6763]  el0_svc+0x64/0x260
[   75.444033][ T6763]  el0t_64_sync_handler+0x48/0x148
[   75.444040][ T6763]  el0t_64_sync+0x198/0x19c
[   75.483707][ T5825] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.593882][ T5825] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.615212][ T6775] loop0: detected capacity change from 0 to 256
[   75.804122][ T6790] netlink: 4 bytes leftover after parsing attributes in process `syz.3.462'.
[   75.857653][ T6797] random: crng reseeded on system resumption
[   76.240038][ T6812] futex_wake_op: syz.0.465 tries to shift op by 32; fix this program
[   76.255193][ T5825] bridge_slave_1: left allmulticast mode
[   76.255225][ T5825] bridge_slave_1: left promiscuous mode
[   76.255378][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.274894][ T5825] bridge_slave_0: left allmulticast mode
[   76.274974][ T5825] bridge_slave_0: left promiscuous mode
[   76.275362][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.313272][ T6814] loop0: detected capacity change from 0 to 128
[   77.095219][ T6818] loop3: detected capacity change from 0 to 1024
[   77.095536][ T6818] EXT4-fs: Ignoring removed mblk_io_submit option
[   77.124610][ T6818] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8802c018, mo2=0002]
[   77.201730][ T6818] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   77.208568][ T6818] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.467: bg 0: block 112: padding at end of block bitmap is not set
[   77.258918][ T6827] sctp: [Deprecated]: syz.3.467 (pid 6827) Use of struct sctp_assoc_value in delayed_ack socket option.
[   77.258918][ T6827] Use struct sctp_sack_info instead
[   77.297596][ T6818] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[   77.297631][ T6818] EXT4-fs (loop3): This should not happen!! Data will be lost
[   77.297631][ T6818] 
[   77.297654][ T6818] EXT4-fs (loop3): Total free blocks count 0
[   77.297670][ T6818] EXT4-fs (loop3): Free/Dirty block details
[   77.297706][ T6818] EXT4-fs (loop3): free_blocks=0
[   77.297723][ T6818] EXT4-fs (loop3): dirty_blocks=32
[   77.297734][ T6818] EXT4-fs (loop3): Block reservation details
[   77.297744][ T6818] EXT4-fs (loop3): i_reserved_data_blocks=2
[   77.376679][ T5825] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   77.393869][ T5825] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   77.410688][ T6072] EXT4-fs error (device loop3): ext4_readdir:265: inode #2: block 16: comm syz-executor: path /22/file1: bad entry in directory: directory entry overrun - offset=876, inode=0, rec_len=1024, size=1024 fake=0
[   77.411483][ T6072] EXT4-fs error (device loop3): ext4_readdir:265: inode #11: block 37: comm syz-executor: path /22/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=197884, size=1024 fake=0
[   77.424929][ T6072] EXT4-fs error (device loop3): ext4_empty_dir:3125: inode #11: block 37: comm syz-executor: bad entry in directory: directory entry overrun - offset=5120, inode=0, rec_len=197884, size=1024 fake=0
[   77.429617][ T5825] bond0 (unregistering): Released all slaves
[   77.432806][   T50] Bluetooth: hci1: command tx timeout
[   77.434277][ T6072] EXT4-fs error (device loop3): ext4_readdir:265: inode #11: block 37: comm syz-executor: path /22/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=197884, size=1024 fake=0
[   77.439862][ T6072] EXT4-fs error (device loop3): ext4_empty_dir:3125: inode #11: block 37: comm syz-executor: bad entry in directory: directory entry overrun - offset=5120, inode=0, rec_len=197884, size=1024 fake=0
[   77.440237][ T6072] EXT4-fs error (device loop3): ext4_readdir:265: inode #11: block 37: comm syz-executor: path /22/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=197884, size=1024 fake=0
[   77.440472][ T6072] EXT4-fs error (device loop3): ext4_empty_dir:3125: inode #11: block 37: comm syz-executor: bad entry in directory: directory entry overrun - offset=5120, inode=0, rec_len=197884, size=1024 fake=0
[   77.440733][ T6072] EXT4-fs error (device loop3): ext4_readdir:265: inode #11: block 37: comm syz-executor: path /22/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=197884, size=1024 fake=0
[   77.440967][ T6072] EXT4-fs error (device loop3): ext4_empty_dir:3125: inode #11: block 37: comm syz-executor: bad entry in directory: directory entry overrun - offset=5120, inode=0, rec_len=197884, size=1024 fake=0
[   77.474502][ T5825] bond1 (unregistering): Released all slaves
[   77.534794][ T6759] wg1 speed is unknown, defaulting to 1000
[   77.547780][   T24] wg1 speed is unknown, defaulting to 1000
[   77.547813][   T24] syz0: Port: 1 Link DOWN
[   77.548102][ T5825] tipc: Left network mode
[   77.910862][ T6759] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.933688][ T6759] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.933833][ T6759] bridge_slave_0: entered allmulticast mode
[   77.934310][ T6759] bridge_slave_0: entered promiscuous mode
[   78.036603][ T6759] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.036656][ T6759] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.036743][ T6759] bridge_slave_1: entered allmulticast mode
[   78.037292][ T6759] bridge_slave_1: entered promiscuous mode
[   78.076638][ T4394] 8021q: adding VLAN 0 to HW filter on device eth8
[   78.142603][ T5825] hsr_slave_0: left promiscuous mode
[   78.142949][ T5825] hsr_slave_1: left promiscuous mode
[   78.143181][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.143197][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.143486][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.143501][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.154166][ T5825] veth1_macvtap: left promiscuous mode
[   78.155199][ T5825] veth0_macvtap: left promiscuous mode
[   78.156320][ T5825] veth1_vlan: left promiscuous mode
[   78.157374][ T5825] veth0_vlan: left promiscuous mode
[   78.227141][ T6072] EXT4-fs warning (device loop3): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[   78.228352][ T6072] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   78.362857][ T5825] team0 (unregistering): Port device team_slave_1 removed
[   78.373551][ T5825] team0 (unregistering): Port device team_slave_0 removed
[   78.543820][ T6759] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.545956][ T6759] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.552010][ T6759] team0: Port device team_slave_0 added
[   78.564003][ T6759] team0: Port device team_slave_1 added
[   78.609065][ T6759] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.609096][ T6759] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.609122][ T6759] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.609655][ T6759] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.609663][ T6759] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.609678][ T6759] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.655846][ T6759] hsr_slave_0: entered promiscuous mode
[   78.656186][ T6759] hsr_slave_1: entered promiscuous mode
[   78.656377][ T6759] debugfs: 'hsr0' already exists in 'hsr'
[   78.656387][ T6759] Cannot create hsr debugfs directory
[   78.736594][ T6759] netdevsim netdevsim7 netdevsim0: renamed from eth0
[   78.740311][ T6759] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   78.742107][ T6759] netdevsim netdevsim7 netdevsim1: renamed from eth1
[   78.744603][ T6759] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   78.748901][ T6759] netdevsim netdevsim7 netdevsim2: renamed from eth2
[   78.751184][ T6759] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   78.753052][ T6759] netdevsim netdevsim7 netdevsim3: renamed from eth3
[   78.755271][ T6759] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   78.818231][ T6759] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.832693][ T6759] 8021q: adding VLAN 0 to HW filter on device team0
[   78.840995][ T6759] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   78.841032][ T6759] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.842030][ T4914] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.842072][ T4914] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.842699][ T4914] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.842728][ T4914] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.989240][ T6759] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.140865][ T6759] veth0_vlan: entered promiscuous mode
[   79.157612][ T6759] veth1_vlan: entered promiscuous mode
[   79.175790][ T6759] veth0_macvtap: entered promiscuous mode
[   79.179437][ T6759] veth1_macvtap: entered promiscuous mode
[   79.186438][ T6759] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.194423][ T6759] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.208616][   T12] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.208671][   T12] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.208696][   T12] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.208713][   T12] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.266427][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.266456][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.300238][ T4914] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.300273][ T4914] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.485934][ T6924] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.453'.
[   79.513166][   T50] Bluetooth: hci1: command tx timeout
[   79.547086][ T4394] 8021q: adding VLAN 0 to HW filter on device eth9
[   79.795049][ T4394] 8021q: adding VLAN 0 to HW filter on device eth10
[   79.972517][ T4394] 8021q: adding VLAN 0 to HW filter on device eth11
[   81.592571][   T50] Bluetooth: hci1: command tx timeout
[   83.673790][   T50] Bluetooth: hci1: command tx timeout
[  125.913614][ T1594] ieee802154 phy0 wpan0: encryption failed: -22
[  125.915034][ T1594] ieee802154 phy1 wpan1: encryption failed: -22
[  144.611044][ T7066] loop0: detected capacity change from 0 to 512
[  144.614881][ T7065] loop7: detected capacity change from 0 to 2048
[  144.618745][ T7066] EXT4-fs: Ignoring removed bh option
[  144.663316][ T4708] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  144.664227][ T4708] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  144.664676][ T4708] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  144.665054][ T4708] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  144.665414][ T4708] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  144.723338][ T7065] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.724168][ T7066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.066065][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.298127][ T7091] overlayfs: failed to create directory ./bus/index (errno: 28); mounting read-only
[  145.298281][ T7091] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  145.298516][ T7091] overlayfs: NFS export requires an index dir, falling back to nfs_export=off.
[  145.367607][ T7094] loop0: detected capacity change from 0 to 1024
[  145.368166][ T7094] EXT4-fs: Ignoring removed bh option
[  145.368539][ T7094] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  145.369275][ T7094] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce028, mo2=0000]
[  145.369309][ T7094] System zones: 0-1, 3-12
[  145.390384][ T7094] EXT4-fs error (device loop0): ext4_map_blocks:833: inode #3: block 1: comm syz.0.476: lblock 1 mapped to illegal pblock 1 (length 1)
[  145.397880][ T7094] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  145.402562][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  145.402589][    C0] EXT4-fs (loop0): initial error at time 145: ext4_map_blocks:833: inode 3: block 1
[  145.402631][    C0] EXT4-fs (loop0): last error at time 145: ext4_map_blocks:833: inode 3: block 1
[  145.418534][ T7094] EXT4-fs (loop0): Remounting filesystem read-only
[  145.418572][ T7094] Quota error (device loop0): write_blk: dquota write failed
[  145.418604][ T7094] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  145.418662][ T7094] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  145.418747][ T7094] EXT4-fs (loop0): 1 orphan inode deleted
[  145.419248][ T7094] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.660929][ T6759] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.668678][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.845075][ T7116] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.482'.
[  145.937034][ T7117] netlink: 4 bytes leftover after parsing attributes in process `syz.7.478'.
[  146.000272][ T7069] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.002166][ T7069] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.005235][ T7069] bridge_slave_0: entered allmulticast mode
[  146.007346][ T7069] bridge_slave_0: entered promiscuous mode
[  146.010224][ T7069] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.012175][ T7069] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.014631][ T7069] bridge_slave_1: entered allmulticast mode
[  146.017069][ T7069] bridge_slave_1: entered promiscuous mode
[  146.025994][ T7122] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.481'.
[  146.046746][ T7069] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.052499][ T7069] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.074966][ T7069] team0: Port device team_slave_0 added
[  146.078439][ T7069] team0: Port device team_slave_1 added
[  146.098165][ T7069] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.099795][ T7069] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  146.105498][ T7069] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.106170][ T7069] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.106179][ T7069] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  146.106194][ T7069] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.133220][ T7069] hsr_slave_0: entered promiscuous mode
[  146.134870][ T7069] hsr_slave_1: entered promiscuous mode
[  146.136336][ T7069] debugfs: 'hsr0' already exists in 'hsr'
[  146.137618][ T7069] Cannot create hsr debugfs directory
[  146.246714][ T7069] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.373630][ T7069] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.380912][ T7128] netlink: 'syz.2.485': attribute type 1 has an invalid length.
[  146.447492][ T7128] vlan2: entered allmulticast mode
[  146.448748][ T7128] veth0_to_bond: entered allmulticast mode
[  146.540294][ T7069] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.569272][ T7135] netlink: 4 bytes leftover after parsing attributes in process `syz.0.486'.
[  146.784024][   T50] Bluetooth: hci3: command tx timeout
[  146.887910][ T7135] team1: entered promiscuous mode
[  146.887948][ T7135] team1: entered allmulticast mode
[  146.888097][ T7135] 8021q: adding VLAN 0 to HW filter on device team1
[  146.957171][ T7069] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.022941][ T7149] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  147.030195][ T7149] syzkaller0: entered promiscuous mode
[  147.031423][ T7149] syzkaller0: entered allmulticast mode
[  147.195258][ T7069] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  147.198459][ T7069] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  147.199508][ T7069] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  147.201650][ T7069] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  147.203665][ T7069] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  147.207367][ T7069] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  147.208691][ T7069] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  147.213033][ T7069] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  147.242848][ T7169] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.496'.
[  147.310676][ T7069] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.314884][ T7069] 8021q: adding VLAN 0 to HW filter on device team0
[  147.319051][ T4914] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.319101][ T4914] bridge0: port 1(bridge_slave_0) entered forwarding state
[  147.321351][ T4914] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.321373][ T4914] bridge0: port 2(bridge_slave_1) entered forwarding state
[  147.331838][ T7069] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  147.331875][ T7069] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  147.548741][ T7180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.500'.
[  147.665411][ T7190] loop2: detected capacity change from 0 to 512
[  147.675237][ T7190] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  147.700187][ T7190] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  147.700271][ T7190] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  147.700282][ T7190] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.503: Failed to acquire dquot type 1
[  147.700293][ T7190] loop2: lost filesystem error report for type 5 error -117
[  147.702567][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  147.702588][    C1] EXT4-fs (loop2): last error at time 147: ext4_acquire_dquot:7034
[  147.732406][  T258] Bluetooth: hci5: Frame reassembly failed (-84)
[  147.736294][ T7190] EXT4-fs (loop2): 1 truncate cleaned up
[  147.736872][ T7190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  147.743556][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[  147.747833][ T7194] Bluetooth: hci5: Frame reassembly failed (-84)
[  147.759696][ T7194] loop5: detected capacity change from 0 to 512
[  147.760075][ T7190] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  147.762776][ T7190] 
@0Ù: renamed from bond_slave_1 (while UP)
[  147.778012][ T7194] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  147.850904][ T7069] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.867951][ T7190] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  147.868007][ T7190] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  147.869316][ T7190] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.503: Failed to acquire dquot type 1
[  147.874839][ T7190] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  147.874871][ T7190] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  147.874880][ T7190] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.503: Failed to acquire dquot type 1
[  147.879570][ T7190] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  147.879603][ T7190] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.503: Failed to acquire dquot type 1
[  147.888964][ T7069] veth0_vlan: entered promiscuous mode
[  147.903405][ T7069] veth1_vlan: entered promiscuous mode
[  147.926419][ T7069] veth0_macvtap: entered promiscuous mode
[  147.932002][ T6099] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  147.936115][ T7069] veth1_macvtap: entered promiscuous mode
[  147.955974][ T7069] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.957030][ T7069] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.985364][ T4914] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.985410][ T4914] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.985429][ T4914] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.985447][ T4914] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.023590][ T7200] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  148.029159][ T7200] syzkaller0: entered promiscuous mode
[  148.029201][ T7200] syzkaller0: entered allmulticast mode
[  148.045532][ T5646] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.045562][ T5646] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.097443][ T4914] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.097477][ T4914] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.403793][ T7213] netlink: 60 bytes leftover after parsing attributes in process `syz.3.474'.
[  148.623209][ T7216] binder: 7215:7216 tried to acquire reference to desc 0, got 1 instead
[  148.623447][ T7216] binder: 7215:7216 got transaction with invalid offsets ptr
[  148.623476][ T7216] binder: 7215:7216 transaction call to 7215:0 failed 27/29201/-22, code 0 size 120-24 line 3738
[  148.623637][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  148.734993][ T7223] random: crng reseeded on system resumption
[  148.803155][ T4708] Bluetooth: hci3: command tx timeout
[  149.322817][ T7237] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.516'.
[  149.626858][ T7243] netlink: 4 bytes leftover after parsing attributes in process `syz.7.519'.
[  149.752657][ T4708] Bluetooth: hci5: command 0x1003 tx timeout
[  149.753937][   T50] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  150.124219][ T7254] random: crng reseeded on system resumption
[  150.129368][ T7252] binder: 7251:7252 tried to acquire reference to desc 0, got 1 instead
[  150.130871][ T7252] binder: 7251:7252 got transaction with invalid offsets ptr
[  150.130927][ T7252] binder: 7251:7252 transaction call to 7251:0 failed 32/29201/-22, code 0 size 120-24 line 3738
[  150.137035][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  150.358209][ T7265] lo speed is unknown, defaulting to 1000
[  150.358249][ T7265] lo speed is unknown, defaulting to 1000
[  150.358494][ T7265] lo speed is unknown, defaulting to 1000
[  150.359963][ T7265] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  150.416413][ T7265] lo speed is unknown, defaulting to 1000
[  150.416879][ T7265] lo speed is unknown, defaulting to 1000
[  150.417229][ T7265] lo speed is unknown, defaulting to 1000
[  150.417555][ T7265] lo speed is unknown, defaulting to 1000
[  150.417895][ T7265] lo speed is unknown, defaulting to 1000
[  150.418202][ T7265] lo speed is unknown, defaulting to 1000
[  150.466602][ T7270] netlink: 'syz.2.528': attribute type 46 has an invalid length.
[  150.629573][ T7284] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.531'.
[  150.639288][ T7285] loop7: detected capacity change from 0 to 8
[  150.654421][ T7285] squashfs: SQUASHFS error: Xattrs in filesystem, these will be ignored
[  150.656384][ T7285] unable to read xattr id index table
[  150.658339][ T7285] SQUASHFS error: zlib decompression failed, data probably corrupt
[  150.658374][ T7285] SQUASHFS error: Failed to read block 0x9b: -5
[  150.658387][ T7285] SQUASHFS error: Unable to read metadata cache entry [99]
[  150.658398][ T7285] SQUASHFS error: Unable to read inode 0x127
[  150.770779][ T7289] random: crng reseeded on system resumption
[  150.872936][   T50] Bluetooth: hci3: command tx timeout
[  150.965212][ T7297] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  150.974091][ T7297] syzkaller0: entered promiscuous mode
[  150.975219][ T7297] syzkaller0: entered allmulticast mode
[  151.101867][ T7300] netlink: 12 bytes leftover after parsing attributes in process `syz.3.539'.
[  151.130926][ T7300] netlink: 4 bytes leftover after parsing attributes in process `syz.3.539'.
[  151.206147][ T7302] loop5: detected capacity change from 0 to 2048
[  151.236132][ T7302] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.267134][ T7306] loop7: detected capacity change from 0 to 512
[  151.287763][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.360455][ T7309] netlink: 8 bytes leftover after parsing attributes in process `syz.5.542'.
[  151.627447][ T7326] random: crng reseeded on system resumption
[  151.736069][ T7330] loop7: detected capacity change from 0 to 4096
[  151.759855][ T7330] EXT4-fs: inline encryption not supported
[  151.759887][ T7330] EXT4-fs: Ignoring removed oldalloc option
[  151.785443][ T7330] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  151.785480][ T7330] EXT4-fs (loop7): Test dummy encryption mode enabled
[  151.790294][ T7336] netlink: 8 bytes leftover after parsing attributes in process `syz.2.550'.
[  151.795394][ T7330] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c198, mo2=0003]
[  151.803217][ T7330] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.972949][ T7344] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.551'.
[  152.069984][ T7346] input: syz0 as /devices/virtual/input/input6
[  152.330646][ T7353] loop3: detected capacity change from 0 to 512
[  152.336880][ T7353] EXT4-fs error (device loop3): ext4_init_orphan_info:583: comm syz.3.555: inode #0: comm syz.3.555: iget: illegal inode #
[  152.336915][ T7353] loop3: lost filesystem error report for type 5 error -117
[  152.337069][ T7353] EXT4-fs (loop3): get orphan inode failed
[  152.337313][ T7353] EXT4-fs (loop3): mount failed
[  152.501198][ T7363] loop0: detected capacity change from 0 to 256
[  152.595746][ T7367] binder: 7366:7367 tried to acquire reference to desc 0, got 1 instead
[  152.597954][ T7367] binder: 7366:7367 got transaction with invalid offsets ptr
[  152.598005][ T7367] binder: 7366:7367 transaction call to 7366:0 failed 37/29201/-22, code 0 size 120-24 line 3738
[  152.617890][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  152.692459][ T6759] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.102029][ T7399] binder: 7398:7399 tried to acquire reference to desc 0, got 1 instead
[  153.104559][ T7399] binder: 7398:7399 got transaction with invalid offsets ptr
[  153.109290][ T7399] binder: 7398:7399 transaction call to 7398:0 failed 42/29201/-22, code 0 size 120-24 line 3738
[  153.109501][ T4820] binder: undelivered TRANSACTION_ERROR: 29201
[  153.242306][ T7401] loop3: detected capacity change from 0 to 4096
[  153.245002][ T7401] EXT4-fs: inline encryption not supported
[  153.245828][ T7401] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  153.245846][ T7401] EXT4-fs (loop3): Test dummy encryption mode enabled
[  153.246708][ T7401] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003]
[  153.246751][ T7401] System zones: 0-5
[  153.288526][ T7401] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.330993][ T7397] autofs4:pid:7397:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.768), cmd(0xc0189375)
[  153.331029][ T7397] autofs4:pid:7397:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375)
[  153.594223][ T4708] Bluetooth: hci2: command 0x0406 tx timeout
[  153.624618][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.704252][ T7430] binder: 7426:7430 tried to acquire reference to desc 0, got 1 instead
[  153.719858][ T7430] binder: 7426:7430 got transaction with invalid offsets ptr
[  153.719922][ T7430] binder: 7426:7430 transaction call to 7426:0 failed 47/29201/-22, code 0 size 120-24 line 3738
[  153.722591][   T26] binder: undelivered TRANSACTION_ERROR: 29201
[  153.785668][ T7432] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.579'.
[  153.918356][ T7441] ipt_REJECT: TCP_RESET invalid for non-tcp
[  153.931621][ T7441] loop2: detected capacity change from 0 to 256
[  154.023598][ T7447] loop0: detected capacity change from 0 to 512
[  154.032727][ T7445] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  154.032747][ T7445] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  154.033507][ T7445] vhci_hcd vhci_hcd.0: Device attached
[  154.040180][ T7445] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  154.062833][ T7445] loop5: detected capacity change from 0 to 8192
[  154.064080][ T7445] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  154.087914][ T7447] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.277491][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.283043][   T26] usb 12-1: new low-speed USB device number 2 using vhci_hcd
[  154.399994][ T7465] random: crng reseeded on system resumption
[  154.511327][ T7472] binder: BINDER_SET_CONTEXT_MGR already set
[  154.514162][ T7472] binder: 7470:7472 ioctl 4018620d 20000040 returned -16
[  154.515875][ T7472] binder: tried to use weak ref as strong ref
[  154.518853][ T7472] binder: 7470:7472 Acquire 1 refcount change on invalid ref 0 ret -22
[  154.523027][ T7472] binder: 7470:7472 got transaction to invalid handle, 1
[  154.523064][ T7472] binder: 7470:7472 cannot find target node
[  154.523086][ T7472] binder: 7470:7472 transaction call to 0:0 failed 50/29201/-22, code 0 size 120-24 line 3236
[  154.523976][ T4381] binder: undelivered TRANSACTION_ERROR: 29201
[  154.636260][ T7475] netlink: 8 bytes leftover after parsing attributes in process `syz.7.600'.
[  154.639420][ T7477] binder: 7476:7477 tried to acquire reference to desc 0, got 1 instead
[  154.641437][ T7477] binder: 7476:7477 got transaction with invalid parent offset
[  154.651269][ T7477] binder: 7477:7476 failed to fixup parent
[  154.651356][ T7477] binder: 7476:7477 transaction call to 7476:0 failed 55/29201/-22, code 0 size 120-24 line 3702
[  154.652626][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  154.786086][ T7448] vhci_hcd: connection reset by peer
[  154.794387][   T15] vhci_hcd vhci_hcd.5: stop threads
[  154.794809][   T15] vhci_hcd vhci_hcd.5: release socket
[  154.795257][   T15] vhci_hcd vhci_hcd.5: disconnect device
[  154.991343][ T7488] vlan2: entered allmulticast mode
[  154.991383][ T7488] virt_wifi0: entered allmulticast mode
[  155.317223][ T7502] netlink: 'syz.0.609': attribute type 298 has an invalid length.
[  155.455463][ T7509] process 'syz.0.613' launched './file2' with NULL argv: empty string added
[  155.484593][ T7509] netlink: 20 bytes leftover after parsing attributes in process `syz.0.613'.
[  155.486526][ T7509] netlink: 24 bytes leftover after parsing attributes in process `syz.0.613'.
[  155.494891][ T7513] netlink: 12 bytes leftover after parsing attributes in process `syz.5.611'.
[  155.522062][ T3388] lo speed is unknown, defaulting to 1000
[  155.911008][ T7542] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  155.915384][ T7542] syzkaller0: entered promiscuous mode
[  155.915417][ T7542] syzkaller0: entered allmulticast mode
[  156.059662][ T7548] set_capacity_and_notify: 1 callbacks suppressed
[  156.059704][ T7548] loop2: detected capacity change from 0 to 512
[  156.072475][ T7548] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.628: inode has both inline data and extents flags
[  156.072509][ T7548] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  156.075320][ T7548] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.628: couldn't read orphan inode 15 (err -117)
[  156.075338][ T7548] loop2: lost filesystem error report for type 5 error -117
[  156.076668][ T7548] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.103419][ T6099] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.130672][ T7551] __nla_validate_parse: 3 callbacks suppressed
[  156.136463][ T7551] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.629'.
[  156.257474][ T7554] netlink: 20 bytes leftover after parsing attributes in process `syz.2.631'.
[  156.259225][ T7554] netlink: 24 bytes leftover after parsing attributes in process `syz.2.631'.
[  156.540555][ T7577] netlink: 60 bytes leftover after parsing attributes in process `syz.5.638'.
[  156.612696][ T7579] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  156.630527][ T7579] syzkaller0: entered promiscuous mode
[  156.630563][ T7579] syzkaller0: entered allmulticast mode
[  156.636075][ T7579] tipc: Started in network mode
[  156.636110][ T7579] tipc: Node identity c6ccd5574c0f, cluster identity 4711
[  156.637966][ T7579] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  156.638790][ T7583] loop0: detected capacity change from 0 to 512
[  156.650413][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  156.650602][   T30] audit: type=1326 audit(156.640:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7580 comm="syz.5.640" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8977aa8 code=0x0
[  156.664329][ T7578] tipc: Resetting bearer <eth:syzkaller0>
[  156.668487][ T7583] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  156.670775][ T7583] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.641: Invalid block bitmap block 0 in block_group 0
[  156.670820][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.671276][ T7583] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  156.671290][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.671398][ T7583] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.641: attempt to clear invalid blocks 983261 len 1
[  156.671411][ T7583] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  156.671543][ T7583] EXT4-fs error (device loop0): __ext4_get_inode_loc:4885: comm syz.0.641: Invalid inode table block 0 in block_group 0
[  156.671554][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.678933][ T7583] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  156.678959][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.682565][    C0] EXT4-fs (loop0): error count since last fsck: 5
[  156.682582][    C0] EXT4-fs (loop0): initial error at time 156: ext4_read_block_bitmap_nowait:483
[  156.682593][    C0] EXT4-fs (loop0): last error at time 156: ext4_reserve_inode_write:6383
[  156.683194][ T7583] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  156.683220][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.683781][ T7583] EXT4-fs error (device loop0): __ext4_get_inode_loc:4885: comm syz.0.641: Invalid inode table block 0 in block_group 0
[  156.683798][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.683945][ T7583] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6383: Corrupt filesystem
[  156.683954][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.687735][ T7583] EXT4-fs error (device loop0): ext4_truncate:4690: inode #11: comm syz.0.641: mark_inode_dirty error
[  156.687760][ T7583] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  156.698065][ T7583] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  156.698111][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.702589][ T7583] EXT4-fs error (device loop0): __ext4_get_inode_loc:4885: comm syz.0.641: Invalid inode table block 0 in block_group 0
[  156.702632][ T7583] loop0: lost filesystem error report for type 5 error -117
[  156.702841][ T7583] EXT4-fs (loop0): 1 truncate cleaned up
[  156.703273][ T7583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.717619][ T7578] tipc: Disabling bearer <eth:syzkaller0>
[  157.375607][ T7595] binder: 7594:7595 tried to acquire reference to desc 0, got 1 instead
[  157.375839][ T7595] binder: 7594:7595 got transaction with invalid offsets ptr
[  157.375884][ T7595] binder: 7594:7595 transaction call to 7594:0 failed 60/29201/-22, code 202 size 120-24 line 3738
[  157.380857][ T4806] binder: undelivered TRANSACTION_ERROR: 29201
[  157.456743][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.569783][ T7606] FAULT_INJECTION: forcing a failure.
[  157.569783][ T7606] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.569827][ T7606] CPU: 1 UID: 0 PID: 7606 Comm: syz.3.647 Not tainted syzkaller #0 PREEMPT 
[  157.569844][ T7606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  157.569849][ T7606] Call trace:
[  157.569852][ T7606]  show_stack+0x2c/0x3c (C)
[  157.569872][ T7606]  __dump_stack+0x30/0x40
[  157.569883][ T7606]  dump_stack_lvl+0xd8/0x12c
[  157.569892][ T7606]  dump_stack+0x1c/0x28
[  157.569901][ T7606]  should_fail_ex+0x414/0x588
[  157.569911][ T7606]  should_fail+0x14/0x24
[  157.569919][ T7606]  should_fail_usercopy+0x20/0x30
[  157.569927][ T7606]  _inline_copy_from_user+0x40/0x180
[  157.569935][ T7606]  btf_new_fd+0x26c/0xa58
[  157.569944][ T7606]  bpf_btf_load+0x144/0x190
[  157.569954][ T7606]  __sys_bpf+0x450/0x5f0
[  157.569963][ T7606]  __arm64_sys_bpf+0x80/0x98
[  157.569972][ T7606]  invoke_syscall+0x98/0x244
[  157.569982][ T7606]  el0_svc_common+0xe8/0x23c
[  157.569991][ T7606]  do_el0_svc+0x48/0x58
[  157.570000][ T7606]  el0_svc+0x64/0x260
[  157.570008][ T7606]  el0t_64_sync_handler+0x48/0x148
[  157.570016][ T7606]  el0t_64_sync+0x198/0x19c
[  157.683860][ T7612] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.648'.
[  157.795565][ T7620] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  157.801414][ T7620] syzkaller0: entered promiscuous mode
[  157.801465][ T7620] syzkaller0: entered allmulticast mode
[  157.813705][ T7620] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  157.897403][ T7617] tipc: Resetting bearer <eth:syzkaller0>
[  157.907297][ T7626] binder: 7625:7626 tried to acquire reference to desc 0, got 1 instead
[  157.942936][ T7617] tipc: Disabling bearer <eth:syzkaller0>
[  158.193009][ T7641] netlink: 8 bytes leftover after parsing attributes in process `syz.5.659'.
[  158.484371][ T7651] FAULT_INJECTION: forcing a failure.
[  158.484371][ T7651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.484411][ T7651] CPU: 1 UID: 0 PID: 7651 Comm: syz.2.664 Not tainted syzkaller #0 PREEMPT 
[  158.484425][ T7651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  158.484431][ T7651] Call trace:
[  158.484435][ T7651]  show_stack+0x2c/0x3c (C)
[  158.484456][ T7651]  __dump_stack+0x30/0x40
[  158.484467][ T7651]  dump_stack_lvl+0xd8/0x12c
[  158.484476][ T7651]  dump_stack+0x1c/0x28
[  158.484485][ T7651]  should_fail_ex+0x414/0x588
[  158.484495][ T7651]  should_fail+0x14/0x24
[  158.484503][ T7651]  should_fail_usercopy+0x20/0x30
[  158.484511][ T7651]  _inline_copy_from_user+0x40/0x180
[  158.484520][ T7651]  do_sock_getsockopt+0x218/0x790
[  158.484527][ T7651]  __sys_getsockopt+0xfc/0x168
[  158.484533][ T7651]  __arm64_sys_getsockopt+0xb8/0xd4
[  158.484540][ T7651]  invoke_syscall+0x98/0x244
[  158.484550][ T7651]  el0_svc_common+0xe8/0x23c
[  158.484560][ T7651]  do_el0_svc+0x48/0x58
[  158.484569][ T7651]  el0_svc+0x64/0x260
[  158.484577][ T7651]  el0t_64_sync_handler+0x48/0x148
[  158.484584][ T7651]  el0t_64_sync+0x198/0x19c
[  158.726571][ T7659] binder_user_error: 1 callbacks suppressed
[  158.726610][ T7659] binder: 7658:7659 tried to acquire reference to desc 0, got 1 instead
[  158.726847][ T7659] binder: 7658:7659 got transaction with invalid offsets ptr
[  158.726875][ T7659] binder_debug: 2 callbacks suppressed
[  158.726881][ T7659] binder: 7658:7659 transaction call to 7658:0 failed 70/29201/-22, code 16384 size 120-24 line 3738
[  158.727813][  T868] binder: undelivered TRANSACTION_ERROR: 29201
[  158.784021][ T7657] netlink: 12 bytes leftover after parsing attributes in process `syz.2.667'.
[  158.854300][ T7663] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  158.893272][ T7663] syzkaller0: entered promiscuous mode
[  158.893309][ T7663] syzkaller0: entered allmulticast mode
[  158.894519][ T7663] tipc: Started in network mode
[  158.894545][ T7663] tipc: Node identity 46442df802d6, cluster identity 4711
[  158.894661][ T7663] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  158.898418][ T7662] tipc: Resetting bearer <eth:syzkaller0>
[  158.933065][ T7662] tipc: Disabling bearer <eth:syzkaller0>
[  159.059769][ T7667] loop2: detected capacity change from 0 to 8192
[  159.249953][ T7673] netlink: 4 bytes leftover after parsing attributes in process `syz.7.674'.
[  159.266412][ T7682] FAULT_INJECTION: forcing a failure.
[  159.266412][ T7682] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  159.266446][ T7682] CPU: 1 UID: 0 PID: 7682 Comm: syz.3.676 Not tainted syzkaller #0 PREEMPT 
[  159.266457][ T7682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  159.266463][ T7682] Call trace:
[  159.266466][ T7682]  show_stack+0x2c/0x3c (C)
[  159.266484][ T7682]  __dump_stack+0x30/0x40
[  159.266494][ T7682]  dump_stack_lvl+0xd8/0x12c
[  159.266504][ T7682]  dump_stack+0x1c/0x28
[  159.266513][ T7682]  should_fail_ex+0x414/0x588
[  159.266523][ T7682]  should_fail+0x14/0x24
[  159.266531][ T7682]  should_fail_usercopy+0x20/0x30
[  159.266539][ T7682]  vsock_connectible_getsockopt+0x2d8/0x544
[  159.266550][ T7682]  do_sock_getsockopt+0x354/0x790
[  159.266558][ T7682]  __sys_getsockopt+0xfc/0x168
[  159.266565][ T7682]  __arm64_sys_getsockopt+0xb8/0xd4
[  159.266572][ T7682]  invoke_syscall+0x98/0x244
[  159.266582][ T7682]  el0_svc_common+0xe8/0x23c
[  159.266591][ T7682]  do_el0_svc+0x48/0x58
[  159.266600][ T7682]  el0_svc+0x64/0x260
[  159.266607][ T7682]  el0t_64_sync_handler+0x48/0x148
[  159.266614][ T7682]  el0t_64_sync+0x198/0x19c
[  159.390632][ T7661] netlink: 12 bytes leftover after parsing attributes in process `syz.0.669'.
[  159.415668][ T7661] netlink: 12 bytes leftover after parsing attributes in process `syz.0.669'.
[  159.415790][ T1401] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  159.415904][ T1401] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  159.415931][ T1401] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  159.415948][ T1401] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  159.423302][   T26] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  159.428837][ T7661] loop0: detected capacity change from 0 to 512
[  159.476336][ T7661] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.669: casefold flag without casefold feature
[  159.476376][ T7661] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  159.476551][ T7661] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.669: couldn't read orphan inode 15 (err -117)
[  159.477127][ T7661] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.480346][ T7689] loop2: detected capacity change from 0 to 512
[  159.513262][ T7689] EXT4-fs: Ignoring removed i_version option
[  159.513287][ T7689] EXT4-fs: Ignoring removed oldalloc option
[  159.523874][ T7689] EXT4-fs (loop2): Test dummy encryption mode enabled
[  159.525343][ T7689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.848276][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.957550][ T6099] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.006212][ T7701] loop7: detected capacity change from 0 to 512
[  160.035688][ T7701] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  160.060027][ T7701] EXT4-fs error (device loop7): ext4_quota_enable:7225: inode #4: comm syz.7.682: unexpected EA_INODE flag
[  160.060068][ T7701] loop7: lost file I/O error report for ino 4 type 5 pos 0x0 len 0x0 error -117
[  160.060279][ T7701] EXT4-fs error (device loop7): ext4_quota_enable:7228: comm syz.7.682: Bad quota inode: 4, type: 1
[  160.060401][ T7701] EXT4-fs warning (device loop7): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  160.061887][ T7701] EXT4-fs (loop7): mount failed
[  160.062561][    C1] EXT4-fs (loop7): error count since last fsck: 2
[  160.062575][    C1] EXT4-fs (loop7): initial error at time 160: ext4_quota_enable:7225: inode 4
[  160.062592][    C1] EXT4-fs (loop7): last error at time 160: ext4_quota_enable:7228
[  160.307228][ T7712] loop2: detected capacity change from 0 to 512
[  160.309223][ T7712] EXT4-fs: Ignoring removed orlov option
[  160.350308][ T7712] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  160.354720][ T7712] EXT4-fs error (device loop2): ext4_ext_check_inode:521: inode #16: comm syz.2.686: pblk 0 bad header/extent: invalid magic - magic 0, entries 0, max 28(0), depth 0(0)
[  160.354764][ T7712] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  160.354942][ T7712] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.686: couldn't read orphan inode 16 (err -117)
[  160.355060][ T7712] EXT4-fs (loop2): 1 orphan inode deleted
[  160.355521][ T7712] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.416706][ T6099] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.712215][   T30] audit: type=1326 audit(160.700:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7728 comm="syz.2.692" exe="/root/ci-upstream-gce-arm64/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff95b77aa8 code=0x0
[  161.330326][ T7744] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  161.335223][ T7744] syzkaller0: entered promiscuous mode
[  161.335255][ T7744] syzkaller0: entered allmulticast mode
[  161.338477][ T7744] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  161.340334][ T7743] tipc: Resetting bearer <eth:syzkaller0>
[  161.390373][ T7743] tipc: Disabling bearer <eth:syzkaller0>
[  161.749248][ T7753] lo speed is unknown, defaulting to 1000
[  161.749750][ T7753] lo speed is unknown, defaulting to 1000
[  161.749995][ T7753] lo speed is unknown, defaulting to 1000
[  161.789731][ T7755] binder: 7754:7755 tried to acquire reference to desc 0, got 1 instead
[  161.789990][ T7755] binder: 7754:7755 got transaction with invalid offsets ptr
[  161.790019][ T7755] binder: 7754:7755 transaction call to 7754:0 failed 75/29201/-22, code 65520 size 120-24 line 3738
[  161.792752][ T4813] binder: undelivered TRANSACTION_ERROR: 29201
[  161.875083][ T7757] loop3: detected capacity change from 0 to 512
[  161.889561][ T7757] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.947637][ T7757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.091310][ T7753] infiniband s
z1: set active
[  162.091351][ T7753] infiniband s
z1: added lo
[  162.091777][  T868] lo speed is unknown, defaulting to 1000
[  162.117483][ T7753] RDS/IB: s
z1: added
[  162.117529][ T7753] smc: adding ib device s
z1 with port count 1
[  162.117556][ T7753] smc:    ib device s
z1 port 1 has no pnetid
[  162.117798][ T7753] lo speed is unknown, defaulting to 1000
[  162.118943][ T3388] lo speed is unknown, defaulting to 1000
[  162.225459][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.229925][ T7765] __nla_validate_parse: 2 callbacks suppressed
[  162.229946][ T7765] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.705'.
[  162.463834][ T7753] lo speed is unknown, defaulting to 1000
[  162.645546][ T7753] lo speed is unknown, defaulting to 1000
[  162.804583][ T7753] lo speed is unknown, defaulting to 1000
[  163.024487][ T7753] lo speed is unknown, defaulting to 1000
[  163.150719][ T7753] lo speed is unknown, defaulting to 1000
[  163.436007][ T7788] binder: 7787:7788 tried to acquire reference to desc 0, got 1 instead
[  163.436247][ T7788] binder: 7787:7788 got transaction with invalid offsets ptr
[  163.436276][ T7788] binder: 7787:7788 transaction call to 7787:0 failed 80/29201/-22, code 4194304 size 120-24 line 3738
[  163.436499][   T26] binder: undelivered TRANSACTION_ERROR: 29201
[  163.572802][ T7794] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  163.583971][ T7794] syzkaller0: entered promiscuous mode
[  163.584004][ T7794] syzkaller0: entered allmulticast mode
[  163.593239][ T7794] tipc: Started in network mode
[  163.593279][ T7794] tipc: Node identity d28d7bccdf52, cluster identity 4711
[  163.593374][ T7794] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.595706][ T7792] tipc: Resetting bearer <eth:syzkaller0>
[  163.614948][ T7801] binder: 7800:7801 ioctl 4018620d 0 returned -22
[  163.615091][ T7801] binder: 7800:7801 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  163.615295][ T7801] binder: 7801 RLIMIT_NICE not set
[  163.615439][ T7801] binder: 7800:7801 ioctl c0306201 20000240 returned -11
[  163.627236][ T7792] tipc: Disabling bearer <eth:syzkaller0>
[  163.777612][ T7807] bond0: option mode: unable to set because the bond device has slaves
[  163.940995][ T7815] loop3: detected capacity change from 0 to 128
[  164.858442][ T7823] binder: 7821:7823 tried to acquire reference to desc 0, got 1 instead
[  164.860512][ T7823] binder: 7821:7823 got transaction with invalid offsets ptr
[  164.867575][ T7824] FAULT_INJECTION: forcing a failure.
[  164.867575][ T7824] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.867602][ T7824] CPU: 1 UID: 0 PID: 7824 Comm: syz.0.727 Not tainted syzkaller #0 PREEMPT 
[  164.867615][ T7824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  164.867622][ T7824] Call trace:
[  164.867625][ T7824]  show_stack+0x2c/0x3c (C)
[  164.867645][ T7824]  __dump_stack+0x30/0x40
[  164.867656][ T7824]  dump_stack_lvl+0xd8/0x12c
[  164.867666][ T7824]  dump_stack+0x1c/0x28
[  164.867675][ T7824]  should_fail_ex+0x414/0x588
[  164.867685][ T7824]  should_fail+0x14/0x24
[  164.867693][ T7824]  should_fail_usercopy+0x20/0x30
[  164.867702][ T7824]  finalize_log+0xf0/0x23c
[  164.867713][ T7824]  btf_new_fd+0x7fc/0xa58
[  164.867721][ T7824]  bpf_btf_load+0x144/0x190
[  164.867731][ T7824]  __sys_bpf+0x450/0x5f0
[  164.867740][ T7824]  __arm64_sys_bpf+0x80/0x98
[  164.867749][ T7824]  invoke_syscall+0x98/0x244
[  164.867759][ T7824]  el0_svc_common+0xe8/0x23c
[  164.867768][ T7824]  do_el0_svc+0x48/0x58
[  164.867777][ T7824]  el0_svc+0x64/0x260
[  164.867785][ T7824]  el0t_64_sync_handler+0x48/0x148
[  164.867793][ T7824]  el0t_64_sync+0x198/0x19c
[  164.897072][ T7823] binder: 7821:7823 transaction call to 7821:0 failed 85/29201/-22, code 3388997632 size 120-24 line 3738
[  164.902233][ T4813] binder: undelivered TRANSACTION_ERROR: 29201
[  164.971079][ T7826] netlink: 20 bytes leftover after parsing attributes in process `syz.5.728'.
[  164.973218][ T7826] netlink: 20 bytes leftover after parsing attributes in process `syz.5.728'.
[  165.045600][ T1401] kworker/u8:6: attempt to access beyond end of device
[  165.045600][ T1401] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[  165.085432][ T7832] IPVS: set_ctl: invalid protocol: 28719 99.47.115.121:29487
[  165.094033][ T4813] IPVS: starting estimator thread 0...
[  165.153243][ T7839] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  165.188526][ T7839] syzkaller0: entered promiscuous mode
[  165.188563][ T7839] syzkaller0: entered allmulticast mode
[  165.202655][ T7836] IPVS: using max 59 ests per chain, 141600 per kthread
[  165.209634][ T7839] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  165.213982][ T7844] Injecting memory failure for pfn 0x180b0f at process virtual address 0x20f0f000
[  165.247989][ T7838] tipc: Resetting bearer <eth:syzkaller0>
[  165.299193][ T7849] loop0: detected capacity change from 0 to 1024
[  165.316920][ T7844] Memory failure: 0x180b0f: recovery action for dirty LRU page: Recovered
[  165.363635][ T7838] tipc: Disabling bearer <eth:syzkaller0>
[  165.487009][ T7853] FAULT_INJECTION: forcing a failure.
[  165.487009][ T7853] name failslab, interval 1, probability 0, space 0, times 0
[  165.487047][ T7853] CPU: 0 UID: 0 PID: 7853 Comm: syz.3.740 Not tainted syzkaller #0 PREEMPT 
[  165.487060][ T7853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  165.487066][ T7853] Call trace:
[  165.487070][ T7853]  show_stack+0x2c/0x3c (C)
[  165.487088][ T7853]  __dump_stack+0x30/0x40
[  165.487099][ T7853]  dump_stack_lvl+0xd8/0x12c
[  165.487109][ T7853]  dump_stack+0x1c/0x28
[  165.487118][ T7853]  should_fail_ex+0x414/0x588
[  165.487128][ T7853]  should_failslab+0xc4/0x124
[  165.487137][ T7853]  __kmalloc_noprof+0x100/0x6f0
[  165.487146][ T7853]  tomoyo_encode2+0x10c/0x33c
[  165.487156][ T7853]  tomoyo_encode+0x34/0x50
[  165.487166][ T7853]  tomoyo_realpath_from_path+0x478/0x4cc
[  165.487176][ T7853]  tomoyo_path_number_perm+0x1f4/0x514
[  165.487186][ T7853]  tomoyo_file_ioctl+0x2c/0x3c
[  165.487192][ T7853]  security_file_ioctl+0xdc/0x2b0
[  165.487203][ T7853]  __arm64_sys_ioctl+0xa8/0x1c4
[  165.487213][ T7853]  invoke_syscall+0x98/0x244
[  165.487222][ T7853]  el0_svc_common+0xe8/0x23c
[  165.487232][ T7853]  do_el0_svc+0x48/0x58
[  165.487241][ T7853]  el0_svc+0x64/0x260
[  165.487249][ T7853]  el0t_64_sync_handler+0x48/0x148
[  165.487257][ T7853]  el0t_64_sync+0x198/0x19c
[  165.487281][ T7853] ERROR: Out of memory at tomoyo_realpath_from_path.
[  165.539845][ T7849] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.560723][ T7860] FAULT_INJECTION: forcing a failure.
[  165.560723][ T7860] name failslab, interval 1, probability 0, space 0, times 0
[  165.560758][ T7860] CPU: 1 UID: 0 PID: 7860 Comm: syz.5.741 Not tainted syzkaller #0 PREEMPT 
[  165.560773][ T7860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  165.560780][ T7860] Call trace:
[  165.560785][ T7860]  show_stack+0x2c/0x3c (C)
[  165.560805][ T7860]  __dump_stack+0x30/0x40
[  165.560820][ T7860]  dump_stack_lvl+0xd8/0x12c
[  165.560831][ T7860]  dump_stack+0x1c/0x28
[  165.560841][ T7860]  should_fail_ex+0x414/0x588
[  165.560851][ T7860]  should_failslab+0xc4/0x124
[  165.560859][ T7860]  kmem_cache_alloc_lru_noprof+0x94/0x618
[  165.560869][ T7860]  __d_alloc+0x50/0x690
[  165.560876][ T7860]  d_alloc_pseudo+0x2c/0xd8
[  165.560883][ T7860]  alloc_file_pseudo+0xdc/0x1ec
[  165.560891][ T7860]  __anon_inode_getfile+0x118/0x1c4
[  165.560901][ T7860]  __anon_inode_getfd+0x70/0xf4
[  165.560909][ T7860]  anon_inode_getfd+0x44/0x58
[  165.560918][ T7860]  btf_new_fd+0x62c/0xa58
[  165.560927][ T7860]  bpf_btf_load+0x144/0x190
[  165.560937][ T7860]  __sys_bpf+0x450/0x5f0
[  165.560946][ T7860]  __arm64_sys_bpf+0x80/0x98
[  165.560955][ T7860]  invoke_syscall+0x98/0x244
[  165.560965][ T7860]  el0_svc_common+0xe8/0x23c
[  165.560975][ T7860]  do_el0_svc+0x48/0x58
[  165.560984][ T7860]  el0_svc+0x64/0x260
[  165.560992][ T7860]  el0t_64_sync_handler+0x48/0x148
[  165.560999][ T7860]  el0t_64_sync+0x198/0x19c
[  165.562136][ T7859] lo speed is unknown, defaulting to 1000
[  165.562570][ T7859] lo speed is unknown, defaulting to 1000
[  165.605382][ T7849] EXT4-fs error (device loop0): ext4_readdir:265: inode #2: block 16: comm syz.0.738: path /162/file1: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[  165.610202][ T7849] EXT4-fs (loop0): Remounting filesystem read-only
[  165.674255][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.835694][ T7870] loop3: detected capacity change from 0 to 1024
[  165.886265][ T7870] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  165.905699][ T7874] EXT4-fs error (device loop3): ext4_free_blocks:6718: comm syz.3.746: Freeing blocks not in datazone - block = 0, count = 16
[  165.911058][ T7874] EXT4-fs (loop3): Remounting filesystem read-only
[  165.952002][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  166.130879][ T1401] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.201468][ T4708] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  166.206523][ T4708] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  166.208538][ T4708] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  166.210949][ T4708] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  166.212797][ T4708] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  166.296447][ T1401] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.357886][ T7894] netlink: 32 bytes leftover after parsing attributes in process `syz.3.752'.
[  166.372028][ T7894] netlink: 16 bytes leftover after parsing attributes in process `syz.3.752'.
[  166.386896][ T7894] veth1_to_team: entered promiscuous mode
[  166.400249][ T7894] gretap0: entered promiscuous mode
[  166.400528][ T7894] hsr1: entered promiscuous mode
[  166.451874][ T1401] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.502956][ T7906] FAULT_INJECTION: forcing a failure.
[  166.502956][ T7906] name failslab, interval 1, probability 0, space 0, times 0
[  166.502990][ T7906] CPU: 1 UID: 0 PID: 7906 Comm: syz.3.754 Not tainted syzkaller #0 PREEMPT 
[  166.503003][ T7906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  166.503009][ T7906] Call trace:
[  166.503013][ T7906]  show_stack+0x2c/0x3c (C)
[  166.503031][ T7906]  __dump_stack+0x30/0x40
[  166.503042][ T7906]  dump_stack_lvl+0xd8/0x12c
[  166.503052][ T7906]  dump_stack+0x1c/0x28
[  166.503062][ T7906]  should_fail_ex+0x414/0x588
[  166.503072][ T7906]  should_failslab+0xc4/0x124
[  166.503081][ T7906]  kmem_cache_alloc_lru_noprof+0x94/0x618
[  166.503090][ T7906]  __d_alloc+0x50/0x690
[  166.503097][ T7906]  d_alloc_pseudo+0x2c/0xd8
[  166.503104][ T7906]  alloc_file_pseudo+0xdc/0x1ec
[  166.503111][ T7906]  __anon_inode_getfile+0x118/0x1c4
[  166.503121][ T7906]  __anon_inode_getfd+0x70/0xf4
[  166.503129][ T7906]  anon_inode_getfd+0x44/0x58
[  166.503138][ T7906]  btf_new_fd+0x62c/0xa58
[  166.503147][ T7906]  bpf_btf_load+0x144/0x190
[  166.503157][ T7906]  __sys_bpf+0x450/0x5f0
[  166.503166][ T7906]  __arm64_sys_bpf+0x80/0x98
[  166.503175][ T7906]  invoke_syscall+0x98/0x244
[  166.503185][ T7906]  el0_svc_common+0xe8/0x23c
[  166.503194][ T7906]  do_el0_svc+0x48/0x58
[  166.503203][ T7906]  el0_svc+0x64/0x260
[  166.503211][ T7906]  el0t_64_sync_handler+0x48/0x148
[  166.503218][ T7906]  el0t_64_sync+0x198/0x19c
[  166.607311][ T1401] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.662466][ T7885] lo speed is unknown, defaulting to 1000
[  166.689471][ T7885] lo speed is unknown, defaulting to 1000
[  166.823117][ T7926] binder: BINDER_SET_CONTEXT_MGR already set
[  166.824549][ T7926] binder: 7924:7926 ioctl 4018620d 20000040 returned -16
[  166.832869][ T7926] binder: tried to use weak ref as strong ref
[  166.834129][ T7926] binder: 7924:7926 Acquire 1 refcount change on invalid ref 0 ret -22
[  166.836224][ T7926] binder: 7924:7926 got transaction to invalid handle, 1
[  166.837594][ T7926] binder: 7924:7926 cannot find target node
[  166.838777][ T7926] binder: 7924:7926 transaction call to 0:0 failed 88/29201/-22, code 4043309055 size 120-24 line 3236
[  166.842627][ T4813] binder: undelivered TRANSACTION_ERROR: 29201
[  166.887843][ T7922] netlink: 4 bytes leftover after parsing attributes in process `syz.7.758'.
[  167.242754][ T1401] bridge_slave_1: left allmulticast mode
[  167.242792][ T1401] bridge_slave_1: left promiscuous mode
[  167.242913][ T1401] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.248847][ T1401] bridge_slave_0: left allmulticast mode
[  167.248871][ T1401] bridge_slave_0: left promiscuous mode
[  167.248947][ T1401] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.431782][ T1401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.474617][ T1401] bond0 (unregistering): (slave 
c
@0Ù): Releasing backup interface
[  167.515615][ T1401] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  167.568861][ T1401] bond0 (unregistering): Released all slaves
[  167.579651][ T7930] lo speed is unknown, defaulting to 1000
[  167.580104][ T7930] lo speed is unknown, defaulting to 1000
[  167.617958][ T1401] tipc: Left network mode
[  167.985644][ T7864] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.743'.
[  168.092063][ T1401] hsr_slave_0: left promiscuous mode
[  168.094090][ T1401] hsr_slave_1: left promiscuous mode
[  168.095397][ T1401] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.096893][ T1401] batman_adv: batadv0: Removing interface: batadv_slave_0
[  168.098729][ T1401] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.100164][ T1401] batman_adv: batadv0: Removing interface: batadv_slave_1
[  168.105556][ T1401] veth1_macvtap: left promiscuous mode
[  168.106658][ T1401] veth0_macvtap: left promiscuous mode
[  168.107773][ T1401] veth1_vlan: left promiscuous mode
[  168.108811][ T1401] veth0_vlan: left promiscuous mode
[  168.242862][   T50] Bluetooth: hci4: command tx timeout
[  168.254898][ T7975] netlink: 8 bytes leftover after parsing attributes in process `syz.5.767'.
[  168.311456][ T1401] team0 (unregistering): Port device team_slave_1 removed
[  168.327127][ T1401] team0 (unregistering): Port device team_slave_0 removed
[  168.479924][ T7969] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  168.482369][ T4394] 8021q: adding VLAN 0 to HW filter on device eth12
[  168.482658][ T7973] syzkaller0: entered promiscuous mode
[  168.482673][ T7973] syzkaller0: entered allmulticast mode
[  168.483361][ T7976] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  168.490992][ T7960] tipc: Resetting bearer <eth:syzkaller0>
[  168.503896][ T7960] tipc: Disabling bearer <eth:syzkaller0>
[  168.585730][ T7885] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.587043][ T7885] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.587170][ T7885] bridge_slave_0: entered allmulticast mode
[  168.587645][ T7885] bridge_slave_0: entered promiscuous mode
[  168.599806][ T7885] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.609402][ T7885] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.609550][ T7885] bridge_slave_1: entered allmulticast mode
[  168.610030][ T7885] bridge_slave_1: entered promiscuous mode
[  168.661673][ T7885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.673826][ T7885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.703473][ T7885] team0: Port device team_slave_0 added
[  168.704369][ T7885] team0: Port device team_slave_1 added
[  168.727743][ T7885] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.727779][ T7885] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  168.727793][ T7885] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  168.728342][ T7885] batman_adv: batadv0: Adding interface: batadv_slave_1
[  168.728350][ T7885] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  168.728367][ T7885] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  168.823046][ T7885] hsr_slave_0: entered promiscuous mode
[  168.823439][ T7885] hsr_slave_1: entered promiscuous mode
[  168.823641][ T7885] debugfs: 'hsr0' already exists in 'hsr'
[  168.823652][ T7885] Cannot create hsr debugfs directory
[  169.175920][ T4394] 8021q: adding VLAN 0 to HW filter on device eth13
[  169.272290][  T868] lo speed is unknown, defaulting to 1000
[  169.275282][ T8013] netlink: 4 bytes leftover after parsing attributes in process `syz.0.773'.
[  169.516322][ T8031] loop7: detected capacity change from 0 to 1024
[  169.521192][ T8031] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  169.547236][ T8031] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.588589][ T7885] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  169.598509][ T7885] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  169.598838][ T7885] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  169.602518][ T7885] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  169.612887][ T7885] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  169.616025][ T7885] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  169.617966][ T7885] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  169.622132][ T7885] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  169.625103][ T6759] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.743515][ T7885] 8021q: adding VLAN 0 to HW filter on device bond0
[  169.769377][ T7885] 8021q: adding VLAN 0 to HW filter on device team0
[  169.780596][ T4914] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.780659][ T4914] bridge0: port 1(bridge_slave_0) entered forwarding state
[  169.794039][ T4914] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.794081][ T4914] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.029254][ T8076] loop5: detected capacity change from 0 to 1024
[  170.035030][ T8076] EXT4-fs: Ignoring removed orlov option
[  170.041266][ T8076] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  170.079414][ T8076] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.190462][ T7885] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.200700][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.249619][ T7885] veth0_vlan: entered promiscuous mode
[  170.266144][ T7885] veth1_vlan: entered promiscuous mode
[  170.279967][ T8104] netlink: 160 bytes leftover after parsing attributes in process `syz.5.786'.
[  170.305134][ T7885] veth0_macvtap: entered promiscuous mode
[  170.307554][ T7885] veth1_macvtap: entered promiscuous mode
[  170.314192][ T7885] batman_adv: batadv0: Interface activated: batadv_slave_0
[  170.321982][ T7885] batman_adv: batadv0: Interface activated: batadv_slave_1
[  170.322717][   T50] Bluetooth: hci4: command tx timeout
[  170.329590][ T4914] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.329706][ T4914] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.329737][ T4914] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.329753][ T4914] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.375037][  T142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.375065][  T142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.386580][  T258] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.386613][  T258] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.609291][ T8128] loop2: detected capacity change from 0 to 8
[  170.734251][ T8138] loop5: detected capacity change from 0 to 512
[  170.735713][ T8138] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  170.746528][ T8138] EXT4-fs error (device loop5): ext4_orphan_get:1423: comm syz.5.796: bad orphan inode 131083
[  170.746566][ T8138] fserror_report: 3 callbacks suppressed
[  170.746576][ T8138] loop5: lost filesystem error report for type 5 error -117
[  170.752898][ T8138] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.767887][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.822175][ T8144] syzkaller0: entered promiscuous mode
[  170.822214][ T8144] syzkaller0: entered allmulticast mode
[  170.831808][ T8146] loop2: detected capacity change from 0 to 512
[  170.840600][ T8146] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  170.858743][ T8146] EXT4-fs (loop2): 1 truncate cleaned up
[  170.859219][ T8146] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.889448][ T7885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.983618][ T8156] netlink: 4 bytes leftover after parsing attributes in process `syz.0.804'.
[  171.022256][ T8158] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  171.029401][ T8158] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  171.475063][ T8172] loop2: detected capacity change from 0 to 512
[  171.478741][ T8172] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  171.493004][ T8172] EXT4-fs (loop2): orphan cleanup on readonly fs
[  171.497321][ T8172] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  171.499773][ T8172] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  171.501858][ T8172] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.809: Failed to acquire dquot type 1
[  171.504521][ T8172] loop2: lost filesystem error report for type 5 error -117
[  171.509567][ T8172] EXT4-fs (loop2): 1 truncate cleaned up
[  171.512908][    C1] EXT4-fs (loop2): error count since last fsck: 1
[  171.512932][    C1] EXT4-fs (loop2): last error at time 171: ext4_acquire_dquot:7034
[  171.516290][ T8172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  171.992649][ T8197] loop3: detected capacity change from 0 to 128
[  171.998393][ T8197] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  172.008241][ T8197] EXT4-fs warning (device loop3): ext4_group_extend:1861: can't shrink FS - resize aborted
[  172.019966][ T7069] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  172.279591][ T8208] loop3: detected capacity change from 0 to 4096
[  172.292995][ T8208] EXT4-fs: Ignoring removed orlov option
[  172.295952][ T8208] EXT4-fs (loop3): Test dummy encryption mode enabled
[  172.300322][ T8208] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.319893][ T8186] syzkaller0: entered promiscuous mode
[  172.319927][ T8186] syzkaller0: entered allmulticast mode
[  172.395107][ T8215] fuse: Bad value for 'fd'
[  172.402759][   T50] Bluetooth: hci4: command tx timeout
[  172.431653][ T7885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.434633][ T8213] loop0: detected capacity change from 0 to 32768
[  172.491820][ T8213]  loop0: p1
[  172.508580][ T8226] loop2: detected capacity change from 0 to 512
[  172.520873][ T8226] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  172.522503][ T8226] EXT4-fs (loop2): 1 truncate cleaned up
[  172.523010][ T8226] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.557774][ T7885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.570793][ T8231] Filesystem uses "lzo" compression. This is not supported
[  172.687522][ T8241] netlink: 12 bytes leftover after parsing attributes in process `syz.0.833'.
[  173.027241][ T8264] netlink: 12 bytes leftover after parsing attributes in process `syz.5.843'.
[  173.099963][ T7072] udevd[7072]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  173.121657][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.142264][ T8278] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.144533][ T8278] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.200250][ T8282] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.200459][ T8282] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.289379][ T8290] binder: 8289:8290 unknown command 0
[  173.290462][ T8290] binder: 8289:8290 ioctl c0306201 20000480 returned -22
[  173.324908][ T8292] syzkaller0: entered promiscuous mode
[  173.326128][ T8292] syzkaller0: entered allmulticast mode
[  173.460238][ T8294] netlink: 20 bytes leftover after parsing attributes in process `syz.5.856'.
[  173.472637][ T4381] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  173.625193][ T4381] usb 1-1: unable to get BOS descriptor or descriptor too short
[  173.626600][ T4381] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 128, changing to 7
[  173.628078][ T4381] usb 1-1: New USB device found, idVendor=04fa, idProduct=4201, bcdDevice= 0.40
[  173.628091][ T4381] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.628101][ T4381] usb 1-1: Product: syz
[  173.628107][ T4381] usb 1-1: Manufacturer: syz
[  173.628173][ T4381] usb 1-1: SerialNumber: syz
[  173.669086][ T8299] ext4: Unknown parameter 'seclabel'
[  173.676119][ T8299] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.677150][ T8299] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.756804][ T8306] EXT4-fs (loop5): 1 truncate cleaned up
[  173.758566][ T8306] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.782775][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.870871][ T4381] usb 1-1: USB disconnect, device number 2
[  174.121585][ T8364] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  174.146830][ T8364] syz.7.868 (pid 8364) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  174.148518][ T8370] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  174.149257][ T8370] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.175275][ T6759] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  174.387687][ T8401] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.875: inode has both inline data and extents flags
[  174.387733][ T8401] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  174.388210][ T8401] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.875: couldn't read orphan inode 15 (err -117)
[  174.388234][ T8401] loop2: lost filesystem error report for type 5 error -117
[  174.388823][ T8401] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.437157][ T7885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.482833][   T50] Bluetooth: hci4: command tx timeout
[  174.491855][ T8419] binder: 8418:8419 tried to acquire reference to desc 0, got 1 instead
[  174.494632][ T8419] binder: 8418:8419 BC_FREE_BUFFER matched unreturned or currently freeing buffer at offset 0
[  174.494666][ T8419] binder: tried to use weak ref as strong ref
[  174.494687][ T8419] binder: 8418:8419 Release 1 refcount change on invalid ref 1 ret -22
[  174.496004][ T4381] binder: release 8418:8419 transaction 95 out, still active
[  174.496020][ T4381] binder: undelivered TRANSACTION_COMPLETE
[  174.514261][ T4381] binder: send failed reply for transaction 95, target dead
[  174.670462][ T8442] set_capacity_and_notify: 7 callbacks suppressed
[  174.674652][ T8442] loop3: detected capacity change from 0 to 2048
[  174.680127][ T8438] loop2: detected capacity change from 0 to 8192
[  174.683553][ T8438] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  174.692755][   T11] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  174.714773][ T8442] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.720745][ T8448] netlink: 136 bytes leftover after parsing attributes in process `syz.5.885'.
[  174.726569][ T8448] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  174.754090][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.791488][ T8454] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  174.792058][ T8454] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.865289][   T11] usb 1-1: config 160 has an invalid interface number: 200 but max is 0
[  174.865324][   T11] usb 1-1: config 160 has no interface number 0
[  174.866435][   T11] usb 1-1: config 160 interface 200 has no altsetting 0
[  174.867945][   T11] usb 1-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b
[  174.867957][   T11] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.867966][   T11] usb 1-1: Product: syz
[  174.867973][   T11] usb 1-1: Manufacturer: syz
[  174.867979][   T11] usb 1-1: SerialNumber: syz
[  175.079764][   T11] usb 1-1: USB disconnect, device number 3
[  175.161679][ T8469] Bluetooth: MGMT ver 1.23
[  175.180061][ T8469] loop5: detected capacity change from 0 to 512
[  175.353461][ T8469] EXT4-fs error (device loop5): ext4_ext_check_inode:521: inode #3: comm syz.5.893: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 3, max 2(4), depth 0(0)
[  175.353506][ T8469] loop5: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  175.354407][ T8469] EXT4-fs error (device loop5): ext4_quota_enable:7228: comm syz.5.893: Bad quota inode: 3, type: 0
[  175.354442][ T8469] loop5: lost filesystem error report for type 5 error -117
[  175.354630][ T8469] EXT4-fs warning (device loop5): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  175.354828][ T8469] EXT4-fs (loop5): mount failed
[  175.402029][ T8475] loop2: detected capacity change from 0 to 512
[  175.404769][ T8475] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  175.409349][ T8475] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.895: bad orphan inode 117440527
[  175.411732][ T8475] loop2: lost filesystem error report for type 5 error -117
[  175.412524][ T8475] EXT4-fs (loop2): Remounting filesystem read-only
[  175.412557][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  175.412584][    C0] EXT4-fs (loop2): initial error at time 175: ext4_orphan_get:1423
[  175.412620][    C0] EXT4-fs (loop2): last error at time 175: ext4_orphan_get:1423
[  175.422350][ T8475] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.437624][ T7885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.699725][ T1401] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.138149][ T8528] 9pnet: p9_errstr2errno: server reported unknown error 00000000
[  177.206769][ T8544] netlink: 'syz.2.923': attribute type 49 has an invalid length.
[  177.266083][ T8551] loop5: detected capacity change from 0 to 512
[  177.266464][ T8551] EXT4-fs: Ignoring removed nobh option
[  177.283492][ T8551] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  177.285522][ T8551] EXT4-fs (loop5): can't mount with data_err=abort, fs mounted w/o journal
[  177.305114][ T8555] netlink: 'syz.0.929': attribute type 13 has an invalid length.
[  177.313556][ T8551] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  177.315558][ T8551] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  177.427427][ T8575] loop5: detected capacity change from 0 to 1024
[  177.429612][ T8575] EXT4-fs: Ignoring removed orlov option
[  177.456668][ T8575] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.510872][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.425966][ T8607] loop3: detected capacity change from 0 to 512
[  178.651317][ T8607] EXT4-fs error (device loop3): ext4_ext_check_inode:521: inode #3: comm syz.3.945: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 3, max 2(4), depth 0(0)
[  178.651476][ T8607] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  178.652553][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  178.652582][    C1] EXT4-fs (loop3): initial error at time 178: ext4_ext_check_inode:521: inode 3
[  178.652624][    C1] EXT4-fs (loop3): last error at time 178: ext4_ext_check_inode:521: inode 3
[  178.653937][ T8607] EXT4-fs error (device loop3): ext4_quota_enable:7228: comm syz.3.945: Bad quota inode: 3, type: 0
[  178.654019][ T8607] loop3: lost filesystem error report for type 5 error -117
[  178.655279][ T8607] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  178.657174][ T8607] EXT4-fs (loop3): mount failed
[  178.877305][ T8637] loop5: detected capacity change from 0 to 512
[  178.879340][ T8637] EXT4-fs: Ignoring removed i_version option
[  178.881784][ T8637] EXT4-fs: Ignoring removed nobh option
[  178.884457][ T8637] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  178.887903][ T8637] EXT4-fs (loop5): 1 truncate cleaned up
[  178.890768][ T8637] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.908751][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.914935][ T4806] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  179.289683][ T4806] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 248, changing to 11
[  179.289734][ T4806] usb 1-1: config 1 interface 1 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 19
[  179.301811][ T4806] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  179.301851][ T4806] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.303445][ T4806] usb 1-1: Product: syz
[  179.303459][ T4806] usb 1-1: Manufacturer: syz
[  179.303468][ T4806] usb 1-1: SerialNumber: syz
[  179.749341][ T8662] loop7: detected capacity change from 0 to 256
[  179.770614][ T8662] FAT-fs (loop7): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  179.774125][ T8662] FAT-fs (loop7): Filesystem has been set read-only
[  179.776602][ T8662] FAT-fs (loop7): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  179.779035][ T8662] FAT-fs (loop7): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  179.810783][ T8670] loop2: detected capacity change from 0 to 128
[  179.811307][ T8670] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  179.820777][ T8670] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  179.855107][  T142] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  179.911796][ T8675] loop3: detected capacity change from 0 to 128
[  179.923255][ T8675] EXT4-fs (loop3): Test dummy encryption mode enabled
[  179.929084][ T8675] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.033775][ T8679] loop7: detected capacity change from 0 to 512
[  180.197809][ T8679] EXT4-fs error (device loop7): ext4_ext_check_inode:521: inode #3: comm syz.7.972: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 3, max 2(4), depth 0(0)
[  180.197859][ T8679] loop7: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  180.201571][ T8679] EXT4-fs error (device loop7): ext4_quota_enable:7228: comm syz.7.972: Bad quota inode: 3, type: 0
[  180.201587][ T8679] loop7: lost filesystem error report for type 5 error -117
[  180.201757][ T8679] EXT4-fs warning (device loop7): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  180.201977][ T8679] EXT4-fs (loop7): mount failed
[  180.203969][    C1] EXT4-fs (loop7): error count since last fsck: 2
[  180.203982][    C1] EXT4-fs (loop7): initial error at time 180: ext4_ext_check_inode:521: inode 3
[  180.204005][    C1] EXT4-fs (loop7): last error at time 180: ext4_quota_enable:7228
[  180.242253][ T7069] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.261328][ T8685] loop5: detected capacity change from 0 to 256
[  180.332764][ T8691] netlink: 'syz.2.979': attribute type 11 has an invalid length.
[  180.379039][  T258] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.379100][  T258] bridge0: port 1(bridge_slave_0) entered forwarding state
[  181.598757][ T4806] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  181.601009][ T4806] cdc_ncm 1-1:1.0: setting rx_max = 16384
[  181.764890][ T8724] x_tables: duplicate underflow at hook 1
[  181.766430][ T8724] loop3: detected capacity change from 0 to 256
[  181.767187][ T8724] FAT-fs (loop3): bogus sectors per cluster 0
[  181.767197][ T8724] FAT-fs (loop3): Can't find a valid FAT filesystem
[  181.797580][ T4806] cdc_ncm 1-1:1.0: setting tx_max = 16384
[  181.893240][ T4806] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  181.903942][ T4806] usb 1-1: USB disconnect, device number 4
[  181.906224][ T4806] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[  182.632082][ T8740] mac80211_hwsim hwsim14 wlan1: left allmulticast mode
[  182.956588][ T8759] loop7: detected capacity change from 0 to 256
[  183.271738][ T8765] netlink: 'syz.7.1008': attribute type 11 has an invalid length.
[  183.289012][ T8768] fuse: Unknown parameter '00000000000000000000'
[  183.290791][ T8766] loop3: detected capacity change from 0 to 512
[  183.291182][ T8766] ext4: Unknown parameter 'noblock_validitynodioread_nolock'
[  183.829101][ T8791] loop0: detected capacity change from 0 to 1024
[  183.833953][ T8791] EXT4-fs: Ignoring removed oldalloc option
[  183.833987][ T8791] EXT4-fs: Ignoring removed oldalloc option
[  183.835512][ T8791] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  183.845654][ T8791] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.955432][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.914690][ T8812] loop3: detected capacity change from 0 to 512
[  184.946207][ T8812] EXT4-fs error (device loop3): ext4_ext_check_inode:521: inode #3: comm syz.3.1026: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 3, max 2(4), depth 0(0)
[  184.949981][ T8812] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  184.950537][ T8813] lo speed is unknown, defaulting to 1000
[  184.950955][ T8813] lo speed is unknown, defaulting to 1000
[  184.952558][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  184.952575][    C1] EXT4-fs (loop3): initial error at time 184: ext4_ext_check_inode:521: inode 3
[  184.952610][    C1] EXT4-fs (loop3): last error at time 184: ext4_ext_check_inode:521: inode 3
[  184.965455][ T8812] EXT4-fs error (device loop3): ext4_quota_enable:7228: comm syz.3.1026: Bad quota inode: 3, type: 0
[  184.965494][ T8812] loop3: lost filesystem error report for type 5 error -117
[  184.970431][ T8812] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  184.970697][ T8812] EXT4-fs (loop3): mount failed
[  185.060728][ T8821] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.060950][ T8821] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.072684][ T8828] loop3: detected capacity change from 0 to 256
[  185.077774][ T8828] vfat: Bad value for 'dmask'
[  185.079976][ T8831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.080182][ T8831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  185.192454][ T8840] loop0: detected capacity change from 0 to 512
[  185.473136][ T8840] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1039: inode has both inline data and extents flags
[  185.473174][ T8840] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  185.476143][ T8840] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1039: couldn't read orphan inode 15 (err -117)
[  185.476171][ T8840] loop0: lost filesystem error report for type 5 error -117
[  185.477121][ T8840] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.486425][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.618686][ T8851] loop5: detected capacity change from 0 to 1024
[  185.619284][ T8851] ext4: Unknown parameter 'nouser_xattr'
[  185.627756][ T8851] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1043'.
[  185.631078][ T8851] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1043'.
[  185.686155][ T8856] loop0: detected capacity change from 0 to 128
[  185.731764][ T8858] netem: change failed
[  185.840403][ T8869] loop5: detected capacity change from 0 to 256
[  185.924380][ T8871] loop0: detected capacity change from 0 to 512
[  185.926704][ T8871] ext4: Unknown parameter 'euid'
[  186.687402][ T8876] sit0: entered promiscuous mode
[  186.729181][ T8876] netlink: 'syz.2.1053': attribute type 1 has an invalid length.
[  186.732641][ T8876] netlink: 1 bytes leftover after parsing attributes in process `syz.2.1053'.
[  186.770569][ T8878] loop7: detected capacity change from 0 to 512
[  186.779195][ T8878] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  186.827992][ T8878] EXT4-fs (loop7): 1 truncate cleaned up
[  186.829829][ T8878] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.851365][ T6759] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.922018][ T8886] loop3: detected capacity change from 0 to 8
[  186.931242][ T8886] Filesystem uses "lzo" compression. This is not supported
[  187.010204][ T8889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  187.013560][ T8889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  187.074522][ T8893] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  187.074559][ T8893] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  187.593236][ T1594] ieee802154 phy0 wpan0: encryption failed: -22
[  187.593330][ T1594] ieee802154 phy1 wpan1: encryption failed: -22
[  187.736702][ T8906] input: syz0 as /devices/virtual/input/input9
[  188.044138][ T8911] loop5: detected capacity change from 0 to 512
[  188.131387][ T5825] bridge_slave_1: left allmulticast mode
[  188.133176][ T5825] bridge_slave_1: left promiscuous mode
[  188.135186][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.141520][ T8911] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.152347][ T5825] bridge_slave_0: left allmulticast mode
[  188.152382][ T5825] bridge_slave_0: left promiscuous mode
[  188.152471][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.156237][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.488443][ T8932] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.1073: iget: bad i_size value: 38620345925642
[  188.488491][ T8932] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  188.488773][ T8932] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.1073: couldn't read orphan inode 15 (err -117)
[  188.488794][ T8932] loop5: lost filesystem error report for type 5 error -117
[  188.489432][ T8932] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.539983][ T8936] binder: 8935:8936 tried to acquire reference to desc 0, got 1 instead
[  188.543453][ T8936] binder: 8935:8936 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  188.546677][ T8936] binder: 8936 RLIMIT_NICE not set
[  188.549876][ T8936] binder: 8936 RLIMIT_NICE not set
[  188.560629][ T8936] binder_alloc: 8935: binder_alloc_buf, no vma
[  188.560664][ T8936] binder: cannot allocate buffer: vma cleared, target dead or dying
[  188.560707][ T8936] binder: 8935:8936 transaction call to 8935:8936 failed 113/29189/-3, code 0 size 0-0 line 3393
[  188.560887][ T8936] binder: release 8935:8936 transaction 106 in, still active
[  188.560907][ T8936] binder: send failed reply for transaction 106 to 8935:8936
[  188.560934][ T8936] binder: undelivered TRANSACTION_ERROR: 29189
[  188.573296][ T8936] binder: undelivered TRANSACTION_COMPLETE
[  188.573327][ T8936] binder: undelivered TRANSACTION_ERROR: 29189
[  188.594869][ T8932] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1073: bg 0: block 5: invalid block bitmap
[  188.599889][ T8932] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 696 with error 28
[  188.599934][ T8932] EXT4-fs (loop5): This should not happen!! Data will be lost
[  188.599934][ T8932] 
[  188.599943][ T8932] EXT4-fs (loop5): Total free blocks count 0
[  188.599951][ T8932] EXT4-fs (loop5): Free/Dirty block details
[  188.599960][ T8932] EXT4-fs (loop5): free_blocks=0
[  188.599968][ T8932] EXT4-fs (loop5): dirty_blocks=700
[  188.599975][ T8932] EXT4-fs (loop5): Block reservation details
[  188.599981][ T8932] EXT4-fs (loop5): i_reserved_data_blocks=700
[  188.634855][ T5825] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  188.649604][ T5732] EXT4-fs warning (device loop5): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[  188.652376][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.667432][ T5825] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  188.683596][ T5825] bond0 (unregistering): Released all slaves
[  188.687078][ T8940]  loop3: p1 < > p4 < >
[  188.687107][ T8940] loop3: partition table partially beyond EOD, truncated
[  188.690032][ T8940] loop3: p4 start 42180 is beyond EOD, truncated
[  188.763491][ T7072] udevd[7072]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  188.770226][ T8944] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  188.771157][ T8944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  188.771321][ T8944] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.987802][ T8955] input: syz0 as /devices/virtual/input/input10
[  189.588343][ T8970] Filesystem uses "lzo" compression. This is not supported
[  189.730413][ T8974] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.735579][ T8974] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  189.740405][ T8974] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  189.740676][ T8974] EXT4-fs (loop5): This should not happen!! Data will be lost
[  189.740676][ T8974] 
[  189.740688][ T8974] EXT4-fs (loop5): Total free blocks count 0
[  189.740696][ T8974] EXT4-fs (loop5): Free/Dirty block details
[  189.740708][ T8974] EXT4-fs (loop5): free_blocks=2415919104
[  189.740718][ T8974] EXT4-fs (loop5): dirty_blocks=64
[  189.740725][ T8974] EXT4-fs (loop5): Block reservation details
[  189.740731][ T8974] EXT4-fs (loop5): i_reserved_data_blocks=4
[  189.783306][ T5647] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  189.790394][ T5732] EXT4-fs warning (device loop5): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost
[  189.815866][ T5825] hsr_slave_0: left promiscuous mode
[  189.817265][ T5825] hsr_slave_1: left promiscuous mode
[  189.817543][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  189.817555][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_0
[  189.818732][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  189.818744][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_1
[  189.826237][ T5825] veth1_macvtap: left promiscuous mode
[  189.826279][ T5825] veth0_macvtap: left promiscuous mode
[  189.826389][ T5825] veth1_vlan: left promiscuous mode
[  189.826415][ T5825] veth0_vlan: left promiscuous mode
[  190.019350][ T5825] team0 (unregistering): Port device team_slave_1 removed
[  190.025941][ T5825] team0 (unregistering): Port device team_slave_0 removed
[  190.147435][ T8996] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1093'.
[  190.338536][ T9001] set_capacity_and_notify: 4 callbacks suppressed
[  190.340051][ T9001] loop3: detected capacity change from 0 to 512
[  190.360995][ T9001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.439418][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.742491][ T9012] input: syz0 as /devices/virtual/input/input11
[  191.108860][ T9018] TCP: tcp_parse_options: Illegal window scaling value 215 > 14 received
[  191.338761][ T9041] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1115'.
[  191.342490][ T9039] fuse: Bad value for 'fd'
[  191.417269][ T9045] netlink: 312 bytes leftover after parsing attributes in process `syz.3.1116'.
[  191.433981][ T9050] binder: BC_ATTEMPT_ACQUIRE not supported
[  191.434013][ T9050] binder: 9048:9050 ioctl c0306201 20000480 returned -22
[  191.757187][ T9046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1114'.
[  191.809002][ T9064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.809202][ T9064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.850527][ T9066] lo speed is unknown, defaulting to 1000
[  191.852319][ T9066] lo speed is unknown, defaulting to 1000
[  191.975312][ T9075] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.977661][ T9075] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  192.462057][ T9136] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  192.470245][ T9136] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  193.209432][ T9147] lo speed is unknown, defaulting to 1000
[  193.211336][ T9147] lo speed is unknown, defaulting to 1000
[  193.256108][ T9151] loop0: detected capacity change from 0 to 512
[  193.257607][ T9151] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  193.263036][ T9151] EXT4-fs (loop0): 1 truncate cleaned up
[  193.263511][ T9151] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.334513][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.344042][ T9157] binder: BINDER_SET_CONTEXT_MGR already set
[  193.344065][ T9157] binder: 9156:9157 ioctl 4018620d 20004a80 returned -16
[  193.344316][ T9157] binder: 9156:9157 got transaction to invalid handle, 1
[  193.344326][ T9157] binder: 9156:9157 cannot find target node
[  193.344339][ T9157] binder: 9156:9157 transaction call to 0:0 failed 116/29201/-22, code 0 size 72-0 line 3236
[  193.344606][ T9157] binder: 9156:9157 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  193.344618][ T9157] binder: 9157 RLIMIT_NICE not set
[  193.354557][ T9159] loop7: detected capacity change from 0 to 256
[  193.366470][ T9159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  193.366679][ T9159] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  193.391283][ T9161] loop0: detected capacity change from 0 to 128
[  193.403864][ T9161] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  193.421015][ T9161] EXT4-fs (loop0): shut down requested (1)
[  193.422452][ T9161] fscrypt (loop0, inode 12): Error -5 getting encryption context
[  193.455122][ T4711] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  193.709585][ T9184] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1173'.
[  193.710041][ T9184] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.718619][ T9184] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.744566][ T9187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  193.747741][ T9187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  193.857183][ T9203] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1183'.
[  193.918722][ T9214] loop7: detected capacity change from 0 to 512
[  193.942105][ T9214] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.010864][ T6759] EXT4-fs error (device loop7): ext4_lookup:1785: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  194.015894][ T6759] EXT4-fs error (device loop7): ext4_lookup:1785: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  194.016698][ T9230] loop0: detected capacity change from 0 to 512
[  194.017052][ T9230] EXT4-fs: Ignoring removed bh option
[  194.017065][ T9230] EXT4-fs: inline encryption not supported
[  194.024130][ T9230] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  194.036445][ T9230] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1148: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  194.040203][ T9230] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1192: bg 0: block 248: padding at end of block bitmap is not set
[  194.043932][ T9230] loop0: lost filesystem error report for type 5 error -117
[  194.045256][ T9230] Quota error (device loop0): write_blk: dquota write failed
[  194.049257][ T9230] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  194.051899][ T9230] EXT4-fs error (device loop0): ext4_acquire_dquot:7034: comm syz.0.1192: Failed to acquire dquot type 1
[  194.054353][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  194.054366][    C0] EXT4-fs (loop0): last error at time 194: ext4_validate_block_bitmap:441
[  194.057573][ T9230] loop0: lost filesystem error report for type 5 error -28
[  194.059799][ T9230] EXT4-fs (loop0): 1 truncate cleaned up
[  194.060282][ T9230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  194.072201][ T7312] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.097128][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  194.099890][ T5647] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-5
[  194.099930][ T5647] EXT4-fs error (device loop0): ext4_release_dquot:7070: comm kworker/u8:10: Failed to release dquot type 1
[  194.099943][ T5647] loop0: lost filesystem error report for type 5 error -117
[  194.164042][   T24] binder: undelivered TRANSACTION_ERROR: 29201
[  194.185831][ T9247] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  194.191294][ T9247] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  194.200166][ T9249] syzkaller0: entered promiscuous mode
[  194.200194][ T9249] syzkaller0: entered allmulticast mode
[  194.380124][ T9269] loop3: detected capacity change from 0 to 512
[  194.394912][ T9269] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #15: comm syz.3.1211: corrupted inode contents
[  194.398904][ T9269] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  194.399769][ T9269] EXT4-fs (loop3): Remounting filesystem read-only
[  194.403320][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  194.403330][    C1] EXT4-fs (loop3): initial error at time 194: ext4_do_update_inode:5690: inode 15
[  194.403346][    C1] EXT4-fs (loop3): last error at time 194: ext4_do_update_inode:5690: inode 15
[  194.410695][ T9269] EXT4-fs warning (device loop3): ext4_evict_inode:287: xattr delete (err -30)
[  194.410810][ T9269] EXT4-fs (loop3): 1 orphan inode deleted
[  194.411290][ T9269] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.435559][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.444264][ T5825] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.488455][ T4708] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  194.490902][ T4708] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  194.494165][ T4708] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  194.496255][ T4708] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  194.498094][ T4708] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  194.544182][ T5825] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.602746][   T24] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  194.848513][   T24] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  194.848545][   T24] usb 1-1: config 1 has no interface number 0
[  194.848570][   T24] usb 1-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  194.848585][   T24] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[  194.848602][   T24] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 248, changing to 7
[  194.855428][ T5825] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.861703][   T24] usb 1-1: New USB device found, idVendor=0582, idProduct=0114, bcdDevice= 0.40
[  194.861730][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.861752][   T24] usb 1-1: Product: syz
[  194.861763][   T24] usb 1-1: Manufacturer: syz
[  194.861773][   T24] usb 1-1: SerialNumber: syz
[  194.878270][ T9274] lo speed is unknown, defaulting to 1000
[  194.878644][ T9274] lo speed is unknown, defaulting to 1000
[  194.903999][ T5825] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.082473][   T24] usb 1-1: USB disconnect, device number 5
[  195.182725][ T5825] bridge_slave_1: left allmulticast mode
[  195.182762][ T5825] bridge_slave_1: left promiscuous mode
[  195.183628][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.187936][ T5825] bridge_slave_0: left allmulticast mode
[  195.187969][ T5825] bridge_slave_0: left promiscuous mode
[  195.188038][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.348507][ T5825] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  195.377111][ T5825] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  195.383674][ T9315] binder: 9314:9315 tried to acquire reference to desc 0, got 1 instead
[  195.387489][ T5825] bond0 (unregistering): Released all slaves
[  195.390058][ T9315] binder: 9314:9315 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  195.390093][ T9315] binder: 9315 RLIMIT_NICE not set
[  195.390112][ T9315] binder: 9315 RLIMIT_NICE not set
[  195.402751][ T9315] binder: 9315 RLIMIT_NICE not set
[  195.402814][ T9315] binder: 9314:9315 got reply with fd, 3, but target does not allow fds
[  195.402834][ T9315] binder: 9315:9314 translate fd failed
[  195.402872][ T9315] binder: 9314:9315 transaction reply to 9314:9315 failed 128/29201/-1, code 0 size 88-24 line 3578
[  195.402897][ T9315] binder: send failed reply for transaction 121 to 9314:9315
[  195.405874][ T9317] loop5: detected capacity change from 0 to 512
[  195.413298][ T9310] syz_tun: entered allmulticast mode
[  195.414712][ T9308] syz_tun: left allmulticast mode
[  195.427512][ T6989] binder: undelivered TRANSACTION_ERROR: 29190
[  195.428863][ T6989] binder: undelivered TRANSACTION_COMPLETE
[  195.430348][ T6989] binder: undelivered TRANSACTION_ERROR: 29201
[  195.436112][ T9317] EXT4-fs error (device loop5): ext4_orphan_get:1397: inode #15: comm syz.5.1225: iget: bad i_size value: 38620345925642
[  195.436159][ T9317] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  195.436382][ T9317] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.1225: couldn't read orphan inode 15 (err -117)
[  195.436399][ T9317] loop5: lost filesystem error report for type 5 error -117
[  195.436942][ T9317] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.483756][ T9322] loop3: detected capacity change from 0 to 8192
[  195.506422][ T5825] tipc: Left network mode
[  195.513214][ T9274] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.513271][ T9274] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.513363][ T9274] bridge_slave_0: entered allmulticast mode
[  195.513815][ T9274] bridge_slave_0: entered promiscuous mode
[  195.514456][ T9274] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.514475][ T9274] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.514526][ T9274] bridge_slave_1: entered allmulticast mode
[  195.514927][ T9274] bridge_slave_1: entered promiscuous mode
[  195.550950][ T9317] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1225: bg 0: block 5: invalid block bitmap
[  195.551303][ T9317] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1896 with error 28
[  195.551318][ T9317] EXT4-fs (loop5): This should not happen!! Data will be lost
[  195.551318][ T9317] 
[  195.551326][ T9317] EXT4-fs (loop5): Total free blocks count 0
[  195.551333][ T9317] EXT4-fs (loop5): Free/Dirty block details
[  195.551341][ T9317] EXT4-fs (loop5): free_blocks=0
[  195.551348][ T9317] EXT4-fs (loop5): dirty_blocks=1896
[  195.551355][ T9317] EXT4-fs (loop5): Block reservation details
[  195.551361][ T9317] EXT4-fs (loop5): i_reserved_data_blocks=1896
[  195.556998][ T9274] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.557959][ T9274] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.605578][ T9317] EXT4-fs (loop5): shut down requested (0)
[  195.679704][ T9274] team0: Port device team_slave_0 added
[  195.687210][ T9274] team0: Port device team_slave_1 added
[  195.712907][ T9274] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.712942][ T9274] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  195.712962][ T9274] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.747332][ T9274] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.747360][ T9274] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  195.747374][ T9274] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.788183][ T9274] hsr_slave_0: entered promiscuous mode
[  195.788527][ T9274] hsr_slave_1: entered promiscuous mode
[  196.276370][ T9274] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  196.287874][ T9274] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  196.289707][ T9274] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  196.293581][ T9274] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  196.299921][ T9274] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  196.313225][ T9274] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  196.318086][ T5825] hsr_slave_0: left promiscuous mode
[  196.319205][ T5825] hsr_slave_1: left promiscuous mode
[  196.319479][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  196.319489][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_0
[  196.321252][ T5825] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  196.321269][ T5825] batman_adv: batadv0: Removing interface: batadv_slave_1
[  196.337272][ T5825] veth1_macvtap: left promiscuous mode
[  196.337315][ T5825] veth0_macvtap: left promiscuous mode
[  196.337370][ T5825] veth1_vlan: left promiscuous mode
[  196.337398][ T5825] veth0_vlan: left promiscuous mode
[  196.465327][ T9370] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.465553][ T9370] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.552612][ T4708] Bluetooth: hci1: command tx timeout
[  196.579860][ T5825] team0 (unregistering): Port device team_slave_1 removed
[  196.588077][ T5825] team0 (unregistering): Port device team_slave_0 removed
[  196.664885][ T9274] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  196.671113][ T9274] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  196.726076][ T9274] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.738029][ T9274] 8021q: adding VLAN 0 to HW filter on device team0
[  196.745313][  T258] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.745360][  T258] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.755647][  T258] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.755702][  T258] bridge0: port 2(bridge_slave_1) entered forwarding state
[  196.776416][ T9387] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.776615][ T9387] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.826431][ T9393] loop0: detected capacity change from 0 to 1024
[  196.847376][ T9393] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.859892][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.896312][ T5825] IPVS: stop unused estimator thread 0...
[  196.899029][ T9404] loop0: detected capacity change from 0 to 1024
[  196.916461][ T9404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.926451][ T9274] 8021q: adding VLAN 0 to HW filter on device batadv0
[  196.972479][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.999678][ T9274] veth0_vlan: entered promiscuous mode
[  197.003675][ T9274] veth1_vlan: entered promiscuous mode
[  197.016038][ T9274] veth0_macvtap: entered promiscuous mode
[  197.018644][ T9274] veth1_macvtap: entered promiscuous mode
[  197.026600][ T9274] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.031742][ T9274] batman_adv: batadv0: Interface activated: batadv_slave_1
[  197.038063][   T40] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.038195][   T40] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.038255][   T40] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.038316][   T40] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.092500][ T8698] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.092805][ T8698] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.102904][ T8698] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.102929][ T8698] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.180053][ T9435] loop0: detected capacity change from 0 to 2048
[  197.180428][ T9435] EXT4-fs: Ignoring removed nobh option
[  197.211195][ T9435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.246379][ T4711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.246669][ T9446] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  197.246950][ T9446] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  197.317438][ T9451] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  197.317639][ T9451] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  197.688810][ T9468] lo speed is unknown, defaulting to 1000
[  197.689218][ T9468] lo speed is unknown, defaulting to 1000
[  197.733596][ T9471] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1274'.
[  197.776848][ T9474] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1277'.
[  197.973235][ T9491] loop5: detected capacity change from 0 to 8
[  197.973980][ T9491] Filesystem uses "lzo" compression. This is not supported
[  197.978547][ T9491] loop5: detected capacity change from 0 to 128
[  197.986820][ T9491] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  198.068391][ T9501] loop5: detected capacity change from 0 to 512
[  198.075093][ T9501] EXT4-fs (loop5): invalid journal inode
[  198.075178][ T9501] EXT4-fs (loop5): can't get journal size
[  198.080382][ T9501] EXT4-fs (loop5): 1 truncate cleaned up
[  198.080870][ T9501] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.113506][ T5732] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.133037][ T9506] loop8: detected capacity change from 0 to 512
[  198.147370][ T9510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.150172][ T9510] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.165776][ T9506] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.170840][ T9506] Quota error (device loop8): find_block_dqentry: Quota for id 0 referenced but not present
[  198.174290][ T9506] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[  198.176337][ T9506] EXT4-fs error (device loop8): ext4_acquire_dquot:7034: comm syz.8.1291: Failed to acquire dquot type 1
[  198.184788][ T9506] Quota error (device loop8): find_block_dqentry: Quota for id 0 referenced but not present
[  198.184904][ T9506] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[  198.184925][ T9506] EXT4-fs error (device loop8): ext4_acquire_dquot:7034: comm syz.8.1291: Failed to acquire dquot type 1
[  198.202096][ T9274] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.328836][ T9519] loop8: detected capacity change from 0 to 1024
[  198.337030][ T9519] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.342777][ T9519] netlink: 32 bytes leftover after parsing attributes in process `syz.8.1296'.
[  198.358162][ T9274] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.380636][ T9524] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.381689][ T9524] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.633571][ T4708] Bluetooth: hci1: command tx timeout
[  198.655196][ T9527] lo speed is unknown, defaulting to 1000
[  198.658462][ T9527] lo speed is unknown, defaulting to 1000
[  198.687143][ T9529] lo speed is unknown, defaulting to 1000
[  198.755769][ T9529] lo speed is unknown, defaulting to 1000
[  199.193461][  T868] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  199.342864][  T868] usb 1-1: Using ep0 maxpacket: 32
[  199.345501][  T868] usb 1-1: unable to get BOS descriptor or descriptor too short
[  199.347907][  T868] usb 1-1: config 128 has an invalid interface number: 127 but max is 3
[  199.347936][  T868] usb 1-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  199.347963][  T868] usb 1-1: config 128 has 1 interface, different from the descriptor's value: 4
[  199.347981][  T868] usb 1-1: config 128 has no interface number 0
[  199.347998][  T868] usb 1-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  199.348014][  T868] usb 1-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  199.348028][  T868] usb 1-1: config 128 interface 127 has no altsetting 0
[  199.362929][  T868] usb 1-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  199.362962][  T868] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.362990][  T868] usb 1-1: Product: syz
[  199.363005][  T868] usb 1-1: Manufacturer: syz
[  199.363017][  T868] usb 1-1: SerialNumber: syz
[  199.584660][ T9549] EXT4-fs (loop0): blocks per group (255) and clusters per group (8192) inconsistent
[  199.612718][  T868] usb 1-1: USB disconnect, device number 6
[  199.664987][ T9555] tun0: tun_chr_ioctl cmd 1074812118
[  199.677970][ T9563] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  199.709580][ T9563] FAT-fs (loop5): error, invalid FAT chain (i_pos 548, last_block 8)
[  199.709624][ T9563] FAT-fs (loop5): Filesystem has been set read-only
[  199.709669][ T9563] FAT-fs (loop5): error, corrupted file size (i_pos 548, 522)
[  200.376824][ T9591] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  200.395463][ T9591] EXT4-fs (loop3): 1 truncate cleaned up
[  200.402104][ T9591] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.409451][ T9596] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1325'.
[  200.432223][ T9599] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.432450][ T9599] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  200.436042][ T9591] ==================================================================
[  200.436057][ T9591] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x7c8/0x15a0
[  200.436079][ T9591] Read of size 18446744073709551572 at addr ffff0000f8157050 by task syz.3.1323/9591
[  200.436088][ T9591] 
[  200.436094][ T9591] CPU: 0 UID: 0 PID: 9591 Comm: syz.3.1323 Tainted: G             L      syzkaller #0 PREEMPT 
[  200.436106][ T9591] Tainted: [L]=SOFTLOCKUP
[  200.436109][ T9591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  200.436114][ T9591] Call trace:
[  200.436117][ T9591]  show_stack+0x2c/0x3c (C)
[  200.436131][ T9591]  __dump_stack+0x30/0x40
[  200.436144][ T9591]  dump_stack_lvl+0xd8/0x12c
[  200.436155][ T9591]  print_address_description+0xb0/0x238
[  200.436164][ T9591]  print_report+0x68/0x84
[  200.436172][ T9591]  kasan_report+0x8c/0xc4
[  200.436184][ T9591]  kasan_check_range+0x17c/0x1ac
[  200.436194][ T9591]  __asan_memmove+0x3c/0x84
[  200.436206][ T9591]  ext4_xattr_set_entry+0x7c8/0x15a0
[  200.436218][ T9591]  ext4_xattr_block_set+0x5ec/0x2188
[  200.436230][ T9591]  ext4_expand_extra_isize_ea+0xb18/0x13a0
[  200.436243][ T9591]  __ext4_expand_extra_isize+0x29c/0x370
[  200.436253][ T9591]  __ext4_mark_inode_dirty+0x3a4/0x810
[  200.436265][ T9591]  ext4_dirty_inode+0xd4/0x104
[  200.436274][ T9591]  __mark_inode_dirty+0x354/0x1a10
[  200.436283][ T9591]  generic_update_time+0xe8/0x110
[  200.436295][ T9591]  file_update_time_flags+0x288/0x348
[  200.436306][ T9591]  file_modified_flags+0x58/0x74
[  200.436317][ T9591]  file_modified+0x24/0x34
[  200.436327][ T9591]  ext4_write_checks+0xb4/0x1e4
[  200.436337][ T9591]  ext4_buffered_write_iter+0xac/0x310
[  200.436347][ T9591]  ext4_file_write_iter+0x1d8/0x1390
[  200.436357][ T9591]  vfs_write+0x52c/0xa14
[  200.436368][ T9591]  ksys_pwrite64+0x118/0x1b0
[  200.436380][ T9591]  __arm64_sys_pwrite64+0x9c/0xb4
[  200.436392][ T9591]  invoke_syscall+0x98/0x244
[  200.436404][ T9591]  el0_svc_common+0xe8/0x23c
[  200.436415][ T9591]  do_el0_svc+0x48/0x58
[  200.436426][ T9591]  el0_svc+0x64/0x260
[  200.436436][ T9591]  el0t_64_sync_handler+0x48/0x148
[  200.436444][ T9591]  el0t_64_sync+0x198/0x19c
[  200.436453][ T9591] 
[  200.436454][ T9591] Allocated by task 9591:
[  200.436459][ T9591]  kasan_save_track+0x40/0x78
[  200.436467][ T9591]  kasan_save_alloc_info+0x44/0x54
[  200.436477][ T9591]  __kasan_kmalloc+0x9c/0xb4
[  200.436485][ T9591]  __kmalloc_node_track_caller_noprof+0x370/0x748
[  200.436495][ T9591]  kmemdup_noprof+0x44/0x8c
[  200.436505][ T9591]  ext4_xattr_block_set+0x538/0x2188
[  200.436515][ T9591]  ext4_expand_extra_isize_ea+0xb18/0x13a0
[  200.436526][ T9591]  __ext4_expand_extra_isize+0x29c/0x370
[  200.436534][ T9591]  __ext4_mark_inode_dirty+0x3a4/0x810
[  200.436544][ T9591]  ext4_dirty_inode+0xd4/0x104
[  200.436551][ T9591]  __mark_inode_dirty+0x354/0x1a10
[  200.436557][ T9591]  generic_update_time+0xe8/0x110
[  200.436566][ T9591]  file_update_time_flags+0x288/0x348
[  200.436576][ T9591]  file_modified_flags+0x58/0x74
[  200.436585][ T9591]  file_modified+0x24/0x34
[  200.436594][ T9591]  ext4_write_checks+0xb4/0x1e4
[  200.436602][ T9591]  ext4_buffered_write_iter+0xac/0x310
[  200.436610][ T9591]  ext4_file_write_iter+0x1d8/0x1390
[  200.436618][ T9591]  vfs_write+0x52c/0xa14
[  200.436628][ T9591]  ksys_pwrite64+0x118/0x1b0
[  200.436638][ T9591]  __arm64_sys_pwrite64+0x9c/0xb4
[  200.436648][ T9591]  invoke_syscall+0x98/0x244
[  200.436658][ T9591]  el0_svc_common+0xe8/0x23c
[  200.436668][ T9591]  do_el0_svc+0x48/0x58
[  200.436677][ T9591]  el0_svc+0x64/0x260
[  200.436683][ T9591]  el0t_64_sync_handler+0x48/0x148
[  200.436690][ T9591]  el0t_64_sync+0x198/0x19c
[  200.436696][ T9591] 
[  200.436697][ T9591] The buggy address belongs to the object at ffff0000f8157000
[  200.436697][ T9591]  which belongs to the cache kmalloc-1k of size 1024
[  200.436704][ T9591] The buggy address is located 80 bytes inside of
[  200.436704][ T9591]  1024-byte region [ffff0000f8157000, ffff0000f8157400)
[  200.436712][ T9591] 
[  200.436714][ T9591] The buggy address belongs to the physical page:
[  200.436718][ T9591] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff0000f8156800 pfn:0x138150
[  200.436726][ T9591] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  200.436732][ T9591] flags: 0x5ffc00000000240(workingset|head|node=0|zone=2|lastcpupid=0x7ff)
[  200.436741][ T9591] page_type: f5(slab)
[  200.436748][ T9591] raw: 05ffc00000000240 ffff0000c0001dc0 ffff0000c0000888 fffffdffc31ab010
[  200.436755][ T9591] raw: ffff0000f8156800 0000000800100009 00000000f5000000 0000000000000000
[  200.436763][ T9591] head: 05ffc00000000240 ffff0000c0001dc0 ffff0000c0000888 fffffdffc31ab010
[  200.436770][ T9591] head: ffff0000f8156800 0000000800100009 00000000f5000000 0000000000000000
[  200.436777][ T9591] head: 05ffc00000000003 fffffdffc3e05401 00000000ffffffff 00000000ffffffff
[  200.436784][ T9591] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  200.436788][ T9591] page dumped because: kasan: bad access detected
[  200.436792][ T9591] 
[  200.436799][ T9591] Memory state around the buggy address:
[  200.436803][ T9591]  ffff0000f8156f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.436812][ T9591]  ffff0000f8156f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.436817][ T9591] >ffff0000f8157000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.436821][ T9591]                                                  ^
[  200.436826][ T9591]  ffff0000f8157080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.436831][ T9591]  ffff0000f8157100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.436835][ T9591] ==================================================================
[  200.438005][ T9591] Disabling lock debugging due to kernel taint
[  200.475891][ T7069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.712664][ T4708] Bluetooth: hci1: command tx timeout
[  202.792773][ T4708] Bluetooth: hci1: command tx timeout