last executing test programs:

8m31.697160865s ago: executing program 32 (id=582):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
chdir(0x0)

7m53.317417319s ago: executing program 33 (id=688):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8021d08000b000000e8fe55a1180015000600142603640e1209000d000104", 0x1f}], 0x1}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0x200000000000000}, 0x18)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2539000020000365f507f62aa6172f7881"], 0x33fe0)

7m9.952683269s ago: executing program 1 (id=834):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x2}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x58}}, 0x0)

7m9.360198988s ago: executing program 1 (id=838):
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {<r1=>0xffffffffffffffff}}, './file0\x00'}) (async)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'ip6gre0\x00', <r2=>0x0, 0x4, 0x7f, 0x2, 0x0, 0x36, @loopback, @empty, 0x22, 0x7800, 0x2, 0x1}})
sendmsg$can_raw(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x1d, r2}, 0x10, &(0x7f0000000180)={&(0x7f0000000140)=@can={{0x2, 0x0, 0x0, 0x1}, 0x4, 0x1, 0x0, 0x0, "d4b663cc8f624716"}, 0x10}, 0x1, 0x0, 0x0, 0xc1}, 0x400c000)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x43}}, './file0\x00'}) (async)
getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0x8, 0x1, 0x7ff, 0x2, 0xffff, 0x7]}, &(0x7f00000002c0)=0x50)
r4 = syz_open_dev$vcsn(&(0x7f0000000300), 0x9, 0x40800)
sendmsg$nl_route(r4, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=@ipv6_getroute={0x2c, 0x1a, 0x200, 0x70bd2d, 0x25dfdbff, {0xa, 0x10, 0x0, 0x1b, 0x0, 0x1, 0xff, 0xf79decc94c3f2b54, 0x1000}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_OIF={0x8, 0x4, r2}]}, 0x2c}}, 0x4000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000880)={r0, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x4, 0x4, &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0], <r6=>0x0, 0xa3, &(0x7f0000000680)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f00000006c0), &(0x7f0000000700), 0x8, 0x4c, 0x8, 0x8, &(0x7f0000000740)}}, 0x10) (async)
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000a40)=@bpf_tracing={0x1a, 0xc, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff2, 0x0, 0x0, 0x0, 0x200000}, [@printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xe59}}, @generic={0xa4, 0x2, 0x7, 0x200, 0x2}]}, &(0x7f0000000940)='GPL\x00', 0x2, 0x2, &(0x7f0000000980)=""/2, 0x40f00, 0x21, '\x00', r2, 0x1a, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f00000009c0)={0x0, 0xa, 0xb, 0x7}, 0x10, 0xdcac, r0, 0x0, &(0x7f0000000a00)=[r0, r0, r4, r0, r4], 0x0, 0x10, 0x9a29}, 0x94)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000b00)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x3, '\x00', r2, r4, 0x5, 0x4, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0xd, 0x8, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x40}, [@exit, @cb_func={0x18, 0x4, 0x4, 0x0, 0x6}, @exit, @call={0x85, 0x0, 0x0, 0xc2}]}, &(0x7f0000000480)='syzkaller\x00', 0x101, 0x78, &(0x7f00000004c0)=""/120, 0x41100, 0x4, '\x00', 0x0, @sock_ops=0x3, r4, 0x8, &(0x7f0000000540)={0x0, 0xffffffff}, 0x8, 0x10, &(0x7f0000000580)={0x0, 0xe, 0x1, 0x7b89}, 0x10, r6, r7, 0x1, &(0x7f0000000b80)=[r1, r0, 0xffffffffffffffff, r3, r8, r3, r4, r3], &(0x7f0000000bc0)=[{0x2, 0x4, 0x2, 0x8}]}, 0x94) (async)
r9 = openat$rtc(0xffffff9c, &(0x7f0000000cc0), 0x400, 0x0)
ioctl$RTC_PLL_GET(r9, 0x801c7011, &(0x7f0000000d00))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001f80)={r1, 0x0, 0x1000, 0xda, &(0x7f0000000d40)="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", &(0x7f0000001d40)=""/218, 0x4, 0x0, 0xaf, 0x63, &(0x7f0000001e40)="59c28f6bd7d63d22f1d81e4c9b9678f455fd56ac6ddcec9d0e9460d1fb519914fe201c67232acea7177f2dd7cbe457a8efe68574b1a5edc7770e75e70b43f5e8cdc36b2eb89b958c0358d709e061c57add88fa6e3f1e79d0bec9142735961739bfdf0034c6e717491815c2a6b0736da49d1c322a96a0cc9975e33d454e4619dfafc750f8f0ccf2e1d3044a3ca05518e3d0d0344ec1241ae8f0d1f7ad194ad60f31844979f3ae43e57eaa117ce97d47", &(0x7f0000001f00)="c3a27dd903fc67fb6c86c0897b560116434951b6a0b6030719f5ba6b3d67ea3d947529524442031519c017b3b31d307575337fce81692eb757f1b1f38a8dfbdc0363765cbca461488e4c35812a54de8ddd76f8e7f46cbbb3025e12e4da0c142f191210", 0x2, 0x0, 0x8}, 0x4c) (async)
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000002000)={'gre0\x00', 0x400})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=@base={0x2, 0x3, 0x5, 0x4e6f, 0x8800, r1, 0x0, '\x00', r5, r4, 0x2}, 0x50) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000022c0)={0x2, <r11=>0x0}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000002340)=@bpf_lsm={0x1d, 0x22, &(0x7f00000020c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x7fff}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@map_val={0x18, 0x9, 0x2, 0x0, r10, 0x0, 0x0, 0x0, 0x8}, @map_idx={0x18, 0x1, 0x5, 0x0, 0x9}, @map_fd={0x18, 0x3, 0x1, 0x0, r1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x96c}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000002200)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x35, '\x00', r2, 0x1b, r0, 0x8, &(0x7f0000002240)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000002280)={0x0, 0xe, 0x20000}, 0x10, r11, 0x0, 0x0, &(0x7f0000002300)=[r3, r3]}, 0x94)
r12 = syz_genetlink_get_family_id$batadv(&(0x7f0000002440), r1)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000002540)={&(0x7f0000002400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002500)={&(0x7f0000002480)={0x64, r12, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7fffffff}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xc}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1ff}]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x50) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
read$FUSE(r4, &(0x7f0000002580)={0x2020, 0x0, <r13=>0x0}, 0x2020) (async)
stat(&(0x7f00000045c0)='./file0/file0\x00', &(0x7f0000004600)={0x0, 0x0, 0x0, 0x0, <r14=>0x0}) (async)
lstat(&(0x7f0000004680)='./file0/file0\x00', &(0x7f00000046c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0})
write$FUSE_ATTR(r1, &(0x7f0000004740)={0x78, 0x0, r13, {0xa, 0x9, 0x0, {0x3, 0xee, 0x0, 0x3, 0xf2, 0x6, 0x8, 0x81, 0x2, 0x2000, 0x0, r14, r15, 0x4, 0x7}}}, 0x78) (async)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000004800)={<r16=>0x0, @local, @broadcast}, &(0x7f0000004840)=0xc)
sendmsg$BATADV_CMD_GET_GATEWAYS(r4, &(0x7f0000004900)={&(0x7f00000047c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000048c0)={&(0x7f0000004880)={0x34, r12, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8000}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r16}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x100}]}, 0x34}}, 0x2)
r17 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x39)
ioctl$KVM_CREATE_PIT2(r17, 0x4040ae77, &(0x7f0000004940)={0x10})
ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(r1, 0x800c4153, &(0x7f0000006b40)={0x0, &(0x7f0000006b00)=[&(0x7f0000004980)="a8bcbb012d9d6ec805fe3a887ceff073dafc24c33af7853cdd3655816118e5dc6841c757422acec2c3930821a3d7437c0e03b46995789fb5079faa1e8f32c41ed0769bc3ec874979bfcbbac0eff3568fd27cbbbb862edc4dcbe7731dca8413ae256d0a8a737fa24df8026cbd46e93945e4ce12b443c938c69643055e7338a743ef82997de122a466424c9f17b49f40a6655988eb4e751bf4b7c386294aaae337e4e34a1eddae910af34edc3196604b05", &(0x7f0000004a40)="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", &(0x7f0000005a40)="d9214acb3855f9a1d5ba533df10faf579789b47757dc8eb376dca1e2531600f2daa5055577f7fa36d8ac55461b4216962277d659dd308456fc1353aa2c59c5ed4900603692c19c18fdc332f373c80f9d14e88cdef1a167a0df6935e12caa13776ddee5abac5d44e85ee515eea6d33cfb15c15b0e35bb942d0b626078a986d6", &(0x7f0000005ac0)="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", &(0x7f0000006ac0)="3539b7cb4a3abe5469d8b58cf1632fc308051b588a1e7c70fba2100f116790e41cb029f482832253b87c55cecddc94ad3a0c2e3382cffa2a2b68a6"]})

7m8.833440208s ago: executing program 1 (id=840):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0)
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4000, &(0x7f0000001100)=ANY=[@ANYBLOB='mode=00000000000000000000177,mode=00000000000000000000005,shortad,utf8,shortad,shortad,session=00000000000016777223,umask=00000000000000000000250,uid=ignore,shortad,dmode=00000000000000000170430,gid=ignore,adinicb,gid=forget,mode=00000000000000000002000,lastblock=00000000000000001024,shortad,euid>', @ANYBLOB=',fsmagic=0x0000000000000002,smackfsf^oor=smackfstrans-ute,fowner>', @ANYBLOB="d4199c3f003c5c8d6d222e24bfdda0389fe9ebc4333e5d9521a6cc631f653d174fb504401934b83a72449268d54cd62dbbb66d7ba1b35073e60bf699ea6cb1b5923e3a3d5e51423a7c1a13920aea8e6d3c7d53f4aa34acbe0b78df03569d0b620d54f96b33fd4895161524abc937b9d619a3add1c3b57ad5124502de88fe8f0e436f04aded9c4f7b60876d2ac9caa8502b7faa4fe85e7819540dabf8e44ccdd382e5292164879e30f5b039e5f2314adff12c154c627fabadc824eb6d2fc48d1bc75a9dd2589e2c3324cd33f0a8508f6d4a899b6e8b45fec164", @ANYRESDEC=0x0, @ANYRESOCT=0x0], 0x2, 0xc3a, &(0x7f0000001380)="$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")

7m7.313401381s ago: executing program 1 (id=843):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x48000009, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4c, 0x2, [@TCA_FQ_INITIAL_QUANTUM={0x8, 0xe}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x8}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_QUANTUM={0x5, 0xf}]}}]}, 0x78}}, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000140)={0x2, 0x0, {0x0, 0x9, 0x0, 0x1a, 0x0, 0x60, 0x2}})
ioctl$RTC_UIE_ON(r0, 0x7003)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8053, &(0x7f0000000000)={[{@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@dioread_nolock}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}]}, 0x3, 0x4de, &(0x7f0000000c40)="$eJzs3E1oXNUeAPD/nUma9Ot1Xl9f32utmlrFYDFp02q7EKSi4EJBrKAuQ5KW2rSRJgVbqkxB6lIK7sWlWxdu1U0RV4LbuhSkUKSbtoI4cmfunZlMZ5ImmWSM+f1gMufcr3POPffcOfeczASwYQ2lf5Ja+GZE7IiIQusGQ7W3e3euTNy/c2UiypXKyd+S6m5303gmO0xszSLDhYjCx0ljRZPZS5fPjk9PT13I4qNz594fnb10+dkzg9mS48ePHjl87Pmx55ZeqDbppeW6u/ejmX17Xn33+usTffnyPLXmcnTLUAy1y0rVU91OrMe2N4WTvh5mhCVJr/+0uvqr7X9HFGOhyiuvYc6A1VapVCoDnVeXK62uPrAEWLdisNc5AHoj/6BPn3/zV7uOwKbV6X703O0TtQegtNz3slfE49WF+ThIf8vzbTcNRcQ75d8/T1+xSuMQAADNvj2R9wRb+n+l2szIHxdvvJi+/yubQylFxL8jYmdE/CcidkXEfyNid0T8LyL+33L8YkRUFkh/qCVeT78+CVW41aWitpX2/17I5rYa/b95GSgVs9j2iLzDPHUoOyfD0T9w6sz01OEF0vju5Z8+7bSuuf+XvtL0875glo9bfS0DdJPjc+PLLnCL21cj9va1lj/pi0jqMwFJROyJiL1LOG6pKXzmmS/31SP987dbvPxVlbbzaF2YZ6p8EfF0rf7LMa/+Gykm8+Ynz42fnjo9dX6sPj85OhjTU4dG06vgUNs0fvjx2hud0l+0/F//0rrLK8e+OZm1rJVL639L0/Uf+fxto/ylJCKpz9fOLj2Naz9/0vGZZrnX/6bkrWo4fy79YHxu7sLhiE3Jaw8uH2vsm8fT9yjXyj98oH3735ntk56JRyIivYgfjYjHovaEmOZ9f0Q8EREHFij/9y89+d7yy7+60vJPttz/ajU/r/4b8/WdAkk2N9hmVfHs/pv3O9w8Hq7+j1ZDw9mS9ve/ZN4tolNO80+7dMmfKz57AAAAsD4UImJb01jStigURkZqY0C7YkthemZ27uCpmYvnJ9N1EaXoL+QjXbXx4P4kH/8sNcXHWuJHsnHjz4qbq/GRiZnpyZ6WHNhabfNJYSTi7WJT+0/92p0hZuDvzPe1YONaqP2nnfjd19cwM8CaevjP/xsfrmpGgDXX1P47fcO/vIz/+wLWAc//QMPiP/TjngHrX0Vbhg1tSe3/oB8BhH+SvnizHi70NCfAWtP/hw1p0e/1ryhQGWi/ajAe3DgGFz5gMZaXjc1t0upJIO1Z9ST1zcvZK/81hY7bRGFpBxyI7tTpqRWejfKF2dO7u37xV7L/le92DX61Ju20XaAntyMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICu+ysAAP//+sDgnA==")
ioctl$RTC_AIE_OFF(r0, 0x7002)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x100, 0x101)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
bind$netlink(r6, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r6, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000010000d042abd70000000000000000000", @ANYRES32=r7, @ANYBLOB="01000000000000001c00128009000100626f6e64000000005f8c19780c0002800500010004020000"], 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r8 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
r9 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89101)
openat$cgroup_ro(r9, &(0x7f00000002c0)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000004c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES16=r10, @ANYBLOB="05", @ANYRES16=r9, @ANYRES32=r8, @ANYRES16, @ANYRES32], 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket(0x1, 0x803, 0x0)
getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="540000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800e0001006970366772657461700000001800028014000700ff01000000000000000000000000000108000a00", @ANYRES32=r9], 0x54}}, 0x0)
getdents64(r4, &(0x7f00000002c0)=""/187, 0xbb)
r13 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r13, 0x40086602, &(0x7f00000001c0)=0x10)
symlink(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)

7m5.285087811s ago: executing program 1 (id=847):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
symlink(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file1\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)

7m4.630508988s ago: executing program 1 (id=852):
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
eventfd(0x401)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000001c40))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x20000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x17)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000095129b3a44f548398a3f00000000000000ed8fd6c7ed245927ca7c29573bc0647f6f5f71cea4bee8a8940ca260bc5620cc915aa468c13309a7526ac413c934b76e8df47d22dba8004602d15b"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000002c0), 0xa0802, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r0, 0x4038ae7a, &(0x7f0000000080)={0x9, 0xa54, &(0x7f0000000300)="42fd7819bae2098442f33bec413f6cb8f19f71212fae09e6b5b07d7a5addaf0c00515e98d77a28a17ba8e5b1dbdc05c8be4a53115a5e209f4141c4a8f2b342c112aba6ef615e839bea09e92918e52ba760607f2ed8b97906e282c99cc240a927", &(0x7f0000000480)="8e303408eca2d6b8a20d27ea626bcf893b7264da4578a1b179052fd2a300f3edec08beaff248c071a144d9abbb8c3debb848350f11152d5c370a1f16f9a49381874e9e6e7d9a00dd43702810bf2591bdecf9b0ce4ad90bccf144ecea17cb1303e3530691981ea72b8906cbe0fb38e668c9c4cc66c8bbe9f8712780d2f2c3811e855e097d48e9bd8ee84eb85eec69c84fc2604868c610b525808718ba498979cfa2f8bb9aeb156ecb3bc04384412533b513701b0263d9e964953906253531ab5869a0a3f005320d6ea78d7b3c06076b066ef1", 0x60, 0xd2})
syz_open_dev$vim2m(&(0x7f0000000280), 0x1, 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0xff, 0x0, 0x1}, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="40000000190001090000000000000000025800000000fd010000000008000100ac141400080005000a0101020c001680050004000e0000000600150006000000fc0e67ed78b35a1043b9c7318dedc55085bdf75aa61087a39cc76e0d29c1dd2c26e3e91ec12c902627240dd285cb758329a4cf607ab1e87790d7e85e9de7a1c9c9b25e33ce4f3e6ead52752158f0043ed8c3b3f3ab6fbb0546014660a72bdd529ef8caf7cfa23c35f2b07948b34ba8f8066a19a2f13e04da0e977b054fd4332beaa5ec4b7e42bb0fe8bd4e3f0d6dac79c296103c97e4e89534"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r5}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r3], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff]})

7m1.705405533s ago: executing program 34 (id=852):
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
eventfd(0x401)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000001c40))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x20000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x17)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000095129b3a44f548398a3f00000000000000ed8fd6c7ed245927ca7c29573bc0647f6f5f71cea4bee8a8940ca260bc5620cc915aa468c13309a7526ac413c934b76e8df47d22dba8004602d15b"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000002c0), 0xa0802, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r0, 0x4038ae7a, &(0x7f0000000080)={0x9, 0xa54, &(0x7f0000000300)="42fd7819bae2098442f33bec413f6cb8f19f71212fae09e6b5b07d7a5addaf0c00515e98d77a28a17ba8e5b1dbdc05c8be4a53115a5e209f4141c4a8f2b342c112aba6ef615e839bea09e92918e52ba760607f2ed8b97906e282c99cc240a927", &(0x7f0000000480)="8e303408eca2d6b8a20d27ea626bcf893b7264da4578a1b179052fd2a300f3edec08beaff248c071a144d9abbb8c3debb848350f11152d5c370a1f16f9a49381874e9e6e7d9a00dd43702810bf2591bdecf9b0ce4ad90bccf144ecea17cb1303e3530691981ea72b8906cbe0fb38e668c9c4cc66c8bbe9f8712780d2f2c3811e855e097d48e9bd8ee84eb85eec69c84fc2604868c610b525808718ba498979cfa2f8bb9aeb156ecb3bc04384412533b513701b0263d9e964953906253531ab5869a0a3f005320d6ea78d7b3c06076b066ef1", 0x60, 0xd2})
syz_open_dev$vim2m(&(0x7f0000000280), 0x1, 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0xff, 0x0, 0x1}, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="40000000190001090000000000000000025800000000fd010000000008000100ac141400080005000a0101020c001680050004000e0000000600150006000000fc0e67ed78b35a1043b9c7318dedc55085bdf75aa61087a39cc76e0d29c1dd2c26e3e91ec12c902627240dd285cb758329a4cf607ab1e87790d7e85e9de7a1c9c9b25e33ce4f3e6ead52752158f0043ed8c3b3f3ab6fbb0546014660a72bdd529ef8caf7cfa23c35f2b07948b34ba8f8066a19a2f13e04da0e977b054fd4332beaa5ec4b7e42bb0fe8bd4e3f0d6dac79c296103c97e4e89534"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r5}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r3], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff]})

6m29.096619351s ago: executing program 3 (id=950):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c00028005000100040000000600180000100000060019"], 0x4c}}, 0x0)
r1 = openat$cgroup_root(0xffffff9c, &(0x7f00000004c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000500)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000200)={'erspan0\x00', 0x0, 0x8000, 0x700, 0x7ff, 0x5, {{0x1f, 0x4, 0x2, 0x24, 0x7c, 0x65, 0x0, 0x7, 0x2f, 0x0, @broadcast, @loopback, {[@timestamp_prespec={0x44, 0x3c, 0x82, 0x3, 0x0, [{@local, 0xffffff9a}, {@rand_addr=0x64010102, 0x7ff}, {@empty, 0x80000001}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x9}, {@broadcast, 0x1}, {@local, 0x907}, {@private=0xa010100, 0x8}]}, @timestamp_addr={0x44, 0x14, 0x31, 0x1, 0x0, [{@broadcast, 0x800}, {@multicast2, 0xa}]}, @timestamp={0x44, 0x18, 0x81, 0x0, 0x9, [0x80000000, 0x7, 0x8, 0xc, 0x2662]}]}}}}})
r3 = openat$vimc2(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r3, 0xc0f8565c, &(0x7f00000000c0)={0x200, 0x60cc, 0x3, {0x8, @vbi={0x3, 0x8, 0x7, 0xa0363159, [0x5, 0x4], [0x6, 0x10], 0x1}}, 0x6})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100), &(0x7f00000002c0)=0x14)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x80, r2, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010102}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x43}}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x17}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x8840)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c00028005000100040000000600180000100000060019"], 0x4c}}, 0x0) (async)
openat$cgroup_root(0xffffff9c, &(0x7f00000004c0)='./cgroup.net/syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_ro(r1, &(0x7f0000000500)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0) (async)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000200)={'erspan0\x00', 0x0, 0x8000, 0x700, 0x7ff, 0x5, {{0x1f, 0x4, 0x2, 0x24, 0x7c, 0x65, 0x0, 0x7, 0x2f, 0x0, @broadcast, @loopback, {[@timestamp_prespec={0x44, 0x3c, 0x82, 0x3, 0x0, [{@local, 0xffffff9a}, {@rand_addr=0x64010102, 0x7ff}, {@empty, 0x80000001}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x9}, {@broadcast, 0x1}, {@local, 0x907}, {@private=0xa010100, 0x8}]}, @timestamp_addr={0x44, 0x14, 0x31, 0x1, 0x0, [{@broadcast, 0x800}, {@multicast2, 0xa}]}, @timestamp={0x44, 0x18, 0x81, 0x0, 0x9, [0x80000000, 0x7, 0x8, 0xc, 0x2662]}]}}}}}) (async)
openat$vimc2(0xffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$VIDIOC_CREATE_BUFS(r3, 0xc0f8565c, &(0x7f00000000c0)={0x200, 0x60cc, 0x3, {0x8, @vbi={0x3, 0x8, 0x7, 0xa0363159, [0x5, 0x4], [0x6, 0x10], 0x1}}, 0x6}) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100), &(0x7f00000002c0)=0x14) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x80, r2, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010102}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x43}}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x17}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x8840) (async)

6m28.336948453s ago: executing program 3 (id=952):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x300f000, 0xe, 0x0, &(0x7f0000000080)="0069c2704ade28eddb0000200000", 0x0, 0x48b8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

6m27.358580318s ago: executing program 3 (id=955):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

6m26.248160793s ago: executing program 3 (id=957):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x276, &(0x7f0000000840)="$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")
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41, 0x0, 0x4}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000008000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x200a, 0x0)
quotactl_fd$Q_SYNC(0xffffffffffffffff, 0xffffffff80000100, 0x0, 0x0)

6m25.347760208s ago: executing program 3 (id=961):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ac0)={{0x14}, [@NFT_MSG_NEWSET={0x540, 0x9, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_DESC={0x2ec, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x40}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x7fff}, @NFTA_SET_DESC_CONCAT={0xc4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffffffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9ad}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfab}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb}]}]}, @NFTA_SET_DESC_CONCAT={0x124, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7f}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1c}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2800000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff9}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80000001}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x40}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xf917}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7cb}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1a43}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_DESC_CONCAT={0x40, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x67}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x101}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa5a6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7fffffff}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x10}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x20000000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5ce5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1000}]}]}]}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x9}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_SET_DESC={0x228, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x5c, 0x2, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x81}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xf03}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8ca}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xf0000000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x701}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x98b}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x67}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffff000}]}]}, @NFTA_SET_DESC_CONCAT={0x100, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb8d}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x30a}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x522e}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xe270}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd4}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x100}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x15}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80000004}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x2352}, @NFTA_SET_DESC_CONCAT={0x20, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}]}]}]}]}, @NFT_MSG_DELRULE={0x14, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}}], {0x14}}, 0x57c}}, 0x0)

6m24.740039524s ago: executing program 3 (id=963):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[], 0x90}}, 0x0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000140)={0x20, r1, 0xe6b502d2fbdbd6bf, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x400c010)

6m22.382655417s ago: executing program 35 (id=963):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[], 0x90}}, 0x0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000140)={0x20, r1, 0xe6b502d2fbdbd6bf, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x400c010)

6m12.675659065s ago: executing program 7 (id=998):
r0 = fsopen(&(0x7f00000000c0)='f2fs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000140)='\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)

6m11.909399016s ago: executing program 7 (id=1001):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[], 0x90}}, 0x0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000140)={0x20, r1, 0xe6b502d2fbdbd6bf, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x400c010)

6m10.612277053s ago: executing program 7 (id=1003):
open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)

6m9.892109793s ago: executing program 7 (id=1005):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x276, &(0x7f0000000840)="$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")
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41, 0x0, 0x4}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000008000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x200a, 0x0)

6m9.01660834s ago: executing program 7 (id=1007):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000ac0)={{0x14}, [@NFT_MSG_DELRULE={0x14, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}}], {0x14}}, 0x3c}}, 0x0)

6m8.224534928s ago: executing program 7 (id=1010):
r0 = fsopen(&(0x7f00000000c0)='f2fs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000140)='\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)

6m6.046901042s ago: executing program 36 (id=1010):
r0 = fsopen(&(0x7f00000000c0)='f2fs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000140)='\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)

6m2.285574823s ago: executing program 6 (id=1021):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0x40405515, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]})

6m1.606139486s ago: executing program 6 (id=1022):
r0 = epoll_create1(0x80000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000180)={0x2000200a})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000140)={0x2000200b})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000780), r4)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000007c0)={0x24, r5, 0x1, 0x70bd2e, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}]}, 0x24}}, 0x80)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x803}, 0x0)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)

6m0.894639523s ago: executing program 6 (id=1023):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

6m0.358196367s ago: executing program 6 (id=1026):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x276, &(0x7f0000000840)="$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")
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41, 0x0, 0x4}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000008000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x200a, 0x0)

5m59.277925744s ago: executing program 6 (id=1029):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f00000008c0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x8}}, 0x1c, &(0x7f0000000300)=[{&(0x7f00000005c0)="99", 0x1}], 0x1}}, {{&(0x7f00000000c0)={0xa, 0x4e24, 0xbfff, @private0={0xfc, 0x0, '\x00', 0x1}, 0x4}, 0x1c, &(0x7f0000000740)=[{&(0x7f00000003c0)=')', 0x1}], 0x1}}], 0x2, 0x0)
shutdown(r0, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="3800000055000100040000000000000807000000", @ANYRES32=r4, @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="00000000e10000000000000000"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x40080)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x34, r2, 0x5, 0x0, 0x0, {{}, {@val={0x0, 0x3, r5}, @val={0xc, 0x99, {0x2, 0x4}}}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_RETRY_TIMEOUT={0x6, 0x1, 0xbb}]}]}, 0x34}}, 0x8000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r6, &(0x7f0000001c40)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000880)={&(0x7f0000001bc0)={0x70, 0x0, 0x2, 0x401, 0x0, 0x0, {0x2, 0x0, 0x8}, [@CTA_EXPECT_MASK={0x44, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x3}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0xbc7}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000084}, 0x840)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000004c0)={0x9, 0xff, 0x204, 0x5, 0xb7b, 0x2, 0x2, 0x2}, 0x20)
r7 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x9840)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pipe2(&(0x7f0000000140)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x4800)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffb, 0x6, 0x1, @scatter={0x5, 0x0, &(0x7f0000000700)=[{&(0x7f0000000600)=""/177, 0xb1}, {&(0x7f0000000540)=""/102, 0x66}, {&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000000780)=""/109, 0x6d}, {&(0x7f0000001b00)=""/152, 0x98}]}, &(0x7f0000000380)="259374c94982", 0x0, 0x0, 0x23, 0x0, 0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000004000000020000000000000e02000000000000000000000000020000000000002e000000"], 0x0, 0x38}, 0x20)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f0000000180)={0x4, [0x0, 0x0, <r10=>0x0, 0x0]}, &(0x7f00000001c0)=0x14)
setsockopt$inet_sctp_SCTP_CONTEXT(r9, 0x84, 0x11, &(0x7f0000000200)={r10, 0x2}, 0x8)
r11 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x202804, &(0x7f00000006c0)=ANY=[@ANYRES64=0x0], 0x1, 0x276, &(0x7f0000000280)="$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")
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81e8943c, &(0x7f0000000900)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r12=>0x0})
ioctl$BTRFS_IOC_WAIT_SYNC(r11, 0x40089416, &(0x7f0000000100)=r12)

5m58.310570992s ago: executing program 6 (id=1031):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
close(0x3)

5m55.861100863s ago: executing program 37 (id=1031):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
close(0x3)

5m55.816497881s ago: executing program 4 (id=1034):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

5m55.209712734s ago: executing program 4 (id=1035):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000840)={0x1c0, 0x0, 0x800, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x1a4, 0x11d, 0x0, 0x1, [{0x190, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x91}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x148, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4}]}, @NL80211_BAND_2GHZ={0x54, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x45, 0x2, [{0x7, 0x1}, {0x3, 0x6}, {0x4, 0x9}, {0x6, 0x7}, {0x3, 0xa}, {0x6, 0x4}, {0x0, 0x8}, {0x6, 0x9}, {0x1, 0x3}, {0x0, 0x2}, {0x7, 0x8}, {0x7, 0x4}, {0x1}, {0x0, 0xa}, {0x2, 0x5}, {0x7, 0x2}, {0x0, 0x3}, {0x1, 0x3}, {0x3, 0x8}, {0x1, 0x1}, {0x2, 0x2}, {0x4, 0x1}, {0x3, 0xa}, {0x1, 0x7}, {0x2, 0x5}, {0x6}, {0x0, 0x7}, {0x1, 0xa}, {0x0, 0x3}, {0x6, 0x6}, {0x1, 0x8}, {0x3, 0x4}, {0x5, 0x7}, {0x2, 0xa}, {0x7}, {0x5, 0x5}, {0x6, 0x6}, {0x4}, {0x0, 0x6}, {0x0, 0x5}, {0x4}, {0x5, 0x6}, {0x7, 0x1}, {0x1, 0x9}, {0x4, 0x9}, {0x1, 0x3}, {0x4, 0x1}, {0x4, 0x4}, {0x4, 0x6}, {0x4, 0x3}, {0x7, 0x3}, {0x7, 0x4}, {0x7, 0x6}, {0x4, 0x1}, {0x1, 0x1}, {0x6, 0x1}, {0x1, 0x1}, {0x3, 0x4}, {0x6}, {0x7, 0x5}, {0x1, 0xa}, {0x2, 0x7}, {0x7, 0x4}, {0x6, 0x4}, {0x7, 0x5}]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}, @NL80211_BAND_2GHZ={0x3c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x5, 0x3, 0x4, 0xb502, 0x1c0, 0xc, 0x2]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x200, 0x8, 0x6, 0x6, 0x7, 0xfff3, 0x6]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x7a}]}, @NL80211_BAND_2GHZ={0xac, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x40, 0x2, [{0x3, 0x3}, {0x4, 0x2}, {0x5, 0x9}, {0x0, 0x6}, {0x4, 0x5}, {0x3, 0x5}, {0x3}, {0x4, 0x4}, {0x7, 0x8}, {0x3, 0x7}, {0x3, 0x8}, {0x3, 0xa}, {0x0, 0x9}, {0x6}, {0x3, 0x6}, {0x4, 0x1}, {0x7, 0x6}, {0x7, 0x6}, {}, {0x6, 0x14}, {0x4}, {0x4, 0x1}, {0x0, 0x3}, {0x1, 0x5}, {0x0, 0x2}, {0x5, 0x4}, {0x6, 0x5}, {0x0, 0x5}, {0x7, 0x1}, {0x1, 0x3}, {0x4, 0x7}, {0x4, 0x8}, {0x1, 0x9}, {0x1, 0x5}, {0x3, 0x2}, {0x5}, {0x7, 0x1}, {0x1, 0x6}, {0x0, 0x7}, {0x0, 0x3}, {0x5, 0x4}, {0x5, 0xa}, {0x0, 0x7}, {0x2, 0x3}, {0x5, 0x4}, {0x1, 0x8}, {0x5, 0x4}, {0x6, 0x8}, {0x4, 0x2}, {0x2, 0xa}, {0x0, 0x8}, {0x4, 0x4}, {0x3, 0x6}, {0x4, 0x9}, {0x2, 0x6}, {0x2, 0xa}, {0x1, 0x1}, {0x1, 0x6}, {0x6, 0x3}, {0x1, 0x5}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x3, 0x4}, {0x5, 0x3}, {0x5, 0x8}, {0x1, 0x7}, {0x1, 0x7}, {0x1}, {0x0, 0x8}, {0x6, 0x5}, {0x1, 0x7}, {0x0, 0x1}, {0x4, 0x2}, {0x0, 0xa}, {0x4, 0x4}, {0x0, 0xa}, {0x0, 0x3}, {0x7, 0x8}, {0x7, 0x4}, {0x6, 0x2}, {0x1, 0x9}, {0x4, 0x8}, {0x1, 0x6}, {0x4, 0x1}, {0x7, 0x5}, {0x4, 0x7}, {0x2, 0x5}, {0x0, 0x8}, {0x1, 0xa}, {0x4, 0xa}, {0x0, 0x3}, {0x0, 0x3}, {0x0, 0x9}, {0x1, 0x3}, {0x0, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfff, 0x7, 0x5385, 0x8001, 0xf0e7, 0xfffe, 0x6, 0x1]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x7, 0x9, 0x40, 0x2, 0x8, 0x6]}}]}]}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x66}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x5}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf0}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}]}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x1}, 0x4)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

5m53.925830081s ago: executing program 4 (id=1036):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001d00)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x300f000, 0xe, 0x0, &(0x7f0000000080)="0069c2704ade28eddb0000200000", 0x0, 0x48b8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

5m53.232708399s ago: executing program 4 (id=1037):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1, 0x276, &(0x7f0000000840)="$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")
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41, 0x0, 0x4}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000008000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x81901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x200a, 0x0)

5m52.155300889s ago: executing program 4 (id=1040):
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0x40405515, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]})

5m51.513218838s ago: executing program 4 (id=1042):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
madvise(&(0x7f0000575000/0x1000)=nil, 0x1000, 0x1)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000540)={0x2, @sdr={0x4f565559, 0xfffffff7}})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

5m49.12404055s ago: executing program 38 (id=1042):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
madvise(&(0x7f0000575000/0x1000)=nil, 0x1000, 0x1)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000540)={0x2, @sdr={0x4f565559, 0xfffffff7}})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

5.620158354s ago: executing program 9 (id=2382):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000a40)="3b5250dd8df768c581177cc96346a125c5baecd7e46618851e723e8ef1628f8e5c9fff1954ad6617c17fd0658b4c494ab4b9c82de21662a0d7c3cafc01b397ad6c398c755561984e8ba92704585396a2101125bb2a4d000000611bc84796c8973cd160e90aafad5742f47771132af6fdeea669adfd5eda144f72d4", 0x7b, 0x20000080, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x2000000000000061)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

4.933843196s ago: executing program 9 (id=2387):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x69, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "fb4b144b82b8af00", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

4.754013442s ago: executing program 5 (id=2388):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x2c, r2, 0xa01, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @local}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4c800}, 0x40)

4.088103054s ago: executing program 5 (id=2392):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x400002, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001180)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x1a400000}, 0x18)
lsm_get_self_attr(0x69, 0x0, &(0x7f0000000080), 0x0)

3.899641198s ago: executing program 8 (id=2394):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8000f28, 0x0)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
unshare(0x2040400)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x7f, 0xe)
write(r0, 0x0, 0x0)

3.531900455s ago: executing program 9 (id=2395):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000b28000)=0x3)
pause()
fcntl$setsig(r3, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r4}], 0x2c, 0xffffffffffbffff8)
dup2(r3, r4)
fcntl$setown(r3, 0x8, r2)
tkill(r2, 0x13)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x1ffffffffffffd17, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

3.477277492s ago: executing program 5 (id=2396):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000040))
r2 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x40000)
readv(r2, &(0x7f0000000080)=[{&(0x7f0000000880)=""/97, 0x61}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)

3.476969194s ago: executing program 0 (id=2397):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000a40)="3b5250dd8df768c581177cc96346a125c5baecd7e46618851e723e8ef1628f8e5c9fff1954ad6617c17fd0658b4c494ab4b9c82de21662a0d7c3cafc01b397ad6c398c755561984e8ba92704585396a2101125bb2a4d000000611bc84796c8973cd160e90aafad5742f47771132af6fdeea669adfd5eda144f72d4", 0x7b, 0x20000080, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

3.442096761s ago: executing program 2 (id=2398):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[], 0x28}}, 0x0)

3.372923155s ago: executing program 8 (id=2399):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000002c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4", 0xcb}], 0x1, 0x0, 0x0, 0x7400}, 0x48090)

2.926272809s ago: executing program 0 (id=2400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=local'])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101042, 0x1)

2.904989055s ago: executing program 8 (id=2401):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x9a, &(0x7f0000000200)=ANY=[@ANYBLOB="0180c200000eaaaaaaaaaaaa86dd60f4000000641100fe8000000000000000000000000000bbfe8000000000000000000000000000aa4e200e22006490780200000001000000"], 0x0)

2.827016476s ago: executing program 2 (id=2402):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x2c, r2, 0xa01, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @local}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4c800}, 0x40)

2.366932694s ago: executing program 8 (id=2403):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x303, 0x3a}, "c4d65ab71f5ef2fe", "9e8ecc7bb5352776725e104757e7dc25c6519a85ef828f711330ff2bb17b5508", "dc5db43f", "80031f0000000200"}, 0x38)

2.343351773s ago: executing program 0 (id=2404):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="04010000", @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000f00001800d0001007564703a73797a30000000004400040020000100"], 0x104}}, 0x0)

2.265027707s ago: executing program 9 (id=2405):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x69, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "fb4b144b82b8af00", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2.159939437s ago: executing program 5 (id=2406):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_wakeup_irq', 0x0, 0xb)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000140)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})

2.111660091s ago: executing program 2 (id=2407):
socket(0x10, 0x3, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

1.762769109s ago: executing program 8 (id=2408):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000001480)={'syzkaller0\x00', 0xc101})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x97a3}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})

1.6491508s ago: executing program 0 (id=2409):
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x8000f28, 0x0)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
unshare(0x2040400)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x7f, 0xe)
write(0xffffffffffffffff, 0x0, 0x0)

1.424229166s ago: executing program 2 (id=2410):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000a40)="3b5250dd8df768c581177cc96346a125c5baecd7e46618851e723e8ef1628f8e5c9fff1954ad6617c17fd0658b4c494ab4b9c82de21662a0d7c3cafc01b397ad6c398c755561984e8ba92704585396a2101125bb2a4d000000611bc84796c8973cd160e90aafad5742f47771132af6fdeea669adfd5eda144f72d4", 0x7b, 0x20000080, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

1.092623496s ago: executing program 5 (id=2411):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000002c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4", 0xcb}], 0x1, 0x0, 0x0, 0x7400}, 0x48090)

944.847876ms ago: executing program 0 (id=2412):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[], 0x28}}, 0x0)

863.844476ms ago: executing program 9 (id=2413):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x9a, &(0x7f0000000200)=ANY=[@ANYBLOB="0180c200000eaaaaaaaaaaaa86dd60f4000000641100fe8000000000000000000000000000bbfe8000000000000000000000000000aa4e200e22006490780200000001000000"], 0x0)

696.982014ms ago: executing program 2 (id=2414):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=local'])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101042, 0x1)

584.803767ms ago: executing program 5 (id=2415):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000c80)='./file0\x00', 0x1004491, &(0x7f0000000f00)=ANY=[], 0xfe, 0x875, &(0x7f0000001000)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
openat2(0xffffffffffffff9c, &(0x7f0000000a40)='./file1\x00', &(0x7f0000000a80)={0x2040, 0x50, 0x1}, 0x18)

333.116978ms ago: executing program 8 (id=2416):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000040))
r2 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x40000)
readv(r2, &(0x7f0000000080)=[{&(0x7f0000000880)=""/97, 0x61}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)

330.27089ms ago: executing program 0 (id=2417):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x8, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x1)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000bc0)="1c111e", 0x3}], 0x1}}], 0x1, 0x0)

154.195824ms ago: executing program 9 (id=2418):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

0s ago: executing program 2 (id=2419):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="04010000", @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000f00001800d0001007564703a73797a30000000004400040020000100"], 0x104}}, 0x0)

kernel console output (not intermixed with test programs):

 from 0 to 512
[  841.677240][T10939] EXT4-fs (loop2): orphan cleanup on readonly fs
[  841.767928][T10939] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1734: bg 0: block 248: padding at end of block bitmap is not set
[  841.879235][T10939] Quota error (device loop2): write_blk: dquota write failed
[  841.887662][T10939] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  841.898316][T10939] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1734: Failed to acquire dquot type 1
[  841.950343][T10939] EXT4-fs (loop2): 1 truncate cleaned up
[  842.026973][T10939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  842.064681][T10950] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1738'.
[  842.424169][ T1873] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  842.483999][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  842.682971][ T1873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  842.694559][ T1873] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  842.753892][T10956] Invalid logical block size (34816)
[  842.762638][ T1873] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  842.772384][ T1873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  842.780852][ T1873] usb 6-1: SerialNumber: syz
[  842.989515][T10958] xt_limit: Overflow, try lower: 128/2147483648
[  843.133928][ T1873] usb 6-1: 0:2 : does not exist
[  843.243479][ T1873] usb 6-1: USB disconnect, device number 30
[  843.270620][   T30] audit: type=1326 audit(1754190178.755:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10959 comm="syz.2.1741" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e539 code=0x0
[  843.343016][T10960] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1741'.
[  844.681038][ T5873] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  844.854855][T10981] loop2: detected capacity change from 0 to 512
[  844.959784][ T5873] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  844.961070][T10981] EXT4-fs (loop2): orphan cleanup on readonly fs
[  844.971305][ T5873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  844.990563][T10981] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1751: bg 0: block 248: padding at end of block bitmap is not set
[  844.992649][T10981] Quota error (device loop2): write_blk: dquota write failed
[  845.007504][ T5873] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  845.013205][T10981] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  845.021990][ T5873] usb 6-1: config 1 has no interface number 1
[  845.032303][T10981] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1751: Failed to acquire dquot type 1
[  845.038788][ T5873] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  845.085610][T10981] EXT4-fs (loop2): 1 truncate cleaned up
[  845.095989][T10981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  845.148331][ T5873] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  845.158023][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  845.166506][ T5873] usb 6-1: Product: syz
[  845.171015][ T5873] usb 6-1: Manufacturer: syz
[  845.184534][ T5873] usb 6-1: SerialNumber: syz
[  845.571251][ T5873] usb 6-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  845.580172][ T5873] usb 6-1: MIDIStreaming interface descriptor not found
[  845.626054][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  845.730460][ T5873] usb 6-1: USB disconnect, device number 31
[  845.986782][T10991] xt_limit: Overflow, try lower: 128/2147483648
[  846.207648][T10995] Invalid logical block size (34816)
[  846.410473][T10999] loop0: detected capacity change from 0 to 512
[  846.509636][ T5873] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  846.536536][T10999] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1758: bg 0: block 248: padding at end of block bitmap is not set
[  846.603497][T10999] Quota error (device loop0): write_blk: dquota write failed
[  846.612016][T10999] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  846.622691][T10999] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1758: Failed to acquire dquot type 1
[  846.705391][ T5873] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  846.716272][ T5873] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  846.728168][T10999] EXT4-fs (loop0): 1 truncate cleaned up
[  846.742869][T10999] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  846.758461][T10999] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  846.777945][ T5873] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  846.788293][ T5873] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  846.796756][ T5873] usb 9-1: SerialNumber: syz
[  846.976014][T10999] syzkaller1: entered promiscuous mode
[  846.982120][T10999] syzkaller1: entered allmulticast mode
[  847.106606][ T5873] usb 9-1: 0:2 : does not exist
[  847.173574][T10999] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1758'.
[  847.233878][   T30] audit: type=1326 audit(1754190182.901:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11007 comm="syz.5.1761" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e539 code=0x0
[  847.247008][ T5873] usb 9-1: USB disconnect, device number 30
[  847.297441][T11008] netlink: 128 bytes leftover after parsing attributes in process `syz.5.1761'.
[  847.508920][T11016] openvswitch: netlink: Mixed IPv4 and IPv6 tunnel attributes
[  847.755971][ T9020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  848.339333][T11021] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1766'.
[  848.519805][T11025] loop0: detected capacity change from 0 to 1024
[  848.632842][T11025] FAULT_INJECTION: forcing a failure.
[  848.632842][T11025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  848.647022][T11025] CPU: 1 UID: 0 PID: 11025 Comm: syz.0.1765 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  848.647214][T11025] Tainted: [W]=WARN
[  848.647274][T11025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  848.647365][T11025] Call Trace:
[  848.647421][T11025]  <TASK>
[  848.647481][T11025]  __dump_stack+0x26/0x30
[  848.647682][T11025]  dump_stack_lvl+0x1df/0x270
[  848.647876][T11025]  dump_stack+0x1e/0x25
[  848.648051][T11025]  should_fail_ex+0x7dc/0x8a0
[  848.648279][T11025]  should_fail+0x2a/0x40
[  848.648469][T11025]  should_fail_usercopy+0x2e/0x40
[  848.648616][T11025]  strncpy_from_user+0x38/0x470
[  848.648791][T11025]  ? kmsan_get_metadata+0xfb/0x160
[  848.648956][T11025]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  848.649161][T11025]  getname_flags+0x179/0xac0
[  848.649355][T11025]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  848.649585][T11025]  user_path_at+0x45/0x3d0
[  848.649771][T11025]  ? __se_sys_mount+0x622/0x7d0
[  848.649928][T11025]  __se_sys_mount+0x645/0x7d0
[  848.650105][T11025]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  848.650348][T11025]  __ia32_sys_mount+0xe2/0x150
[  848.650531][T11025]  ia32_sys_call+0x2733/0x42c0
[  848.650677][T11025]  __do_fast_syscall_32+0xb0/0x150
[  848.650855][T11025]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  848.651028][T11025]  do_fast_syscall_32+0x38/0x80
[  848.651196][T11025]  do_SYSENTER_32+0x1f/0x30
[  848.651355][T11025]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  848.651545][T11025] RIP: 0023:0xf7fc5539
[  848.651654][T11025] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  848.651784][T11025] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 0000000000000015
[  848.651927][T11025] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800009c0
[  848.652032][T11025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  848.652119][T11025] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  848.652207][T11025] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  848.652298][T11025] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  848.652423][T11025]  </TASK>
[  849.265413][T11035] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1770'.
[  849.813640][T11040] Invalid logical block size (34816)
[  850.021408][T11047] FAULT_INJECTION: forcing a failure.
[  850.021408][T11047] name failslab, interval 1, probability 0, space 0, times 0
[  850.034925][T11047] CPU: 0 UID: 0 PID: 11047 Comm: syz.8.1775 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  850.035126][T11047] Tainted: [W]=WARN
[  850.035183][T11047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  850.035276][T11047] Call Trace:
[  850.035334][T11047]  <TASK>
[  850.035394][T11047]  __dump_stack+0x26/0x30
[  850.035580][T11047]  dump_stack_lvl+0x1df/0x270
[  850.035775][T11047]  dump_stack+0x1e/0x25
[  850.035951][T11047]  should_fail_ex+0x7dc/0x8a0
[  850.036200][T11047]  should_failslab+0x15b/0x200
[  850.036372][T11047]  kmem_cache_alloc_node_noprof+0xf3/0xf00
[  850.036561][T11047]  ? __alloc_skb+0x1e0/0x7d0
[  850.036718][T11047]  ? kmsan_get_metadata+0xfb/0x160
[  850.036886][T11047]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  850.037064][T11047]  __alloc_skb+0x1e0/0x7d0
[  850.037230][T11047]  netlink_alloc_large_skb+0xa5/0x280
[  850.037404][T11047]  netlink_sendmsg+0xaea/0x1250
[  850.037612][T11047]  ? __pfx_netlink_sendmsg+0x10/0x10
[  850.037784][T11047]  ? __pfx_netlink_sendmsg+0x10/0x10
[  850.037965][T11047]  __sock_sendmsg+0x330/0x3d0
[  850.038188][T11047]  ____sys_sendmsg+0x7e0/0xd80
[  850.038394][T11047]  ___sys_sendmsg+0x271/0x3b0
[  850.038573][T11047]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  850.038752][T11047]  ? __rcu_read_unlock+0x6d/0xd0
[  850.038917][T11047]  ? __fget_files+0x3b4/0x4a0
[  850.039090][T11047]  ? __fget_files+0x3b9/0x4a0
[  850.039267][T11047]  ? kmsan_get_metadata+0xfb/0x160
[  850.039435][T11047]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  850.039614][T11047]  __sys_sendmsg+0x1aa/0x300
[  850.039813][T11047]  __ia32_compat_sys_sendmsg+0xa4/0x100
[  850.040021][T11047]  ia32_sys_call+0x3692/0x42c0
[  850.040165][T11047]  __do_fast_syscall_32+0xb0/0x150
[  850.040341][T11047]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  850.040510][T11047]  do_fast_syscall_32+0x38/0x80
[  850.040679][T11047]  do_SYSENTER_32+0x1f/0x30
[  850.040846][T11047]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  850.041034][T11047] RIP: 0023:0xf708e539
[  850.041140][T11047] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  850.041286][T11047] RSP: 002b:00000000f505d55c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[  850.041431][T11047] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000000
[  850.041534][T11047] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  850.041632][T11047] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  850.041726][T11047] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  850.041821][T11047] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  850.041960][T11047]  </TASK>
[  850.774719][T11052] openvswitch: netlink: Mixed IPv4 and IPv6 tunnel attributes
[  850.986089][   T30] audit: type=1326 audit(1754190186.849:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11053 comm="syz.2.1778" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e539 code=0x0
[  851.047559][T11057] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1778'.
[  851.802016][T11065] program syz.0.1782 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  852.117436][T11068] loop5: detected capacity change from 0 to 1024
[  852.228076][T11068] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5
[  852.238823][T11068] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  852.248825][T11068] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1785: Failed to acquire dquot type 0
[  852.285816][ T5873] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  852.319206][T11068] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  852.335851][T11068] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #13: comm syz.5.1785: corrupted inode contents
[  852.376329][T11068] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #13: comm syz.5.1785: mark_inode_dirty error
[  852.426441][T11068] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #13: comm syz.5.1785: corrupted inode contents
[  852.449176][T11068] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.1785: mark_inode_dirty error
[  852.476176][T11068] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #13: comm syz.5.1785: corrupted inode contents
[  852.508376][T11076] loop8: detected capacity change from 0 to 64
[  852.563155][T11068] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  852.575182][T11078] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1787'.
[  852.597419][ T1873] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  852.600628][ T5873] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  852.615326][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  852.623664][ T5873] usb 1-1: Product: syz
[  852.629020][ T5873] usb 1-1: Manufacturer: syz
[  852.633907][ T5873] usb 1-1: SerialNumber: syz
[  852.636001][T11068] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #13: comm syz.5.1785: corrupted inode contents
[  852.665185][T11068] EXT4-fs error (device loop5): ext4_truncate:4597: inode #13: comm syz.5.1785: mark_inode_dirty error
[  852.677928][T11068] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  852.693393][ T5873] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  852.753367][ T6414] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  852.849177][T11068] EXT4-fs (loop5): 1 truncate cleaned up
[  852.865286][T11068] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  852.892239][ T1873] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  852.901808][ T1873] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  852.912386][ T1873] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  852.922469][ T1873] usb 3-1: config 1 has no interface number 1
[  852.928878][ T1873] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  852.990864][T11082] tmpfs: Bad value for 'grpquota_inode_hardlimit'
[  853.092673][T11068] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  853.159934][ T1873] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  853.169694][ T1873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  853.181480][ T1873] usb 3-1: Product: syz
[  853.185938][ T1873] usb 3-1: Manufacturer: syz
[  853.192155][ T1873] usb 3-1: SerialNumber: syz
[  853.628394][T11066] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  853.638759][T11066] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  853.649070][T11066] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  853.664236][T11066] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  853.671162][T11066] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  853.864428][ T6414] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  853.873100][ T6414] ath9k_htc: Failed to initialize the device
[  853.881895][ T7612] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  853.931747][ T1873] usb 3-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  853.939667][ T1873] usb 3-1: MIDIStreaming interface descriptor not found
[  854.176018][ T6414] usb 1-1: ath9k_htc: USB layer deinitialized
[  854.381078][ T1873] usb 3-1: USB disconnect, device number 36
[  854.484874][    T9] usb 1-1: USB disconnect, device number 48
[  855.033561][ T5873] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  855.068463][T11100] openvswitch: netlink: Mixed IPv4 and IPv6 tunnel attributes
[  855.269030][ T5873] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  855.280759][ T5873] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  855.291336][ T5873] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  855.300814][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  855.344153][T11095] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  855.365412][ T5873] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  855.554972][ T5826] Bluetooth: hci4: command 0x0c1a tx timeout
[  855.560445][ T5106] Bluetooth: hci1: command 0x040f tx timeout
[  855.579366][ T5873] usb 6-1: USB disconnect, device number 32
[  855.625707][ T5106] Bluetooth: hci2: command 0x0c1a tx timeout
[  855.626017][ T5826] Bluetooth: hci0: command 0x0406 tx timeout
[  855.631940][ T5106] Bluetooth: hci3: command 0x0406 tx timeout
[  856.187936][T11109] netlink: 156 bytes leftover after parsing attributes in process `syz.8.1796'.
[  856.559831][T11116] loop2: detected capacity change from 0 to 8
[  856.622900][T11116] FAULT_INJECTION: forcing a failure.
[  856.622900][T11116] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  856.637227][T11116] CPU: 1 UID: 0 PID: 11116 Comm: syz.2.1799 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  856.637406][T11116] Tainted: [W]=WARN
[  856.637458][T11116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  856.637540][T11116] Call Trace:
[  856.637601][T11116]  <TASK>
[  856.637651][T11116]  __dump_stack+0x26/0x30
[  856.637815][T11116]  dump_stack_lvl+0x1df/0x270
[  856.637985][T11116]  dump_stack+0x1e/0x25
[  856.638138][T11116]  should_fail_ex+0x7dc/0x8a0
[  856.638339][T11116]  should_fail_alloc_page+0x222/0x240
[  856.638499][T11116]  __alloc_frozen_pages_noprof+0x30f/0xf00
[  856.638675][T11116]  alloc_pages_mpol+0x328/0x860
[  856.638840][T11116]  vma_alloc_folio_noprof+0x382/0x870
[  856.639014][T11116]  handle_mm_fault+0xb11e/0xe5e0
[  856.639164][T11116]  ? kmsan_get_metadata+0xfb/0x160
[  856.639308][T11116]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  856.639556][T11116]  do_user_addr_fault+0xfe1/0x2560
[  856.639751][T11116]  exc_page_fault+0x68/0xb0
[  856.639884][T11116]  asm_exc_page_fault+0x2b/0x30
[  856.640019][T11116] RIP: 0010:compat_filldir+0x552/0xe10
[  856.640176][T11116] Code: da ff 49 83 c4 04 c7 00 00 00 00 00 48 8b 9d 60 ff ff ff 89 5d c8 48 8b 85 58 ff ff ff 48 85 c0 4c 8b 7d 90 0f 85 8b 06 00 00 <41> 89 1c 24 48 85 c0 0f 85 99 06 00 00 48 8d 75 c8 ba 04 00 00 00
[  856.640296][T11116] RSP: 0018:ffff8880436e7b10 EFLAGS: 00050246
[  856.640411][T11116] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000014fe83
[  856.640495][T11116] RDX: ffff8880432e7bb0 RSI: 0000000000000001 RDI: ffff8880436e7bb0
[  856.640591][T11116] RBP: ffff8880436e7be8 R08: ffffea000000000f R09: 0000000000000000
[  856.640683][T11116] R10: ffff888042ee7bb0 R11: 00000000abcd0100 R12: 0000000080001fc4
[  856.640778][T11116] R13: ffff8880436e7e30 R14: ffffffff91e5f118 R15: ffff8880436e7e38
[  856.640952][T11116]  ? __pfx_compat_filldir+0x10/0x10
[  856.641098][T11116]  squashfs_readdir+0x3bb/0x1bd0
[  856.641246][T11116]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  856.641408][T11116]  ? kmsan_get_metadata+0xfb/0x160
[  856.641587][T11116]  ? __pfx_squashfs_readdir+0x10/0x10
[  856.641731][T11116]  iterate_dir+0x719/0x920
[  856.641880][T11116]  __ia32_compat_sys_getdents+0x1df/0x600
[  856.642039][T11116]  ? __pfx_compat_filldir+0x10/0x10
[  856.642199][T11116]  ia32_sys_call+0x2eac/0x42c0
[  856.642329][T11116]  __do_fast_syscall_32+0xb0/0x150
[  856.642495][T11116]  do_fast_syscall_32+0x38/0x80
[  856.642641][T11116]  do_SYSENTER_32+0x1f/0x30
[  856.642786][T11116]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  856.642951][T11116] RIP: 0023:0xf707e539
[  856.643056][T11116] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  856.643174][T11116] RSP: 002b:00000000f506e55c EFLAGS: 00000206 ORIG_RAX: 000000000000008d
[  856.643297][T11116] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001fc0
[  856.643389][T11116] RDX: 00000000000000b8 RSI: 0000000000000000 RDI: 0000000000000000
[  856.643470][T11116] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  856.643549][T11116] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  856.643632][T11116] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  856.643744][T11116]  </TASK>
[  857.721023][    T9] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[  857.837470][T11123] loop8: detected capacity change from 0 to 4096
[  857.908936][    T9] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  857.918419][    T9] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  857.929176][    T9] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  857.938607][    T9] usb 6-1: config 1 has no interface number 1
[  857.945170][    T9] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  858.001000][T11128] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1803'.
[  858.041214][T11129] loop0: detected capacity change from 0 to 64
[  858.162255][    T9] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  858.172670][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  858.181297][    T9] usb 6-1: Product: syz
[  858.185761][    T9] usb 6-1: Manufacturer: syz
[  858.190815][    T9] usb 6-1: SerialNumber: syz
[  858.289608][   T30] audit: type=1800 audit(1754190194.502:66): pid=11130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1804" name="file1" dev="loop0" ino=5 res=0 errno=0
[  858.643388][    T9] usb 6-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  858.652551][    T9] usb 6-1: MIDIStreaming interface descriptor not found
[  858.832873][    T9] usb 6-1: USB disconnect, device number 33
[  859.845950][T11145] loop2: detected capacity change from 0 to 2048
[  859.896310][T11145] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  859.935627][T11145] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  859.944101][T11145] UDF-fs: Scanning with blocksize 512 failed
[  860.013557][T11145] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  860.063451][   T30] audit: type=1800 audit(1754190196.381:67): pid=11145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1808" name="bus" dev="loop2" ino=851 res=0 errno=0
[  860.125993][T11147] netlink: 156 bytes leftover after parsing attributes in process `syz.8.1810'.
[  860.184466][T11149] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1811'.
[  860.204356][T11149] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1811'.
[  860.215964][T11149] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1811'.
[  861.084442][    T9] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  861.204614][T11159] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1817'.
[  861.319965][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  861.330977][    T9] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  861.340379][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  861.436753][    T9] usb 3-1: config 0 descriptor??
[  861.473518][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[  861.908513][    T9] pwc: recv_control_msg error -32 req 02 val 2b00
[  861.959396][    T9] pwc: recv_control_msg error -32 req 02 val 2700
[  861.970785][    T9] pwc: recv_control_msg error -32 req 02 val 2c00
[  862.028131][    T9] pwc: recv_control_msg error -32 req 04 val 1000
[  862.249164][ T1873] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  862.456007][ T1873] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  862.465607][ T1873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  862.476367][ T1873] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  862.488993][ T1873] usb 6-1: config 1 has no interface number 1
[  862.496199][ T1873] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  862.523766][    T9] pwc: recv_control_msg error -32 req 04 val 1400
[  862.554083][    T9] pwc: recv_control_msg error -32 req 02 val 2000
[  862.591762][    T9] pwc: recv_control_msg error -32 req 02 val 2100
[  862.617910][    T9] pwc: recv_control_msg error -32 req 04 val 1500
[  862.641779][    T9] pwc: recv_control_msg error -32 req 02 val 2500
[  862.668267][ T1873] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  862.677999][ T1873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  862.686503][ T1873] usb 6-1: Product: syz
[  862.690961][ T1873] usb 6-1: Manufacturer: syz
[  862.696546][ T1873] usb 6-1: SerialNumber: syz
[  862.716371][    T9] pwc: recv_control_msg error -32 req 02 val 2400
[  862.742215][    T9] pwc: recv_control_msg error -71 req 02 val 2600
[  862.761512][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[  862.778254][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[  862.819589][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[  862.868428][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[  862.883912][    T9] pwc: Registered as video103.
[  862.893492][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input61
[  862.953950][    T9] usb 3-1: USB disconnect, device number 37
[  863.078857][ T1873] usb 6-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  863.086837][ T1873] usb 6-1: MIDIStreaming interface descriptor not found
[  863.235994][ T1873] usb 6-1: USB disconnect, device number 34
[  863.699575][T11184] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1824'.
[  863.952908][T11182] loop8: detected capacity change from 0 to 4096
[  863.973293][T11182] ntfs3: Unknown parameter ''
[  864.278001][T11188] 9pnet_fd: Insufficient options for proto=fd
[  864.368748][T11182] tmpfs: Bad value for 'mpol'
[  865.862627][ T6414] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  865.871577][ T5873] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  865.901241][T11214] netlink: 156 bytes leftover after parsing attributes in process `syz.8.1838'.
[  866.056512][ T5872] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  866.084596][ T6414] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  866.095681][ T6414] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  866.126684][ T5873] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  866.137616][ T5873] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  866.154629][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  866.172375][ T6414] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  866.182108][ T6414] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  866.190883][ T6414] usb 1-1: SerialNumber: syz
[  866.201158][ T5873] usb 6-1: config 0 descriptor??
[  866.238400][ T5873] pwc: Askey VC010 type 2 USB webcam detected.
[  866.363417][ T5872] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  866.373527][ T5872] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  866.385010][ T5872] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  866.394765][ T5872] usb 3-1: config 1 has no interface number 1
[  866.401454][ T5872] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  866.468066][ T6414] usb 1-1: 0:2 : does not exist
[  866.515846][ T5872] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  866.526007][ T5872] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  866.540958][ T5872] usb 3-1: Product: syz
[  866.547711][ T5872] usb 3-1: Manufacturer: syz
[  866.552925][ T5872] usb 3-1: SerialNumber: syz
[  866.584874][ T6414] usb 1-1: USB disconnect, device number 49
[  866.668449][T11218] loop8: detected capacity change from 0 to 1024
[  866.694989][ T5873] pwc: recv_control_msg error -32 req 02 val 2b00
[  866.707773][ T5873] pwc: recv_control_msg error -32 req 02 val 2700
[  866.719590][ T5873] pwc: recv_control_msg error -32 req 02 val 2c00
[  866.770931][ T5873] pwc: recv_control_msg error -32 req 04 val 1000
[  866.788375][T11218] Quota error (device loop8): do_check_range: Getting block 64 out of range 1-5
[  866.798386][T11218] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0
[  866.808071][T11218] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.1840: Failed to acquire dquot type 0
[  866.837265][T11218] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  866.852869][T11218] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #13: comm syz.8.1840: corrupted inode contents
[  866.873620][T11218] EXT4-fs error (device loop8): ext4_dirty_inode:6459: inode #13: comm syz.8.1840: mark_inode_dirty error
[  866.891978][T11218] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #13: comm syz.8.1840: corrupted inode contents
[  866.935745][T11218] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #13: comm syz.8.1840: mark_inode_dirty error
[  866.949359][T11218] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #13: comm syz.8.1840: corrupted inode contents
[  866.976293][T11218] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  867.013865][T11218] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #13: comm syz.8.1840: corrupted inode contents
[  867.074984][T11218] EXT4-fs error (device loop8): ext4_truncate:4597: inode #13: comm syz.8.1840: mark_inode_dirty error
[  867.091026][ T5872] usb 3-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  867.099508][ T5872] usb 3-1: MIDIStreaming interface descriptor not found
[  867.170803][T11218] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  867.210003][T11218] EXT4-fs (loop8): 1 truncate cleaned up
[  867.222657][T11218] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  867.285205][ T5873] pwc: recv_control_msg error -32 req 04 val 1400
[  867.305635][ T5872] usb 3-1: USB disconnect, device number 38
[  867.343142][ T5873] pwc: recv_control_msg error -32 req 02 val 2000
[  867.371819][ T5873] pwc: recv_control_msg error -32 req 02 val 2100
[  867.387516][ T5873] pwc: recv_control_msg error -32 req 04 val 1500
[  867.446947][ T5873] pwc: recv_control_msg error -32 req 02 val 2500
[  867.478102][ T5873] pwc: recv_control_msg error -71 req 02 val 2400
[  867.498059][ T5873] pwc: recv_control_msg error -71 req 02 val 2600
[  867.528100][ T5873] pwc: recv_control_msg error -71 req 02 val 2900
[  867.549976][ T5873] pwc: recv_control_msg error -71 req 02 val 2800
[  867.568740][ T5873] pwc: recv_control_msg error -71 req 04 val 1100
[  867.623219][ T5873] pwc: recv_control_msg error -71 req 04 val 1200
[  867.651146][ T5873] pwc: Registered as video103.
[  867.660357][ T5873] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input63
[  867.691184][ T5873] usb 6-1: USB disconnect, device number 35
[  867.796778][ T1873] usb 9-1: new full-speed USB device number 31 using dummy_hcd
[  867.972324][ T1873] usb 9-1: config 0 has an invalid interface number: 133 but max is 0
[  867.981159][ T1873] usb 9-1: config 0 has no interface number 0
[  868.002508][ T1873] usb 9-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  868.012603][ T1873] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  868.021116][ T1873] usb 9-1: Product: syz
[  868.025549][ T1873] usb 9-1: Manufacturer: syz
[  868.030651][ T1873] usb 9-1: SerialNumber: syz
[  868.227217][ T1873] usb 9-1: config 0 descriptor??
[  868.482553][T11218] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000.
[  869.475255][T11232] loop2: detected capacity change from 0 to 4096
[  869.511940][T11232] ntfs3: Unknown parameter ''
[  869.798263][ T1873] keyspan 9-1:0.133: Keyspan 1 port adapter converter detected
[  869.809561][ T1873] keyspan 9-1:0.133: found no endpoint descriptor for endpoint 81
[  869.818008][ T1873] keyspan 9-1:0.133: found no endpoint descriptor for endpoint 1
[  869.826707][ T1873] keyspan 9-1:0.133: found no endpoint descriptor for endpoint 2
[  869.878269][ T8780] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  869.942599][ T1873] usb 9-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  869.965871][T11232] tmpfs: Bad value for 'mpol'
[  870.068074][ T1873] usb 9-1: USB disconnect, device number 31
[  870.136173][ T1873] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  870.153591][ T1873] keyspan 9-1:0.133: device disconnected
[  870.557843][T11248] loop0: detected capacity change from 0 to 256
[  870.640077][T11248] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  870.651169][T11248] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  870.695476][ T5873] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  870.741551][T11248] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  870.869896][ T5873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  870.880936][ T5873] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  870.966853][ T5873] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  870.976892][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  870.985319][ T5873] usb 6-1: SerialNumber: syz
[  871.014078][ T5872] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  871.211393][ T5872] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  871.225862][ T5872] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  871.238595][ T5872] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  871.248210][ T5872] usb 3-1: config 1 has no interface number 1
[  871.254833][ T5872] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  871.366627][ T5873] usb 6-1: 0:2 : does not exist
[  871.505363][ T5873] usb 6-1: USB disconnect, device number 36
[  871.525658][ T5872] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  871.535675][ T5872] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  871.544125][ T5872] usb 3-1: Product: syz
[  871.548572][ T5872] usb 3-1: Manufacturer: syz
[  871.553601][ T5872] usb 3-1: SerialNumber: syz
[  871.616033][ T1873] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[  871.820074][ T1873] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  871.831143][ T1873] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  871.840682][ T1873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  871.930495][ T5872] usb 3-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  871.941930][ T5872] usb 3-1: MIDIStreaming interface descriptor not found
[  871.945138][ T1873] usb 1-1: config 0 descriptor??
[  872.043097][ T1873] pwc: Askey VC010 type 2 USB webcam detected.
[  872.087631][ T5872] usb 3-1: USB disconnect, device number 39
[  872.394352][ T1873] pwc: recv_control_msg error -32 req 02 val 2b00
[  872.429145][ T1873] pwc: recv_control_msg error -32 req 02 val 2700
[  872.444626][ T1873] pwc: recv_control_msg error -32 req 02 val 2c00
[  872.490921][ T1873] pwc: recv_control_msg error -32 req 04 val 1000
[  872.896477][T11270] loop8: detected capacity change from 0 to 1024
[  872.916795][ T1873] pwc: recv_control_msg error -32 req 04 val 1400
[  872.940344][ T1873] pwc: recv_control_msg error -32 req 02 val 2000
[  872.957286][ T1873] pwc: recv_control_msg error -32 req 02 val 2100
[  873.019421][ T1873] pwc: recv_control_msg error -32 req 04 val 1500
[  873.030574][ T1873] pwc: recv_control_msg error -71 req 02 val 2500
[  873.048776][ T1873] pwc: recv_control_msg error -71 req 02 val 2400
[  873.057498][ T1873] pwc: recv_control_msg error -71 req 02 val 2600
[  873.087448][ T1873] pwc: recv_control_msg error -71 req 02 val 2900
[  873.105383][ T1873] pwc: recv_control_msg error -71 req 02 val 2800
[  873.135065][ T1873] pwc: recv_control_msg error -71 req 04 val 1100
[  873.157671][ T1873] pwc: recv_control_msg error -71 req 04 val 1200
[  873.188468][ T1873] pwc: Registered as video103.
[  873.196244][ T1873] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input65
[  873.275794][ T1873] usb 1-1: USB disconnect, device number 50
[  873.300075][ T5872] usb 9-1: new high-speed USB device number 32 using dummy_hcd
[  873.403585][T11274] loop5: detected capacity change from 0 to 1024
[  873.525226][ T5872] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  873.537082][ T5872] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  873.546624][ T5872] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  873.717667][ T5872] usb 9-1: config 0 descriptor??
[  873.846453][ T4347] hfsplus: b-tree write err: -5, ino 3
[  873.980478][T11278] loop0: detected capacity change from 0 to 64
[  874.171966][   T30] audit: type=1326 audit(1754190211.173:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11277 comm="syz.0.1863" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x0
[  874.188162][ T5872] keytouch 0003:0926:3333.0009: fixing up Keytouch IEC report descriptor
[  874.218507][ T5872] input: HID 0926:3333 as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:0926:3333.0009/input/input66
[  874.420850][ T5872] keytouch 0003:0926:3333.0009: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.8-1/input0
[  874.594754][T11286] loop5: detected capacity change from 0 to 256
[  874.659597][T11286] vfat: Unknown parameter 'rodr'
[  874.913571][ T5872] usb 9-1: USB disconnect, device number 32
[  874.963596][T11299] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1866'.
[  875.877267][ T1873] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[  875.928623][T11313] netlink: 156 bytes leftover after parsing attributes in process `syz.5.1872'.
[  876.100519][ T1873] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  876.111417][ T1873] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  876.126778][ T5872] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[  876.183367][ T1873] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  876.199756][ T1873] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  876.209779][ T1873] usb 9-1: SerialNumber: syz
[  876.314556][ T5872] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  876.324210][ T5872] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  876.334921][ T5872] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  876.344400][ T5872] usb 1-1: config 1 has no interface number 1
[  876.350818][ T5872] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  876.469062][ T1873] usb 9-1: 0:2 : does not exist
[  876.502823][ T5872] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  876.512815][ T5872] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  876.521220][ T5872] usb 1-1: Product: syz
[  876.525797][ T5872] usb 1-1: Manufacturer: syz
[  876.530678][ T5872] usb 1-1: SerialNumber: syz
[  876.607014][ T1873] usb 9-1: USB disconnect, device number 33
[  877.000774][ T5872] usb 1-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  877.008641][ T5872] usb 1-1: MIDIStreaming interface descriptor not found
[  877.145585][ T5872] usb 1-1: USB disconnect, device number 51
[  877.251485][T11324] loop2: detected capacity change from 0 to 1024
[  877.309575][T11324] hfsplus: Unknown parameter '��������00000000000000000000'
[  877.910852][T11333] loop0: detected capacity change from 0 to 1024
[  878.011406][T11333] FAULT_INJECTION: forcing a failure.
[  878.011406][T11333] name failslab, interval 1, probability 0, space 0, times 0
[  878.024936][T11333] CPU: 0 UID: 0 PID: 11333 Comm: syz.0.1880 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  878.025150][T11333] Tainted: [W]=WARN
[  878.025204][T11333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  878.025290][T11333] Call Trace:
[  878.025342][T11333]  <TASK>
[  878.025404][T11333]  __dump_stack+0x26/0x30
[  878.025581][T11333]  dump_stack_lvl+0x1df/0x270
[  878.025786][T11333]  dump_stack+0x1e/0x25
[  878.025949][T11333]  should_fail_ex+0x7dc/0x8a0
[  878.026189][T11333]  should_failslab+0x15b/0x200
[  878.026360][T11333]  kmem_cache_alloc_noprof+0xf0/0xec0
[  878.026551][T11333]  ? hfsplus_alloc_attr_entry+0x4b/0x60
[  878.026749][T11333]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  878.026920][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.027095][T11333]  hfsplus_alloc_attr_entry+0x4b/0x60
[  878.027283][T11333]  __hfsplus_getxattr+0x2b3/0x1020
[  878.027474][T11333]  ? kmsan_get_metadata+0x51/0x160
[  878.027635][T11333]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  878.027804][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.027966][T11333]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  878.028210][T11333]  ? __msan_memcpy+0x108/0x1c0
[  878.028427][T11333]  hfsplus_getxattr+0x240/0x3f0
[  878.028630][T11333]  hfsplus_security_getxattr+0x53/0x70
[  878.028830][T11333]  ? __pfx_hfsplus_security_getxattr+0x10/0x10
[  878.029048][T11333]  __vfs_getxattr+0x77d/0x7d0
[  878.029260][T11333]  cap_inode_need_killpriv+0x5a/0xf0
[  878.029443][T11333]  security_inode_need_killpriv+0xb4/0x500
[  878.029624][T11333]  file_remove_privs_flags+0x2ad/0x8b0
[  878.029806][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.029962][T11333]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  878.030165][T11333]  file_remove_privs+0x30/0x40
[  878.030370][T11333]  __generic_file_write_iter+0x9a/0x460
[  878.030613][T11333]  generic_file_write_iter+0x131/0x980
[  878.030812][T11333]  ? __rcu_read_unlock+0x6d/0xd0
[  878.030974][T11333]  ? aa_file_perm+0x24c/0x18d0
[  878.031182][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.031342][T11333]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  878.031523][T11333]  ? do_iter_readv_writev+0x41/0xba0
[  878.031705][T11333]  ? filter_irq_stacks+0x49/0x190
[  878.031866][T11333]  ? stack_depot_save_flags+0x35/0x7b0
[  878.032067][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.032224][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.032387][T11333]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  878.032634][T11333]  ? __pfx_generic_file_write_iter+0x10/0x10
[  878.032834][T11333]  do_iter_readv_writev+0x94a/0xba0
[  878.033030][T11333]  ? __pfx_generic_file_write_iter+0x10/0x10
[  878.033236][T11333]  ? __pfx_generic_file_write_iter+0x10/0x10
[  878.033448][T11333]  vfs_writev+0x52a/0x1500
[  878.033627][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.033837][T11333]  ? kmsan_get_metadata+0xfb/0x160
[  878.033998][T11333]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  878.034176][T11333]  __ia32_compat_sys_pwritev2+0x43d/0x6b0
[  878.034418][T11333]  ia32_sys_call+0x2f92/0x42c0
[  878.034575][T11333]  __do_fast_syscall_32+0xb0/0x150
[  878.034751][T11333]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  878.034919][T11333]  do_fast_syscall_32+0x38/0x80
[  878.035097][T11333]  do_SYSENTER_32+0x1f/0x30
[  878.035261][T11333]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  878.035474][T11333] RIP: 0023:0xf7fc5539
[  878.035586][T11333] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  878.035725][T11333] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 000000000000017b
[  878.035864][T11333] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  878.035964][T11333] RDX: 0000000000000001 RSI: 0000000000005405 RDI: 0000000000000000
[  878.036058][T11333] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  878.036147][T11333] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  878.036240][T11333] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  878.036367][T11333]  </TASK>
[  878.055549][T11334] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551609)
[  878.072207][T11333] hfsplus: can't allocate xattr entry
[  878.076175][T11334] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[  878.082667][T11333] hfsplus: extend alloc file! (8192,63991,0)
[  879.005741][T11343] program syz.8.1882 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  879.123757][ T5872] usb 3-1: new full-speed USB device number 40 using dummy_hcd
[  879.327767][ T5872] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  879.339303][ T5872] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  879.352817][ T5872] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  879.362376][ T5872] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  879.441210][ T5873] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[  879.652754][ T5873] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  879.663196][ T5873] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  879.671824][ T5873] usb 9-1: Product: syz
[  879.676504][ T5873] usb 9-1: Manufacturer: syz
[  879.681690][ T5873] usb 9-1: SerialNumber: syz
[  879.700564][ T5872] usb 3-1: usb_control_msg returned -32
[  879.714420][ T5872] usbtmc 3-1:16.0: can't read capabilities
[  879.735758][T11349] netlink: 156 bytes leftover after parsing attributes in process `syz.5.1885'.
[  879.784527][ T5873] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  879.854834][ T6414] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  880.851517][ T6414] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  880.862340][ T6414] ath9k_htc: Failed to initialize the device
[  881.011783][ T6414] usb 9-1: ath9k_htc: USB layer deinitialized
[  881.390991][T11362] sctp: [Deprecated]: syz.9.1889 (pid 11362) Use of struct sctp_assoc_value in delayed_ack socket option.
[  881.390991][T11362] Use struct sctp_sack_info instead
[  881.726234][ T1873] usb 3-1: USB disconnect, device number 40
[  882.210246][T11355] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  882.217370][T11355] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  882.224471][T11355] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  882.231896][T11355] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  882.243208][T11355] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  882.401865][   T11] usb 9-1: USB disconnect, device number 34
[  882.516016][ T1873] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  882.516434][ T6414] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  882.542875][ T5873] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[  882.558813][ T5106] Bluetooth: hci1: command 0x040f tx timeout
[  882.735115][ T1873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  882.746031][ T1873] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  882.760000][ T5873] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  882.770773][ T5873] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  882.781397][ T5873] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  882.790850][ T5873] usb 1-1: config 1 has no interface number 1
[  882.797787][ T5873] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  882.811744][ T1873] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  882.821666][ T1873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  882.833467][ T1873] usb 6-1: SerialNumber: syz
[  882.853330][ T6414] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  882.864401][ T6414] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  882.874362][ T6414] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  882.967041][ T6414] usb 3-1: config 0 descriptor??
[  882.994478][ T5873] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  883.004168][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  883.012653][ T5873] usb 1-1: Product: syz
[  883.017114][ T5873] usb 1-1: Manufacturer: syz
[  883.027207][ T5873] usb 1-1: SerialNumber: syz
[  883.045262][ T6414] pwc: Askey VC010 type 2 USB webcam detected.
[  883.107459][ T1873] usb 6-1: 0:2 : does not exist
[  883.229146][ T1873] usb 6-1: USB disconnect, device number 37
[  883.443738][ T5873] usb 1-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  883.452150][ T5873] usb 1-1: MIDIStreaming interface descriptor not found
[  883.479866][ T6414] pwc: recv_control_msg error -32 req 02 val 2b00
[  883.494780][ T6414] pwc: recv_control_msg error -32 req 02 val 2700
[  883.519040][ T6414] pwc: recv_control_msg error -32 req 02 val 2c00
[  883.559693][ T6414] pwc: recv_control_msg error -32 req 04 val 1000
[  883.663832][ T5873] usb 1-1: USB disconnect, device number 52
[  883.895074][ T6414] pwc: recv_control_msg error -32 req 04 val 1400
[  883.937462][ T6414] pwc: recv_control_msg error -32 req 02 val 2000
[  883.962943][ T6414] pwc: recv_control_msg error -32 req 02 val 2100
[  883.982256][ T6414] pwc: recv_control_msg error -71 req 04 val 1500
[  884.001182][ T6414] pwc: recv_control_msg error -71 req 02 val 2500
[  884.009373][ T6414] pwc: recv_control_msg error -71 req 02 val 2400
[  884.021120][ T6414] pwc: recv_control_msg error -71 req 02 val 2600
[  884.030568][ T6414] pwc: recv_control_msg error -71 req 02 val 2900
[  884.049301][ T6414] pwc: recv_control_msg error -71 req 02 val 2800
[  884.057461][ T6414] pwc: recv_control_msg error -71 req 04 val 1100
[  884.088578][ T6414] pwc: recv_control_msg error -71 req 04 val 1200
[  884.125554][ T6414] pwc: Registered as video103.
[  884.133391][ T6414] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input68
[  884.154621][ T5106] Bluetooth: hci4: command 0x0c1a tx timeout
[  884.203104][ T5106] Bluetooth: hci2: command 0x0c1a tx timeout
[  884.209443][ T5106] Bluetooth: hci0: command 0x0406 tx timeout
[  884.216232][ T5826] Bluetooth: hci3: command 0x0406 tx timeout
[  884.269920][ T6414] usb 3-1: USB disconnect, device number 41
[  884.645935][T11384] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1898'.
[  885.064663][T11390] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1901'.
[  885.316952][T11395] netlink: 'syz.8.1904': attribute type 11 has an invalid length.
[  885.366800][T11396] program syz.0.1903 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  885.774666][ T1873] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  886.008732][ T1873] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  886.018518][ T1873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  886.026972][ T1873] usb 1-1: Product: syz
[  886.031524][ T1873] usb 1-1: Manufacturer: syz
[  886.036417][ T1873] usb 1-1: SerialNumber: syz
[  886.054740][T11402] loop5: detected capacity change from 0 to 1024
[  886.091487][T11402] EXT4-fs: Ignoring removed nobh option
[  886.097450][T11402] EXT4-fs: Ignoring removed nomblk_io_submit option
[  886.122814][ T1873] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  886.212825][T11402] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  886.272219][    T9] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  886.434840][   T11] usb 9-1: new high-speed USB device number 35 using dummy_hcd
[  886.524435][T11409] loop2: detected capacity change from 0 to 512
[  886.603062][T11409] EXT4-fs (loop2): orphan cleanup on readonly fs
[  886.657208][T11409] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1909: bg 0: block 248: padding at end of block bitmap is not set
[  886.691072][   T11] usb 9-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  886.701544][   T11] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  886.712982][   T11] usb 9-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  886.723322][   T11] usb 9-1: config 1 has no interface number 1
[  886.734002][   T11] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  886.813987][T11409] Quota error (device loop2): write_blk: dquota write failed
[  886.822665][T11409] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  886.839953][T11409] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1909: Failed to acquire dquot type 1
[  886.963317][   T11] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  886.973277][   T11] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  886.982447][   T11] usb 9-1: Product: syz
[  886.987883][   T11] usb 9-1: Manufacturer: syz
[  886.993866][   T11] usb 9-1: SerialNumber: syz
[  887.046939][T11409] EXT4-fs (loop2): 1 truncate cleaned up
[  887.079132][T11409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  887.327482][    T9] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  887.338116][    T9] ath9k_htc: Failed to initialize the device
[  887.346598][T11416] netlink: 224 bytes leftover after parsing attributes in process `syz.8.1908'.
[  887.356572][T11416] netlink: 224 bytes leftover after parsing attributes in process `syz.8.1908'.
[  887.380463][ T7612] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  887.514940][    T9] usb 1-1: ath9k_htc: USB layer deinitialized
[  887.697835][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  888.468436][T11423] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1913'.
[  888.713949][T11425] netlink: 52 bytes leftover after parsing attributes in process `syz.9.1914'.
[  888.761898][T11413] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  888.769058][T11413] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  888.785124][T11413] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  888.792081][T11413] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  888.799667][T11413] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  888.967312][   T11] usb 9-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  888.980742][   T11] usb 9-1: MIDIStreaming interface descriptor not found
[  889.003244][ T5106] Bluetooth: hci1: command 0x040f tx timeout
[  889.087092][ T1873] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  889.108597][   T11] usb 9-1: USB disconnect, device number 35
[  889.213404][T11428] netlink: 'syz.2.1915': attribute type 12 has an invalid length.
[  889.215168][ T5869] usb 1-1: USB disconnect, device number 53
[  889.315055][ T1873] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  889.325727][ T1873] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  889.335328][ T1873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  889.357035][T11425] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1914'.
[  889.885038][ T1873] usb 6-1: config 0 descriptor??
[  889.911377][ T1873] pwc: Askey VC010 type 2 USB webcam detected.
[  890.374975][ T1873] pwc: recv_control_msg error -32 req 02 val 2b00
[  890.410582][ T1873] pwc: recv_control_msg error -32 req 02 val 2700
[  890.450467][ T1873] pwc: recv_control_msg error -32 req 02 val 2c00
[  890.470380][ T1873] pwc: recv_control_msg error -32 req 04 val 1000
[  890.695224][ T5106] Bluetooth: hci4: command 0x0c1a tx timeout
[  890.766180][ T5106] Bluetooth: hci2: command 0x0c1a tx timeout
[  890.773668][ T5826] Bluetooth: hci0: command 0x0406 tx timeout
[  890.780610][ T5816] Bluetooth: hci3: command 0x0406 tx timeout
[  890.807060][ T1873] pwc: recv_control_msg error -32 req 04 val 1400
[  890.830459][ T1873] pwc: recv_control_msg error -32 req 02 val 2000
[  890.861969][ T1873] pwc: recv_control_msg error -71 req 02 val 2100
[  890.870615][ T1873] pwc: recv_control_msg error -71 req 04 val 1500
[  890.889506][ T1873] pwc: recv_control_msg error -71 req 02 val 2500
[  890.901113][ T1873] pwc: recv_control_msg error -71 req 02 val 2400
[  890.930333][ T1873] pwc: recv_control_msg error -71 req 02 val 2600
[  890.939063][ T1873] pwc: recv_control_msg error -71 req 02 val 2900
[  890.956839][ T1873] pwc: recv_control_msg error -71 req 02 val 2800
[  890.970715][ T1873] pwc: recv_control_msg error -71 req 04 val 1100
[  890.992076][ T1873] pwc: recv_control_msg error -71 req 04 val 1200
[  891.063929][ T1873] pwc: Registered as video103.
[  891.071558][ T1873] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input70
[  891.191599][ T1873] usb 6-1: USB disconnect, device number 38
[  891.911365][T11470] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  891.921929][T11470] overlayfs: missing 'lowerdir'
[  892.356578][ T5106] Bluetooth: hci2: Malformed Event: 0x13
[  894.003156][T11502] loop8: detected capacity change from 0 to 1024
[  894.177826][T11523] FAULT_INJECTION: forcing a failure.
[  894.177826][T11523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  894.191675][T11523] CPU: 1 UID: 0 PID: 11523 Comm: syz.5.1922 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  894.191871][T11523] Tainted: [W]=WARN
[  894.191927][T11523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  894.192019][T11523] Call Trace:
[  894.192074][T11523]  <TASK>
[  894.192133][T11523]  __dump_stack+0x26/0x30
[  894.192312][T11523]  dump_stack_lvl+0x1df/0x270
[  894.192505][T11523]  dump_stack+0x1e/0x25
[  894.192668][T11523]  should_fail_ex+0x7dc/0x8a0
[  894.192901][T11523]  should_fail+0x2a/0x40
[  894.193090][T11523]  should_fail_usercopy+0x2e/0x40
[  894.193235][T11523]  _copy_from_user+0x33/0x100
[  894.193439][T11523]  drm_ioctl+0xc7d/0x1730
[  894.193648][T11523]  ? __pfx_drm_gem_flink_ioctl+0x10/0x10
[  894.193832][T11523]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  894.194014][T11523]  ? kmsan_get_metadata+0xfb/0x160
[  894.194168][T11523]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  894.194338][T11523]  drm_compat_ioctl+0x1b0/0x690
[  894.194547][T11523]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  894.194717][T11523]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  894.194913][T11523]  __ia32_compat_sys_ioctl+0x7f9/0x1270
[  894.195079][T11523]  ? kmsan_get_metadata+0xfb/0x160
[  894.195231][T11523]  ? kmsan_get_metadata+0xfb/0x160
[  894.195410][T11523]  ia32_sys_call+0x2d07/0x42c0
[  894.195553][T11523]  __do_fast_syscall_32+0xb0/0x150
[  894.195730][T11523]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  894.195906][T11523]  do_fast_syscall_32+0x38/0x80
[  894.196074][T11523]  do_SYSENTER_32+0x1f/0x30
[  894.196234][T11523]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  894.196441][T11523] RIP: 0023:0xf707e539
[  894.196551][T11523] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  894.196681][T11523] RSP: 002b:00000000f506e55c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[  894.196826][T11523] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c008640a
[  894.196923][T11523] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  894.197015][T11523] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  894.197100][T11523] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  894.197190][T11523] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  894.197309][T11523]  </TASK>
[  895.013966][ T6414] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[  895.218321][ T6414] usb 1-1: Using ep0 maxpacket: 16
[  895.253279][ T6414] usb 1-1: config index 0 descriptor too short (expected 33536, got 36)
[  895.262579][ T6414] usb 1-1: config 9 has too many interfaces: 120, using maximum allowed: 32
[  895.271904][ T6414] usb 1-1: config 9 has an invalid descriptor of length 90, skipping remainder of the config
[  895.282625][ T6414] usb 1-1: config 9 has 0 interfaces, different from the descriptor's value: 120
[  895.396712][ T6414] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  895.418155][ T6414] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  895.431379][ T6414] usb 1-1: Product: syz
[  895.436053][ T6414] usb 1-1: Manufacturer: syz
[  895.440941][ T6414] usb 1-1: SerialNumber: syz
[  895.449521][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  895.456508][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  895.567019][ T1873] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  895.639392][T11532] loop8: detected capacity change from 0 to 512
[  895.737120][T11532] fscrypt: Error allocating hmac(sha512): -2
[  895.757107][ T1873] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  895.767876][ T1873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  895.778438][ T1873] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  895.788071][ T1873] usb 6-1: config 1 has no interface number 1
[  895.794571][ T1873] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  896.055971][ T1873] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  896.065622][ T1873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  896.074491][ T1873] usb 6-1: Product: syz
[  896.078958][ T1873] usb 6-1: Manufacturer: syz
[  896.083991][ T1873] usb 6-1: SerialNumber: syz
[  896.114385][T11526] loop0: detected capacity change from 0 to 1024
[  896.464517][ T6414] usb 1-1: USB disconnect, device number 54
[  896.590212][ T1873] usb 6-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  896.598574][ T1873] usb 6-1: MIDIStreaming interface descriptor not found
[  896.717414][ T1873] usb 6-1: USB disconnect, device number 39
[  897.285933][T11473] hfsplus: b-tree write err: -5, ino 4
[  897.875696][T11555] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  897.885420][T11555] overlayfs: missing 'lowerdir'
[  897.948735][ T1873] usb 9-1: new high-speed USB device number 36 using dummy_hcd
[  898.259622][T11558] loop0: detected capacity change from 0 to 256
[  898.286792][T11558] exfat: Deprecated parameter 'namecase'
[  898.293460][T11558] exfat: Deprecated parameter 'namecase'
[  898.305892][ T5106] Bluetooth: hci3: Malformed Event: 0x13
[  898.368681][T11553] loop2: detected capacity change from 0 to 4096
[  898.415801][ T1873] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  898.426744][ T1873] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  898.439664][ T1873] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  898.482939][T11558] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  898.726394][ T1873] usb 9-1: config 0 descriptor??
[  898.761260][ T1873] pwc: Askey VC010 type 2 USB webcam detected.
[  898.916075][T11553] tmpfs: Bad value for 'mpol'
[  899.184100][ T1873] pwc: recv_control_msg error -32 req 02 val 2b00
[  899.203603][ T1873] pwc: recv_control_msg error -32 req 02 val 2700
[  899.252488][ T1873] pwc: recv_control_msg error -32 req 02 val 2c00
[  899.319278][ T1873] pwc: recv_control_msg error -32 req 04 val 1000
[  899.622025][ T1873] pwc: recv_control_msg error -32 req 04 val 1400
[  899.653435][ T1873] pwc: recv_control_msg error -32 req 02 val 2000
[  899.675564][ T1873] pwc: recv_control_msg error -71 req 02 val 2100
[  899.710219][ T1873] pwc: recv_control_msg error -71 req 04 val 1500
[  899.728573][ T1873] pwc: recv_control_msg error -71 req 02 val 2500
[  899.747982][ T1873] pwc: recv_control_msg error -71 req 02 val 2400
[  899.786763][ T1873] pwc: recv_control_msg error -71 req 02 val 2600
[  899.800736][ T1873] pwc: recv_control_msg error -71 req 02 val 2900
[  899.827765][ T1873] pwc: recv_control_msg error -71 req 02 val 2800
[  899.856252][ T1873] pwc: recv_control_msg error -71 req 04 val 1100
[  899.887493][ T1873] pwc: recv_control_msg error -71 req 04 val 1200
[  899.903340][T11571] netlink: 156 bytes leftover after parsing attributes in process `syz.5.1938'.
[  899.936520][ T1873] pwc: Registered as video103.
[  899.944270][ T1873] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input72
[  900.019893][ T1873] usb 9-1: USB disconnect, device number 36
[  900.206349][T11574] loop2: detected capacity change from 0 to 1024
[  900.256348][T11574] EXT4-fs: Ignoring removed nobh option
[  900.262707][T11574] EXT4-fs: Ignoring removed nomblk_io_submit option
[  900.393171][T11574] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  901.033911][ T5873] usb 9-1: new high-speed USB device number 37 using dummy_hcd
[  901.180915][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  901.249896][ T5873] usb 9-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  901.264855][ T5873] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  901.277275][ T5873] usb 9-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  901.286825][ T5873] usb 9-1: config 1 has no interface number 1
[  901.293968][ T5873] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  901.385274][ T5873] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  901.395382][ T5873] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  901.403702][ T5873] usb 9-1: Product: syz
[  901.408328][ T5873] usb 9-1: Manufacturer: syz
[  901.413207][ T5873] usb 9-1: SerialNumber: syz
[  901.800132][ T5873] usb 9-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  901.808770][ T5873] usb 9-1: MIDIStreaming interface descriptor not found
[  901.929762][ T5873] usb 9-1: USB disconnect, device number 37
[  902.240004][   T24] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  902.412281][   T24] usb 3-1: Using ep0 maxpacket: 16
[  902.470833][   T24] usb 3-1: config index 0 descriptor too short (expected 33536, got 36)
[  902.479840][   T24] usb 3-1: config 9 has too many interfaces: 120, using maximum allowed: 32
[  902.489088][   T24] usb 3-1: config 9 has an invalid descriptor of length 90, skipping remainder of the config
[  902.501155][   T24] usb 3-1: config 9 has 0 interfaces, different from the descriptor's value: 120
[  902.566111][T11594] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  902.575774][T11594] overlayfs: missing 'lowerdir'
[  902.607329][   T24] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  902.617503][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  902.631043][   T24] usb 3-1: Product: syz
[  902.637321][   T24] usb 3-1: Manufacturer: syz
[  902.642240][   T24] usb 3-1: SerialNumber: syz
[  902.783780][ T5106] Bluetooth: hci1: Malformed Event: 0x13
[  903.040498][T11589] loop2: detected capacity change from 0 to 1024
[  903.321088][   T24] usb 3-1: USB disconnect, device number 42
[  903.672274][T11601] loop5: detected capacity change from 0 to 256
[  904.057485][T11473] hfsplus: b-tree write err: -5, ino 4
[  904.226768][T11606] program syz.8.1950 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  904.235665][T11601] snd_virmidi snd_virmidi.0: control 511:0:0:a:0 is already present
[  904.247373][T11599] tmpfs: Bad value for 'mpol'
[  904.635046][   T24] usb 9-1: new high-speed USB device number 38 using dummy_hcd
[  904.850287][   T24] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  904.860152][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  904.874757][   T24] usb 9-1: Product: syz
[  904.879238][   T24] usb 9-1: Manufacturer: syz
[  904.885968][   T24] usb 9-1: SerialNumber: syz
[  904.999721][   T24] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  905.087945][ T5873] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  905.723529][T11618] loop5: detected capacity change from 0 to 1024
[  906.164388][ T5873] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  906.174662][ T5873] ath9k_htc: Failed to initialize the device
[  906.421401][ T5873] usb 9-1: ath9k_htc: USB layer deinitialized
[  906.595878][ T5106] Bluetooth: hci3: unexpected event for opcode 0x080c
[  907.134756][ T5106] bt_err_ratelimited: 54 callbacks suppressed
[  907.134848][ T5106] Bluetooth: hci3: unknown advertising packet type: 0x24
[  907.619701][T11607] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  907.634531][T11607] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  907.641406][T11607] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  907.648472][T11607] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  907.655530][T11607] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  907.837826][ T5106] Bluetooth: hci1: command 0x040f tx timeout
[  907.926762][ T1873] usb 9-1: USB disconnect, device number 38
[  907.982373][ T5873] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  908.180466][ T5873] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  908.195674][ T5873] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  908.207907][ T5873] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  908.218725][ T5873] usb 6-1: config 1 has no interface number 1
[  908.225116][ T5873] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  908.358009][ T5873] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  908.367595][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  908.376003][ T5873] usb 6-1: Product: syz
[  908.385871][ T5873] usb 6-1: Manufacturer: syz
[  908.392562][ T5873] usb 6-1: SerialNumber: syz
[  908.890171][ T5873] usb 6-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  908.898623][ T5873] usb 6-1: MIDIStreaming interface descriptor not found
[  909.122096][ T5873] usb 6-1: USB disconnect, device number 40
[  909.220434][   T30] audit: type=1326 audit(1754190247.968:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.326505][   T30] audit: type=1326 audit(1754190248.031:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.350070][   T30] audit: type=1326 audit(1754190248.031:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.376082][   T30] audit: type=1326 audit(1754190248.031:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.399824][   T30] audit: type=1326 audit(1754190248.052:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.422466][   T30] audit: type=1326 audit(1754190248.052:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.445432][   T30] audit: type=1326 audit(1754190248.052:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.471025][   T30] audit: type=1326 audit(1754190248.052:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.494866][   T30] audit: type=1326 audit(1754190248.063:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.517488][   T30] audit: type=1326 audit(1754190248.063:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.9.1965" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  909.611508][ T5106] Bluetooth: hci2: command 0x0c1a tx timeout
[  909.618126][ T5106] Bluetooth: hci0: command 0x0406 tx timeout
[  909.624786][ T5106] Bluetooth: hci3: command 0x0406 tx timeout
[  909.635919][ T5826] Bluetooth: hci4: command 0x0c1a tx timeout
[  909.963137][T11654] IPv6: Can't replace route, no match found
[  910.955560][T11666] loop0: detected capacity change from 0 to 128
[  911.033891][T11666] ext4: Unknown parameter 'uid>00000000000000000000'
[  911.342923][T11674] netlink: 132 bytes leftover after parsing attributes in process `+}[@'.
[  911.394320][T11673] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1972'.
[  911.411314][T11673] tipc: Started in network mode
[  911.419943][T11673] tipc: Node identity fe80000000000000000000000000002a, cluster identity 4711
[  911.433433][T11673] tipc: Enabled bearer <udp:syz0>, priority 10
[  912.385782][ T5873] tipc: Node number set to 4269801514
[  913.114132][T11698] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1985'.
[  913.123977][T11698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1985'.
[  913.154090][T11694] loop0: detected capacity change from 0 to 1024
[  913.278709][T11694] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  913.289283][T11694] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  913.299511][T11694] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  913.346697][T11694] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #5: comm syz.0.1983: unexpected bad inode w/o EXT4_IGET_BAD
[  913.404098][T11694] EXT4-fs (loop0): no journal found
[  913.410354][T11694] EXT4-fs (loop0): can't get journal size
[  913.466434][T11694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  913.570972][T11694] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1340: inode #12: block 16: comm syz.0.1983: path /173/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  913.733675][T11693] loop8: detected capacity change from 0 to 8192
[  913.766823][T11693] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  913.795765][T11706] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1987'.
[  913.806002][T11706] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1987'.
[  913.815634][T11706] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1987'.
[  913.825486][T11706] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1987'.
[  913.862471][ T9020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  914.374094][T11709] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1988'.
[  915.265437][   T30] kauditd_printk_skb: 59 callbacks suppressed
[  915.265526][   T30] audit: type=1326 audit(1754190254.330:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.299759][   T30] audit: type=1326 audit(1754190254.330:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.327389][   T30] audit: type=1326 audit(1754190254.404:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.352640][   T30] audit: type=1326 audit(1754190254.404:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.375548][   T30] audit: type=1326 audit(1754190254.425:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.398207][   T30] audit: type=1326 audit(1754190254.425:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.425700][   T30] audit: type=1326 audit(1754190254.446:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.450728][   T30] audit: type=1326 audit(1754190254.467:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.473504][   T30] audit: type=1326 audit(1754190254.488:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf707e539 code=0x7ffc0000
[  915.496183][   T30] audit: type=1326 audit(1754190254.488:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.5.1994" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  916.560383][T11736] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1999'.
[  917.029326][T11740] loop5: detected capacity change from 0 to 512
[  917.087245][T11740] EXT4-fs: Ignoring removed bh option
[  917.142993][T11740] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  917.152707][T11740] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  917.192104][T11740] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  917.299420][T11740] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  917.305545][T11747] netlink: 132 bytes leftover after parsing attributes in process `syz.9.2003'.
[  917.388633][T11740] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  917.839644][ T7612] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  918.567251][T11766] loop0: detected capacity change from 0 to 512
[  918.655409][T11766] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  919.226104][T11774] loop5: detected capacity change from 0 to 1024
[  919.291279][T11774] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  919.302986][T11774] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  919.323266][T11774] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  919.397949][T11774] EXT4-fs error (device loop5): ext4_get_journal_inode:5796: inode #5: comm syz.5.2014: unexpected bad inode w/o EXT4_IGET_BAD
[  919.453830][ T9020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  919.455998][T11772] loop8: detected capacity change from 0 to 4096
[  919.470526][T11774] EXT4-fs (loop5): no journal found
[  919.477745][T11774] EXT4-fs (loop5): can't get journal size
[  919.517179][T11774] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  919.581489][T11774] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1340: inode #12: block 16: comm syz.5.2014: path /270/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  919.623501][T11772] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  919.779351][T11772] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #15: comm syz.8.2013: corrupted inode contents
[  919.823884][T11772] EXT4-fs error (device loop8): ext4_dirty_inode:6459: inode #15: comm syz.8.2013: mark_inode_dirty error
[  919.842646][ T7612] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  919.915372][T11782] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2013'.
[  920.015620][T11772] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #15: comm syz.8.2013: corrupted inode contents
[  920.052215][T11772] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #15: comm syz.8.2013: mark_inode_dirty error
[  920.142589][T11772] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #15: comm syz.8.2013: corrupted inode contents
[  920.225458][T11772] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #15: comm syz.8.2013: mark_inode_dirty error
[  920.278723][T11786] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2017'.
[  920.313024][T11772] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #15: comm syz.8.2013: corrupted inode contents
[  920.329731][T11772] EXT4-fs error (device loop8): ext4_truncate:4597: inode #15: comm syz.8.2013: mark_inode_dirty error
[  920.410930][T11772] EXT4-fs error (device loop8) in ext4_setattr:5986: Corrupt filesystem
[  920.774348][T11772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  922.280884][   T30] kauditd_printk_skb: 42 callbacks suppressed
[  922.280972][   T30] audit: type=1326 audit(1754190261.689:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.355950][   T30] audit: type=1326 audit(1754190261.742:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.378872][   T30] audit: type=1326 audit(1754190261.742:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.401940][   T30] audit: type=1326 audit(1754190261.752:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.428610][   T30] audit: type=1326 audit(1754190261.752:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.452451][   T30] audit: type=1326 audit(1754190261.784:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.475304][   T30] audit: type=1326 audit(1754190261.805:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.497969][   T30] audit: type=1326 audit(1754190261.836:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.521251][   T30] audit: type=1326 audit(1754190261.836:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  922.547186][   T30] audit: type=1326 audit(1754190261.836:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.8.2028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  923.341709][T11814] loop2: detected capacity change from 0 to 1024
[  923.372999][T11814] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  923.384279][T11814] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  923.394413][T11814] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  923.552411][T11814] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.2030: unexpected bad inode w/o EXT4_IGET_BAD
[  923.609647][T11814] EXT4-fs (loop2): no journal found
[  923.615183][T11814] EXT4-fs (loop2): can't get journal size
[  923.648079][T11814] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  923.678468][T11814] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1340: inode #12: block 16: comm syz.2.2030: path /191/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  923.801284][T11820] @: renamed from vlan0 (while UP)
[  923.972378][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  925.431798][T11829] loop8: detected capacity change from 0 to 8192
[  926.599520][T11854] loop5: detected capacity change from 0 to 512
[  926.671017][T11854] EXT4-fs: Ignoring removed mblk_io_submit option
[  926.678583][T11854] ext4: Unknown parameter 'seclabel'
[  927.629102][T11858] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  927.635994][T11858] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  927.643037][T11858] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  927.650082][T11858] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  927.656888][T11858] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  928.859568][ T5106] Bluetooth: hci1: command 0x040f tx timeout
[  929.622719][ T5106] Bluetooth: hci0: command 0x0406 tx timeout
[  929.630828][ T5106] Bluetooth: hci2: command 0x0c1a tx timeout
[  929.637144][ T5106] Bluetooth: hci3: command 0x0406 tx timeout
[  929.653968][ T5106] Bluetooth: hci4: command 0x0c1a tx timeout
[  930.213802][T11897] loop0: detected capacity change from 0 to 1024
[  930.263832][T11897] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  930.274437][T11897] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  930.284580][T11897] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  930.377451][T11897] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #5: comm syz.0.2063: unexpected bad inode w/o EXT4_IGET_BAD
[  930.407935][T11897] EXT4-fs (loop0): no journal found
[  930.413933][T11897] EXT4-fs (loop0): can't get journal size
[  930.441356][   T30] kauditd_printk_skb: 15 callbacks suppressed
[  930.441440][   T30] audit: type=1326 audit(1754190270.266:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.5.2065" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  930.458983][T11897] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  930.615064][   T30] audit: type=1326 audit(1754190270.308:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.5.2065" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e539 code=0x7ffc0000
[  930.641349][   T30] audit: type=1326 audit(1754190270.308:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.5.2065" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  930.731585][ T9020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  932.174289][T11917] lo: entered allmulticast mode
[  932.215321][T11915] lo: left allmulticast mode
[  933.563916][T11935] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2080'.
[  935.246404][T11953] loop8: detected capacity change from 0 to 512
[  935.338512][T11953] EXT4-fs (loop8): too many log groups per flexible block group
[  935.347465][T11953] EXT4-fs (loop8): failed to initialize mballoc (-12)
[  935.394744][   T30] audit: type=1326 audit(1754190275.442:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11955 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  935.422593][   T30] audit: type=1326 audit(1754190275.442:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11955 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=40000003 syscall=24 compat=1 ip=0xf707e539 code=0x7ffc0000
[  935.447219][   T30] audit: type=1326 audit(1754190275.442:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11955 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  935.476900][T11953] EXT4-fs (loop8): mount failed
[  935.567979][T11962] loop0: detected capacity change from 0 to 128
[  935.642338][T11962] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  935.722486][T11962] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  936.175512][T11973] program syz.5.2094 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  936.296308][ T9020] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  936.554621][ T1873] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  936.875520][ T1873] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  936.885148][ T1873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  936.893664][ T1873] usb 6-1: Product: syz
[  936.898251][ T1873] usb 6-1: Manufacturer: syz
[  936.903197][ T1873] usb 6-1: SerialNumber: syz
[  937.065052][ T1873] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  937.237466][   T11] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  938.495698][   T11] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  938.505545][   T11] ath9k_htc: Failed to initialize the device
[  938.697131][   T11] usb 6-1: ath9k_htc: USB layer deinitialized
[  939.942012][T11990] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  939.949218][T11990] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  939.956198][T11990] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  939.963023][T11990] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  939.971326][T11990] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  940.070375][ T5106] Bluetooth: hci1: command 0x040f tx timeout
[  940.125411][T11999] loop8: detected capacity change from 0 to 8192
[  940.151850][T11999] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  940.433234][ T5873] usb 6-1: USB disconnect, device number 41
[  940.664397][T12011] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2109'.
[  941.295125][   T30] audit: type=1326 audit(1754190281.646:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.318497][   T30] audit: type=1326 audit(1754190281.657:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.483323][   T30] audit: type=1326 audit(1754190281.751:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.506329][   T30] audit: type=1326 audit(1754190281.751:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.529345][   T30] audit: type=1326 audit(1754190281.751:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.556678][   T30] audit: type=1326 audit(1754190281.751:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.579373][   T30] audit: type=1326 audit(1754190281.762:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.602076][   T30] audit: type=1326 audit(1754190281.804:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.625202][   T30] audit: type=1326 audit(1754190281.804:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12019 comm="syz.9.2115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  941.898430][ T5106] Bluetooth: hci2: command 0x0c1a tx timeout
[  941.898591][ T5816] Bluetooth: hci0: command 0x0406 tx timeout
[  941.904680][ T5106] Bluetooth: hci3: command 0x0406 tx timeout
[  941.911598][ T5816] Bluetooth: hci4: command 0x0c1a tx timeout
[  942.949581][T12039] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2121'.
[  942.959166][T12039] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2121'.
[  943.873182][T12048] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2125'.
[  944.136135][T12041] loop0: detected capacity change from 0 to 8192
[  944.235504][T12041] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  945.911885][T12064] Illegal XDP return value 4294967274 on prog  (id 372) dev syz_tun, expect packet loss!
[  947.149371][T12085] loop5: detected capacity change from 0 to 512
[  947.453198][T12085] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #3: comm syz.5.2141: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  947.476248][T12085] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.2141: Bad quota inode: 3, type: 0
[  947.547758][T12085] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  947.588501][T12081] loop0: detected capacity change from 0 to 8192
[  947.607984][T12085] EXT4-fs (loop5): mount failed
[  947.703065][T12081] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  947.837996][T12095] loop2: detected capacity change from 0 to 1024
[  947.859264][T12095] EXT4-fs: Ignoring removed orlov option
[  947.998395][T12095] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  948.573953][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  948.917343][T12108] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2144'.
[  949.341207][T12114] loop5: detected capacity change from 0 to 1024
[  949.443172][T12114] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  949.457782][T12114] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  949.469261][T12114] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  949.532089][T12114] EXT4-fs error (device loop5): ext4_get_journal_inode:5796: inode #5: comm syz.5.2150: unexpected bad inode w/o EXT4_IGET_BAD
[  949.605964][T12114] EXT4-fs (loop5): no journal found
[  949.611524][T12114] EXT4-fs (loop5): can't get journal size
[  949.685343][T12114] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  949.779365][T12118] loop0: detected capacity change from 0 to 512
[  949.854743][T12118] EXT4-fs: Ignoring removed nobh option
[  949.980149][T12118] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #3: comm wޣ�: corrupted inode contents
[  950.019723][T12118] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #3: comm wޣ�: mark_inode_dirty error
[  950.057637][ T7612] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  950.076848][T12118] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #3: comm wޣ�: corrupted inode contents
[  950.122980][T12118] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm wޣ�: mark_inode_dirty error
[  950.159305][T12118] Quota error (device loop0): write_blk: dquota write failed
[  950.168404][T12118] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  950.179135][T12118] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm wޣ�: Failed to acquire dquot type 0
[  950.222801][T12118] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm wޣ�: corrupted inode contents
[  950.274389][T12118] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #16: comm wޣ�: mark_inode_dirty error
[  950.309601][T12118] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm wޣ�: corrupted inode contents
[  950.367138][T12118] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm wޣ�: mark_inode_dirty error
[  950.399065][T12118] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm wޣ�: corrupted inode contents
[  950.428807][T12118] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  950.449763][T12118] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm wޣ�: corrupted inode contents
[  950.542048][T12118] EXT4-fs error (device loop0): ext4_truncate:4597: inode #16: comm wޣ�: mark_inode_dirty error
[  950.605767][T12118] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  950.678611][T12118] EXT4-fs (loop0): 1 truncate cleaned up
[  950.687500][T12118] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  950.700853][T12118] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  950.736120][   T30] audit: type=1326 audit(1754190291.557:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.854036][   T30] audit: type=1326 audit(1754190291.619:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.876926][   T30] audit: type=1326 audit(1754190291.640:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.899782][   T30] audit: type=1326 audit(1754190291.640:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.922407][   T30] audit: type=1326 audit(1754190291.661:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.948239][   T30] audit: type=1326 audit(1754190291.661:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.972524][   T30] audit: type=1326 audit(1754190291.661:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  950.995334][   T30] audit: type=1326 audit(1754190291.745:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12135 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  951.206628][ T9020] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  951.236850][T12124] loop2: detected capacity change from 0 to 8192
[  951.355581][T12124] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  951.998743][T12147] netlink: 'syz.8.2162': attribute type 4 has an invalid length.
[  953.492624][T12162] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2169'.
[  953.502325][T12162] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2169'.
[  953.965435][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  953.972473][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  954.929962][   T30] kauditd_printk_skb: 44 callbacks suppressed
[  954.930046][   T30] audit: type=1326 audit(1754190295.966:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  954.959331][   T30] audit: type=1326 audit(1754190295.976:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=291 compat=1 ip=0xf707e539 code=0x7ffc0000
[  954.982424][   T30] audit: type=1326 audit(1754190295.976:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.010816][   T30] audit: type=1326 audit(1754190295.976:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.248158][   T30] audit: type=1326 audit(1754190296.092:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=292 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.271233][   T30] audit: type=1326 audit(1754190296.092:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.294066][   T30] audit: type=1326 audit(1754190296.092:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.321604][   T30] audit: type=1326 audit(1754190296.134:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=293 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.345796][   T30] audit: type=1326 audit(1754190296.134:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  955.368655][   T30] audit: type=1326 audit(1754190296.144:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2177" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000
[  956.510469][T12189] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2
[  956.520199][T12189] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0
[  957.537136][T12200] syzkaller0: entered promiscuous mode
[  957.551001][T12200] syzkaller0: entered allmulticast mode
[  959.407155][T12219] loop5: detected capacity change from 0 to 164
[  959.515105][T12219] rock: directory entry would overflow storage
[  959.521948][T12219] rock: sig=0x66, size=4, remaining=3
[  959.565564][T12219] rock: directory entry would overflow storage
[  959.575723][T12219] rock: sig=0x66, size=4, remaining=3
[  959.928854][T12225] loop8: detected capacity change from 0 to 512
[  959.990218][T12225] EXT4-fs (loop8): orphan cleanup on readonly fs
[  960.022272][T12225] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.2199: bg 0: block 248: padding at end of block bitmap is not set
[  960.059300][T12225] __quota_error: 15 callbacks suppressed
[  960.059394][T12225] Quota error (device loop8): write_blk: dquota write failed
[  960.074053][T12225] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  960.089359][T12225] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.2199: Failed to acquire dquot type 1
[  960.145791][T12225] EXT4-fs (loop8): 1 truncate cleaned up
[  960.199802][T12225] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  960.672084][ T8780] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  960.803505][   T30] audit: type=1326 audit(1754190302.139:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12234 comm="syz.9.2202" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  960.895114][   T30] audit: type=1326 audit(1754190302.181:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12234 comm="syz.9.2202" exe="/root/syz-executor" sig=0 arch=40000003 syscall=24 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  960.917937][   T30] audit: type=1326 audit(1754190302.181:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12234 comm="syz.9.2202" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  961.289353][T12240] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2204'.
[  961.299039][T12240] netlink: 212 bytes leftover after parsing attributes in process `syz.8.2204'.
[  961.531857][   T30] audit: type=1326 audit(1754190302.905:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12241 comm="syz.9.2205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  961.560925][   T30] audit: type=1326 audit(1754190302.905:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12241 comm="syz.9.2205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=376 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  961.585160][   T30] audit: type=1326 audit(1754190302.905:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12241 comm="syz.9.2205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  962.288594][T12253] netlink: 'syz.5.2209': attribute type 10 has an invalid length.
[  962.297044][T12253] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2209'.
[  962.328055][T12248] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  962.365858][   T30] audit: type=1326 audit(1754190303.776:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12251 comm="syz.9.2210" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  962.388791][   T30] audit: type=1326 audit(1754190303.776:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12251 comm="syz.9.2210" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000
[  962.536201][T12253] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[  962.551001][T12253] team0: Failed to send options change via netlink (err -105)
[  962.558805][T12253] team0: Port device netdevsim1 added
[  962.681944][T12248] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  962.873514][T12248] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[  962.946595][T12248] team0: Port device netdevsim1 removed
[  962.960684][T12248] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  963.128164][T12248] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  963.587385][T12248] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  963.626248][T12248] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  963.659241][T12248] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  963.701019][T12248] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  966.779596][T12298] loop8: detected capacity change from 0 to 128
[  966.887592][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  966.887682][   T30] audit: type=1326 audit(1754190308.532:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12294 comm="syz.8.2230" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  966.939844][   T30] audit: type=1326 audit(1754190308.574:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12294 comm="syz.8.2230" exe="/root/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf708e539 code=0x7ffc0000
[  966.963619][   T30] audit: type=1326 audit(1754190308.584:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12294 comm="syz.8.2230" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  967.449010][T12307] loop2: detected capacity change from 0 to 1024
[  967.461227][T12307] EXT4-fs: Ignoring removed i_version option
[  967.468329][T12307] EXT4-fs: Ignoring removed nomblk_io_submit option
[  967.563421][T12307] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  967.887763][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  969.183859][T12332] tmpfs: Unknown parameter 'rootcontext�'
[  969.367885][T12332] loop2: detected capacity change from 0 to 1024
[  969.413212][T12332] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  969.555552][T12332] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #3: block 1: comm syz.2.2242: lblock 1 mapped to illegal pblock 1 (length 1)
[  969.675037][T12332] Quota error (device loop2): write_blk: dquota write failed
[  969.683094][T12332] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  969.693797][T12332] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2242: Failed to acquire dquot type 0
[  969.767041][T12332] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm syz.2.2242: Freeing blocks not in datazone - block = 0, count = 4096
[  969.809286][T12332] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2242: Invalid inode bitmap blk 0 in block_group 0
[  969.834913][T11475] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  969.878561][T12332] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  969.894793][T11475] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  969.903997][T11475] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[  969.922964][T12332] EXT4-fs (loop2): 1 orphan inode deleted
[  969.935485][T12332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  970.040195][T12332] EXT4-fs error (device loop2): ext4_search_dir:1474: inode #2: block 16: comm syz.2.2242: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  970.523662][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  971.075516][   T30] audit: type=1326 audit(1754190312.920:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12357 comm="syz.0.2254" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  971.195363][   T30] audit: type=1326 audit(1754190312.962:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12357 comm="syz.0.2254" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  971.223442][   T30] audit: type=1326 audit(1754190312.962:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12357 comm="syz.0.2254" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  971.246365][   T30] audit: type=1326 audit(1754190312.973:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12357 comm="syz.0.2254" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.476006][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  972.476092][   T30] audit: type=1326 audit(1754190314.379:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.505359][   T30] audit: type=1326 audit(1754190314.379:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.528388][   T30] audit: type=1326 audit(1754190314.400:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.551270][   T30] audit: type=1326 audit(1754190314.400:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.578366][   T30] audit: type=1326 audit(1754190314.400:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.601089][   T30] audit: type=1326 audit(1754190314.505:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.623761][   T30] audit: type=1326 audit(1754190314.505:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.646589][   T30] audit: type=1326 audit(1754190314.558:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  972.850922][T12370] loop2: detected capacity change from 0 to 8192
[  973.000835][T12370] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  973.095138][   T30] audit: type=1326 audit(1754190314.621:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  973.118029][   T30] audit: type=1326 audit(1754190314.631:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.0.2262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=400 compat=1 ip=0xf7fc5539 code=0x7ffc0000
[  973.558346][T12390] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  973.767513][T12390] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  973.960539][T12395] program syz.5.2271 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  974.013643][T12390] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  974.056238][T12395] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  974.299460][T12390] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  974.648284][T12390] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  974.690074][T12390] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  974.730625][T12390] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  974.765302][T12390] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  976.626433][T12418] loop8: detected capacity change from 0 to 8192
[  976.718938][T12418] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  977.892908][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  977.892999][   T30] audit: type=1326 audit(1754190320.059:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  977.922518][   T30] audit: type=1326 audit(1754190320.059:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  977.948455][   T30] audit: type=1326 audit(1754190320.080:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.116859][   T30] audit: type=1326 audit(1754190320.206:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.143140][   T30] audit: type=1326 audit(1754190320.227:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.166970][   T30] audit: type=1326 audit(1754190320.237:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.189760][   T30] audit: type=1326 audit(1754190320.237:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.212463][   T30] audit: type=1326 audit(1754190320.237:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.238406][   T30] audit: type=1326 audit(1754190320.237:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf708e539 code=0x7ffc0000
[  978.262982][   T30] audit: type=1326 audit(1754190320.237:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12443 comm="syz.8.2291" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000
[  979.924302][T12469] process '/newroot/234/file0' started with executable stack
[  980.179222][T12467] loop8: detected capacity change from 0 to 8192
[  980.214447][T12467] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  980.942742][T12485] loop2: detected capacity change from 0 to 512
[  981.106544][T12485] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  981.181724][T12485] EXT4-fs (loop2): mount failed
[  982.694198][T12517] loop2: detected capacity change from 0 to 764
[  982.817581][T12517] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  982.860352][T12522] loop8: detected capacity change from 0 to 128
[  982.918524][T12522] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  982.941378][T12522] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  983.445368][ T8780] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  984.923260][T12548] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2343'.
[  986.734528][T12562] loop8: detected capacity change from 0 to 8192
[  986.852388][T12562] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  987.923444][T12591] lo speed is unknown, defaulting to 1000
[  987.930077][T12591] lo speed is unknown, defaulting to 1000
[  987.937588][T12591] lo speed is unknown, defaulting to 1000
[  988.005451][T12591] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  988.103630][T12591] lo speed is unknown, defaulting to 1000
[  988.113677][T12591] lo speed is unknown, defaulting to 1000
[  988.123103][T12591] lo speed is unknown, defaulting to 1000
[  988.132455][T12591] lo speed is unknown, defaulting to 1000
[  988.142003][T12591] lo speed is unknown, defaulting to 1000
[  988.929605][T12600] loop8: detected capacity change from 0 to 1024
[  989.060694][T12600] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  989.559582][ T8780] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  991.908697][T12637] loop2: detected capacity change from 0 to 2048
[  992.043556][T12637] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  992.563548][ T8979] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  996.062230][T12702] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2404'.
[  996.078138][T12702] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  996.241572][T12706] loop9: detected capacity change from 0 to 7
[  996.251979][T12706] buffer_io_error: 6 callbacks suppressed
[  996.252069][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.272139][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.282147][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.290539][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.299132][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.307602][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.316082][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.324505][T12706] ldm_validate_partition_table(): Disk read failed.
[  996.331661][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.340060][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.348402][T12706] Buffer I/O error on dev loop9, logical block 0, async page read
[  996.356790][T12706] Dev loop9: unable to read RDB block 0
[  996.366936][T12706]  loop9: unable to read partition table
[  996.602473][T12706] loop9: partition table beyond EOD, truncated
[  996.612994][T12706] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  996.612994][T12706] 
) failed (rc=-5)
[  997.913238][T12726] loop5: detected capacity change from 0 to 764
[  998.082087][T12726] Symlink component flag not implemented
[  998.089458][T12726] Symlink component flag not implemented
[  998.096265][T12726] Symlink component flag not implemented (128)
[  998.102924][T12726] Symlink component flag not implemented (122)
[  998.203597][T12730] =====================================================
[  998.211301][T12730] BUG: KMSAN: uninit-value in sctp_inq_pop+0x14dc/0x19e0
[  998.225470][T12730]  sctp_inq_pop+0x14dc/0x19e0
[  998.232818][T12730]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[  998.238071][T12730]  sctp_inq_push+0x2a3/0x350
[  998.243220][T12730]  sctp_backlog_rcv+0x3c7/0xda0
[  998.248365][T12730]  sk_backlog_rcv+0x142/0x420
[  998.253503][T12730]  __release_sock+0x1d3/0x330
[  998.258998][T12730]  release_sock+0x6b/0x270
[  998.263916][T12730]  sctp_wait_for_connect+0x458/0x820
[  998.269481][T12730]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  998.276022][T12730]  sctp_sendmsg+0x3910/0x49f0
[  998.281211][T12730]  inet_sendmsg+0x269/0x2a0
[  998.285973][T12730]  __sock_sendmsg+0x278/0x3d0
[  998.291242][T12730]  __sys_sendto+0x593/0x720
[  998.295989][T12730]  __ia32_sys_sendto+0x12f/0x200
[  998.303191][T12730]  ia32_sys_call+0x1397/0x42c0
[  998.308201][T12730]  __do_fast_syscall_32+0xb0/0x150
[  998.320404][T12730]  do_fast_syscall_32+0x38/0x80
[  998.325550][T12730]  do_SYSENTER_32+0x1f/0x30
[  998.332383][T12730]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  998.339148][T12730] 
[  998.341635][T12730] Uninit was stored to memory at:
[  998.347334][T12730] ------------[ cut here ]------------
[  998.352961][T12730] WARNING: CPU: 1 PID: 12730 at kernel/stacktrace.c:29 stack_trace_print+0xd4/0xf0
[  998.362783][T12730] Modules linked in:
[  998.367111][T12730] CPU: 1 UID: 0 PID: 12730 Comm: syz.0.2417 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  998.381191][T12730] Tainted: [W]=WARN
[  998.385400][T12730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  998.395851][T12730] RIP: 0010:stack_trace_print+0xd4/0xf0
[  998.401718][T12730] Code: 28 40 03 92 89 de ba 20 00 00 00 4c 89 e1 e8 c3 71 4d ff 49 83 c6 08 49 ff cd 0f 85 6e ff ff ff eb 0b e8 ef 50 c1 00 eb d4 90 <0f> 0b 90 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 66 0f 1f
[  998.429834][T12730] RSP: 0018:ffff888036af70a8 EFLAGS: 00010246
[  998.438509][T12730] RAX: ffff888045a44cd8 RBX: 0000000000000000 RCX: 0000000000000000
[  998.446963][T12730] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  998.455356][T12730] RBP: ffff888036af70d0 R08: 0000000000000000 R09: 0000000000000000
[  998.463676][T12730] R10: ffff8880362f70e8 R11: ffffffffffff1298 R12: 0000000000000000
[  998.472058][T12730] R13: 00000000abcd0100 R14: 0000000000000000 R15: 0000000000000000
[  998.480369][T12730] FS:  0000000000000000(0000) GS:ffff8881aa962000(0063) knlGS:00000000f50e6b40
[  998.490184][T12730] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  998.497036][T12730] CR2: 00000000f72238a0 CR3: 000000003bfd8000 CR4: 00000000003526f0
[  998.505461][T12730] Call Trace:
[  998.518531][T12730]  <TASK>
[  998.521663][T12730]  kmsan_print_origin+0xb0/0x340
[  998.526885][T12730]  ? stack_trace_print+0xbd/0xf0
[  998.534700][T12730]  kmsan_report+0x1d3/0x320
[  998.539668][T12730]  ? __msan_warning+0x1b/0x30
[  998.544590][T12730]  ? sctp_inq_pop+0x14dc/0x19e0
[  998.549893][T12730]  ? sctp_assoc_bh_rcv+0x1a0/0xbc0
[  998.555307][T12730]  ? sctp_inq_push+0x2a3/0x350
[  998.560614][T12730]  ? sctp_backlog_rcv+0x3c7/0xda0
[  998.566095][T12730]  ? sk_backlog_rcv+0x142/0x420
[  998.571252][T12730]  ? __release_sock+0x1d3/0x330
[  998.576533][T12730]  ? release_sock+0x6b/0x270
[  998.581415][T12730]  ? sctp_wait_for_connect+0x458/0x820
[  998.587353][T12730]  ? sctp_sendmsg_to_asoc+0x223a/0x2260
[  998.593171][T12730]  ? sctp_sendmsg+0x3910/0x49f0
[  998.598405][T12730]  ? inet_sendmsg+0x269/0x2a0
[  998.603338][T12730]  ? __sock_sendmsg+0x278/0x3d0
[  998.616282][T12730]  ? __sys_sendto+0x593/0x720
[  998.621224][T12730]  ? __ia32_sys_sendto+0x12f/0x200
[  998.629106][T12730]  ? ia32_sys_call+0x1397/0x42c0
[  998.634512][T12730]  ? __do_fast_syscall_32+0xb0/0x150
[  998.640077][T12730]  ? do_fast_syscall_32+0x38/0x80
[  998.645525][T12730]  ? do_SYSENTER_32+0x1f/0x30
[  998.650573][T12730]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  998.657502][T12730]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  998.664488][T12730]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  998.671033][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.676409][T12730]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  998.683352][T12730]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  998.689866][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.695248][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  998.701475][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.714420][T12730]  __msan_warning+0x1b/0x30
[  998.721396][T12730]  sctp_inq_pop+0x14dc/0x19e0
[  998.726410][T12730]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[  998.731823][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.735321][T12738] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2419'.
[  998.737402][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  998.747216][T12738] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2419'.
[  998.752592][T12730]  ? __pfx_sctp_assoc_bh_rcv+0x10/0x10
[  998.761737][T12738] tipc: Invalid UDP bearer configuration
[  998.767210][T12730]  sctp_inq_push+0x2a3/0x350
[  998.773169][T12738] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  998.777798][T12730]  sctp_backlog_rcv+0x3c7/0xda0
[  998.791604][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.797259][T12730]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  998.810425][T12730]  sk_backlog_rcv+0x142/0x420
[  998.817727][T12730]  __release_sock+0x1d3/0x330
[  998.822736][T12730]  release_sock+0x6b/0x270
[  998.827641][T12730]  sctp_wait_for_connect+0x458/0x820
[  998.833368][T12730]  ? __pfx_autoremove_wake_function+0x10/0x10
[  998.839788][T12730]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  998.845651][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.851022][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  998.857376][T12730]  sctp_sendmsg+0x3910/0x49f0
[  998.862473][T12730]  ? kmsan_internal_set_shadow_origin+0x10/0x110
[  998.869225][T12730]  ? __pfx_sctp_sendmsg+0x10/0x10
[  998.874745][T12730]  inet_sendmsg+0x269/0x2a0
[  998.879535][T12730]  __sock_sendmsg+0x278/0x3d0
[  998.884663][T12730]  __sys_sendto+0x593/0x720
[  998.889529][T12730]  ? do_futex+0x3a1/0x480
[  998.894140][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  998.907387][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  998.915933][T12730]  __ia32_sys_sendto+0x12f/0x200
[  998.921347][T12730]  ia32_sys_call+0x1397/0x42c0
[  998.926359][T12730]  __do_fast_syscall_32+0xb0/0x150
[  998.931874][T12730]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  998.938067][T12730]  do_fast_syscall_32+0x38/0x80
[  998.943212][T12730]  do_SYSENTER_32+0x1f/0x30
[  998.948136][T12730]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  998.954748][T12730] RIP: 0023:0xf7fc5539
[  998.959181][T12730] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  998.979327][T12730] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[  998.988145][T12730] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080847fff
[  999.004738][T12730] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4
[  999.012962][T12730] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  999.023538][T12730] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  999.031751][T12730] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  999.040240][T12730]  </TASK>
[  999.043611][T12730] ---[ end trace 0000000000000000 ]---
[  999.049254][T12730] 
[  999.051883][T12730] Uninit was created at:
[  999.056460][T12730]  __kmalloc_node_track_caller_noprof+0x96d/0x12f0
[  999.063513][T12730]  kmalloc_reserve+0x22f/0x4b0
[  999.068554][T12730]  __alloc_skb+0x347/0x7d0
[  999.073392][T12730]  sctp_packet_transmit+0x18a1/0x46d0
[  999.079046][T12730]  sctp_outq_flush+0x1c7d/0x67c0
[  999.084420][T12730]  sctp_outq_uncork+0x9e/0xc0
[  999.089614][T12730]  sctp_do_sm+0x8c8e/0x9720
[  999.101077][T12730]  sctp_assoc_bh_rcv+0x88b/0xbc0
[  999.106326][T12730]  sctp_inq_push+0x2a3/0x350
[  999.113281][T12730]  sctp_backlog_rcv+0x3c7/0xda0
[  999.118635][T12730]  sk_backlog_rcv+0x142/0x420
[  999.123611][T12730]  __release_sock+0x1d3/0x330
[  999.128765][T12730]  release_sock+0x6b/0x270
[  999.133473][T12730]  sctp_wait_for_connect+0x458/0x820
[  999.139166][T12730]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  999.144815][T12730]  sctp_sendmsg+0x3910/0x49f0
[  999.149956][T12730]  inet_sendmsg+0x269/0x2a0
[  999.154708][T12730]  __sock_sendmsg+0x278/0x3d0
[  999.159791][T12730]  __sys_sendto+0x593/0x720
[  999.164516][T12730]  __ia32_sys_sendto+0x12f/0x200
[  999.169883][T12730]  ia32_sys_call+0x1397/0x42c0
[  999.174879][T12730]  __do_fast_syscall_32+0xb0/0x150
[  999.180397][T12730]  do_fast_syscall_32+0x38/0x80
[  999.185721][T12730]  do_SYSENTER_32+0x1f/0x30
[  999.197187][T12730]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  999.203830][T12730] 
[  999.208526][T12730] CPU: 1 UID: 0 PID: 12730 Comm: syz.0.2417 Tainted: G        W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  999.222709][T12730] Tainted: [W]=WARN
[  999.226690][T12730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  999.237146][T12730] =====================================================
[  999.244447][T12730] Disabling lock debugging due to kernel taint
[  999.250803][T12730] Kernel panic - not syncing: kmsan.panic set ...
[  999.257414][T12730] CPU: 1 UID: 0 PID: 12730 Comm: syz.0.2417 Tainted: G    B   W           6.16.0-rc7-syzkaller-00140-gec2df4364666 #0 PREEMPT(none) 
[  999.271319][T12730] Tainted: [B]=BAD_PAGE, [W]=WARN
[  999.276482][T12730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  999.286720][T12730] Call Trace:
[  999.290146][T12730]  <TASK>
[  999.293226][T12730]  __dump_stack+0x26/0x30
[  999.297792][T12730]  dump_stack_lvl+0x53/0x270
[  999.302641][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  999.308694][T12730]  dump_stack+0x1e/0x25
[  999.313088][T12730]  panic+0x4bd/0xd50
[  999.317264][T12730]  kmsan_report+0x31c/0x320
[  999.321978][T12730]  ? __msan_warning+0x1b/0x30
[  999.326841][T12730]  ? sctp_inq_pop+0x14dc/0x19e0
[  999.331921][T12730]  ? sctp_assoc_bh_rcv+0x1a0/0xbc0
[  999.337272][T12730]  ? sctp_inq_push+0x2a3/0x350
[  999.342276][T12730]  ? sctp_backlog_rcv+0x3c7/0xda0
[  999.347530][T12730]  ? sk_backlog_rcv+0x142/0x420
[  999.352648][T12730]  ? __release_sock+0x1d3/0x330
[  999.357809][T12730]  ? release_sock+0x6b/0x270
[  999.362653][T12730]  ? sctp_wait_for_connect+0x458/0x820
[  999.368339][T12730]  ? sctp_sendmsg_to_asoc+0x223a/0x2260
[  999.374110][T12730]  ? sctp_sendmsg+0x3910/0x49f0
[  999.379169][T12730]  ? inet_sendmsg+0x269/0x2a0
[  999.384062][T12730]  ? __sock_sendmsg+0x278/0x3d0
[  999.389164][T12730]  ? __sys_sendto+0x593/0x720
[  999.394061][T12730]  ? __ia32_sys_sendto+0x12f/0x200
[  999.399383][T12730]  ? ia32_sys_call+0x1397/0x42c0
[  999.404524][T12730]  ? __do_fast_syscall_32+0xb0/0x150
[  999.410042][T12730]  ? do_fast_syscall_32+0x38/0x80
[  999.415281][T12730]  ? do_SYSENTER_32+0x1f/0x30
[  999.420178][T12730]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  999.426937][T12730]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  999.433694][T12730]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  999.440051][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.445394][T12730]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  999.452052][T12730]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  999.458395][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.463728][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  999.469771][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.475134][T12730]  __msan_warning+0x1b/0x30
[  999.479837][T12730]  sctp_inq_pop+0x14dc/0x19e0
[  999.484797][T12730]  sctp_assoc_bh_rcv+0x1a0/0xbc0
[  999.490035][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.495398][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  999.501444][T12730]  ? __pfx_sctp_assoc_bh_rcv+0x10/0x10
[  999.507159][T12730]  sctp_inq_push+0x2a3/0x350
[  999.511998][T12730]  sctp_backlog_rcv+0x3c7/0xda0
[  999.517176][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.522522][T12730]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  999.528134][T12730]  sk_backlog_rcv+0x142/0x420
[  999.533114][T12730]  __release_sock+0x1d3/0x330
[  999.538041][T12730]  release_sock+0x6b/0x270
[  999.542720][T12730]  sctp_wait_for_connect+0x458/0x820
[  999.548244][T12730]  ? __pfx_autoremove_wake_function+0x10/0x10
[  999.554596][T12730]  sctp_sendmsg_to_asoc+0x223a/0x2260
[  999.560206][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.565545][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  999.571631][T12730]  sctp_sendmsg+0x3910/0x49f0
[  999.576543][T12730]  ? kmsan_internal_set_shadow_origin+0x10/0x110
[  999.583245][T12730]  ? __pfx_sctp_sendmsg+0x10/0x10
[  999.588547][T12730]  inet_sendmsg+0x269/0x2a0
[  999.593289][T12730]  __sock_sendmsg+0x278/0x3d0
[  999.598216][T12730]  __sys_sendto+0x593/0x720
[  999.602927][T12730]  ? do_futex+0x3a1/0x480
[  999.607490][T12730]  ? kmsan_get_metadata+0xfb/0x160
[  999.612821][T12730]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  999.618888][T12730]  __ia32_sys_sendto+0x12f/0x200
[  999.624076][T12730]  ia32_sys_call+0x1397/0x42c0
[  999.629046][T12730]  __do_fast_syscall_32+0xb0/0x150
[  999.634405][T12730]  ? irqentry_exit_to_user_mode+0x82/0xa0
[  999.640345][T12730]  do_fast_syscall_32+0x38/0x80
[  999.645419][T12730]  do_SYSENTER_32+0x1f/0x30
[  999.650146][T12730]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  999.656723][T12730] RIP: 0023:0xf7fc5539
[  999.660968][T12730] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  999.680827][T12730] RSP: 002b:00000000f50e655c EFLAGS: 00000206 ORIG_RAX: 0000000000000171
[  999.689488][T12730] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080847fff
[  999.697658][T12730] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4
[  999.705838][T12730] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  999.713980][T12730] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  999.722124][T12730] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  999.730301][T12730]  </TASK>
[  999.733843][T12730] Kernel Offset: disabled
[  999.738280][T12730] Rebooting in 86400 seconds..