last executing test programs:

12m27.560992664s ago: executing program 0 (id=1):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x141a02, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000000c0)='/-\'g\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELOBJ={0x28, 0x14, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x8c}}, 0x0)

12m26.717277275s ago: executing program 0 (id=10):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x7, 0x0, @void, @value}, 0x28)
syz_open_dev$usbfs(0x0, 0x201, 0x2)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@usrquota}, {@orlov}, {@data_err_abort}]}, 0x1, 0x5de, &(0x7f0000001800)="$eJzs3c9vVNUeAPDvnf6gpbzXQl6e4kKaGAOJ0tICpjEuYGtIgz/ixo2VFkQKNLRGiyaUBDcmxo0xJq5ciP+FEtmy0pULN64MCVHD0sQxd3pv6bR3WlrauZX7+SRDzz1nLufcTr89Z07PuRNAZQ2m/9Qi9kfETBLRnywslXVGVji4+Lz7f350Jn0kUa+/9nsSSZaXPz/JvvZlJ/dExI8/JLGvY3W9s/NXL0xMT09dyY6H5y7ODM/OXz18/uLEualzU5dGXxgdO37s+NjIkU1d17WCvFM33n2//5PxN7/56q9k5NtfxpM4ES9nT1x+HVtlMAYb35NkdVHf2FZXVpKO7Odk+UucdJbYIDYkf/26IuKJ6I+OePDi9cfHr5TaOGBb1ZOIOlBRifiHisrHAfl7+5Xvg2uljEqAdrh3cnECYHX8dy7ODUZPY25g9/0klk/rJBGxuZm5Znsi4s7t8Rtnb4/fiG2ahwOKLVyPiCeL4j9pxP9A9MRAI/5rTfGfjgtOZ1/T/Fc3Wf/KqWLxD+2zGP89a8Z/tIj/t5bF/9ubrH/wQfKd3qb4793sJQEAAAAAAEBl3ToZEc8X/f2/trT+JwrW//RFxIktqH9wxfHqv//X7m5BNUCBeycjXipc/1vLV/8OdGSp/zTWA3QlZ89PTx2JiP9GxKHo2pUej6xRx+FP933ZqmwwW/+XP9L672RrAbN23O3c1XzO5MTcxKNeNxBx73rEU4Xrf5Ol/j8p6P/T3wczD1nHvmdvnm5Vtn78A9ul/nXEwcL+/8FdK5K1788x3BgPDOejgtWe/vCz71rVv9n4d4sJeHRp/7977fgfSJbfr2d243Ucne+styrb7Pi/O3m9ccuZ7izvg4m5uSsjEd3JqY40tyl/dONthsdRHg95vKTxf+iZtef/isb/vRGxsOL/Tv5o3lOc+//ffb+2ao/xP5Qnjf/JDfX/G0+M3hz4vlX9D9f/H2v09YeyHPN/sOiLPEy7m/MLwrGzqKjd7QUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAx0EtIvZEUhtaStdqQ0MRfRHxv9hdm748O/fc2cvvXZpMyxqf/1/LP+m3f/E4yT//f2DZ8eiK46MRsTciPu/obRwPnbk8PVn2xQMAAAAAAAAAAAAAAAAAAMAO0ddi/3/qt46yWwdsu86yGwCUpiD+f8oTY21uC9Be+n+oLvEP1SX+obrEP1SX+IfqEv9QXeIfqkv8AwAAAADAY2XvgVs/JxGx8GJv45Hqzsq6Sm0ZsN1qZTcAKI1b/EB1WfoD1eU9PpCsU97T8qT1zlzLzJlHOBkAAAAAAAAAAAAAKufgfvv/oars/4fqsv8fqivf/3+g5HYA7ec9PhDr7OQv3P+/7lkAAAAAAAAAAAAAwFaanb96YWJ6euqKxBs7oxntTNTr9WvpT8FOac+/PJEvhd8p7VmRyPf6PdxZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0TAAD//2W0JP0=")
open(0x0, 0x66842, 0x19)
r3 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffb)
sendfile(r3, r3, 0x0, 0x800000009)

12m11.378189374s ago: executing program 32 (id=10):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x7, 0x0, @void, @value}, 0x28)
syz_open_dev$usbfs(0x0, 0x201, 0x2)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000280)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@usrquota}, {@orlov}, {@data_err_abort}]}, 0x1, 0x5de, &(0x7f0000001800)="$eJzs3c9vVNUeAPDvnf6gpbzXQl6e4kKaGAOJ0tICpjEuYGtIgz/ixo2VFkQKNLRGiyaUBDcmxo0xJq5ciP+FEtmy0pULN64MCVHD0sQxd3pv6bR3WlrauZX7+SRDzz1nLufcTr89Z07PuRNAZQ2m/9Qi9kfETBLRnywslXVGVji4+Lz7f350Jn0kUa+/9nsSSZaXPz/JvvZlJ/dExI8/JLGvY3W9s/NXL0xMT09dyY6H5y7ODM/OXz18/uLEualzU5dGXxgdO37s+NjIkU1d17WCvFM33n2//5PxN7/56q9k5NtfxpM4ES9nT1x+HVtlMAYb35NkdVHf2FZXVpKO7Odk+UucdJbYIDYkf/26IuKJ6I+OePDi9cfHr5TaOGBb1ZOIOlBRifiHisrHAfl7+5Xvg2uljEqAdrh3cnECYHX8dy7ODUZPY25g9/0klk/rJBGxuZm5Znsi4s7t8Rtnb4/fiG2ahwOKLVyPiCeL4j9pxP9A9MRAI/5rTfGfjgtOZ1/T/Fc3Wf/KqWLxD+2zGP89a8Z/tIj/t5bF/9ubrH/wQfKd3qb4793sJQEAAAAAAEBl3ToZEc8X/f2/trT+JwrW//RFxIktqH9wxfHqv//X7m5BNUCBeycjXipc/1vLV/8OdGSp/zTWA3QlZ89PTx2JiP9GxKHo2pUej6xRx+FP933ZqmwwW/+XP9L672RrAbN23O3c1XzO5MTcxKNeNxBx73rEU4Xrf5Ol/j8p6P/T3wczD1nHvmdvnm5Vtn78A9ul/nXEwcL+/8FdK5K1788x3BgPDOejgtWe/vCz71rVv9n4d4sJeHRp/7977fgfSJbfr2d243Ucne+styrb7Pi/O3m9ccuZ7izvg4m5uSsjEd3JqY40tyl/dONthsdRHg95vKTxf+iZtef/isb/vRGxsOL/Tv5o3lOc+//ffb+2ao/xP5Qnjf/JDfX/G0+M3hz4vlX9D9f/H2v09YeyHPN/sOiLPEy7m/MLwrGzqKjd7QUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAx0EtIvZEUhtaStdqQ0MRfRHxv9hdm748O/fc2cvvXZpMyxqf/1/LP+m3f/E4yT//f2DZ8eiK46MRsTciPu/obRwPnbk8PVn2xQMAAAAAAAAAAAAAAAAAAMAO0ddi/3/qt46yWwdsu86yGwCUpiD+f8oTY21uC9Be+n+oLvEP1SX+obrEP1SX+IfqEv9QXeIfqkv8AwAAAADAY2XvgVs/JxGx8GJv45Hqzsq6Sm0ZsN1qZTcAKI1b/EB1WfoD1eU9PpCsU97T8qT1zlzLzJlHOBkAAAAAAAAAAAAAKufgfvv/oars/4fqsv8fqivf/3+g5HYA7ec9PhDr7OQv3P+/7lkAAAAAAAAAAAAAwFaanb96YWJ6euqKxBs7oxntTNTr9WvpT8FOac+/PJEvhd8p7VmRyPf6PdxZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0TAAD//2W0JP0=")
open(0x0, 0x66842, 0x19)
r3 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffb)
sendfile(r3, r3, 0x0, 0x800000009)

9m40.198796287s ago: executing program 2 (id=312):
syz_open_dev$video4linux(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x30000000}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x50, 0x6000000}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x2}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0xf1}, {0x7, 0x1, 0x2, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x3, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

9m35.402391574s ago: executing program 2 (id=322):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, &(0x7f0000000280), &(0x7f0000000080)=r3}, 0x20)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)

9m33.397973149s ago: executing program 2 (id=325):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x3a9, &(0x7f0000000080)={0x0, 0x0, 0x800, 0x0, 0x10000}, 0x0, 0x0)
socket$inet(0x2, 0x6, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x2000c800)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_PREPARE(r2, 0x40044102, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}, {&(0x7f0000000080)='-', 0x1}], 0x2)
socket$igmp(0x2, 0x3, 0x2)
mount$nfs(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

9m31.695823878s ago: executing program 2 (id=328):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x3a9, &(0x7f0000000080)={0x0, 0x0, 0x800, 0x0, 0x10000}, 0x0, 0x0)
r3 = socket$inet(0x2, 0x6, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000400), 0x6, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r3}})
copy_file_range(r4, 0x0, r0, &(0x7f0000000240)=0xa, 0x3, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x50}}, 0x2000c800)
r5 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_PREPARE(r5, 0x40044102, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r6, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}, {&(0x7f0000000080)='-', 0x1}], 0x2)
socket$igmp(0x2, 0x3, 0x2)
mount$nfs(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

9m30.657878831s ago: executing program 2 (id=330):
syz_emit_ethernet(0xa0, &(0x7f0000000480)={@broadcast, @multicast, @void, {@ipv4={0x800, @gre={{0x13, 0x4, 0x0, 0x0, 0x92, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @empty, {[@timestamp_addr={0x44, 0xc, 0xed, 0x1, 0x0, [{@rand_addr=0x64010101, 0xe}]}, @timestamp_prespec={0x44, 0x4, 0x3a, 0x3, 0x8}, @timestamp_addr={0x44, 0x1c, 0xd2, 0x1, 0x2, [{@empty}, {@rand_addr=0x64010101, 0x5}, {@loopback, 0x48bb}]}, @noop, @ssrr={0x89, 0x7, 0xf9, [@loopback]}, @ra={0x94, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x8100, 0x2, 0x10, [], "7f1a"}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x0, {{0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3}}}, {0x8, 0x22eb, 0xfffffffc, {{}, 0x2, {0x8}}}}}}}}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="230900000000000000000100000005000700000000000800090000000000060002000100000008000a000000000008001700", @ANYRES32], 0x3c}}, 0x0)

9m24.2546348s ago: executing program 2 (id=341):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair(0x23, 0x5, 0x0, &(0x7f0000000080))
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x20004041, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x0, 0xcc15, @ipv4={'\x00', '\xff\xff', @private=0xa010104}, 0x7}, 0x1c)
close(r4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)

9m8.589835429s ago: executing program 33 (id=341):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair(0x23, 0x5, 0x0, &(0x7f0000000080))
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x20004041, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x0, 0xcc15, @ipv4={'\x00', '\xff\xff', @private=0xa010104}, 0x7}, 0x1c)
close(r4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)

8m20.949215649s ago: executing program 5 (id=449):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4004854)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000180), 0x0, 0x840)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x3f8}, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
listen(r0, 0x0)
shutdown(r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000200)=0x2, 0x43)

8m19.72917642s ago: executing program 5 (id=452):
mount$nfs(0x0, 0x0, 0x0, 0x21022, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x110, 0x0, &(0x7f0000000180), &(0x7f0000000280))
syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00')
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x10001})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000300)={0x20071026}, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08800, &(0x7f0000000140)=ANY=[], 0x1, 0x67c, &(0x7f0000000580)="$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")
listxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)

8m17.506727819s ago: executing program 5 (id=457):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x3a9, &(0x7f0000000080)={0x0, 0x0, 0x800, 0x0, 0x10000}, 0x0, 0x0)
r3 = socket$inet(0x2, 0x6, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000400), 0x6, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r3}})
copy_file_range(r4, 0x0, r0, &(0x7f0000000240)=0xa, 0x3, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x50}}, 0x2000c800)
ioctl$SNDRV_PCM_IOCTL_PREPARE(0xffffffffffffffff, 0x40044102, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r5, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}, {&(0x7f0000000080)='-', 0x1}], 0x2)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r6, 0x0, 0x5, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @private, 0x0, "66d7aff8a7eb3af1f6b00ba1d302cec2e74280c1ffff000400"}, 0x3c)
mount$nfs(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)

8m13.634553494s ago: executing program 5 (id=463):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4004854)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e620"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000180), 0x0, 0x840)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x3f8}, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
listen(r0, 0x0)
shutdown(r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000200)=0x2, 0x43)

8m9.575883041s ago: executing program 5 (id=468):
mount$nfs(0x0, 0x0, 0x0, 0x21022, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x110, 0x0, &(0x7f0000000180), 0x0)
syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00')
capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340))
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08800, &(0x7f0000000140)=ANY=[], 0x1, 0x67c, &(0x7f0000000580)="$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")
syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
listxattr(&(0x7f0000000040)='./bus\x00', &(0x7f0000000200)=""/91, 0x5b)

8m6.942800156s ago: executing program 5 (id=473):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$eJzs3c9vI1cdAPDvTH65222zCz1ABewChQWt1t5421XVS8sFhKpKiIoD4rANiTcKseMQO6UJkUj/BpBA4gR/AgckDkg9ceDGEYkDQpQDUoEItEHiYDRjJ+smNmtqx+7Gn480O/Pmzcz3PWdn3vNz4hfA1LoeEQcRMR8Rb0TEYmd/0lnilfaSHffgcH/l6HB/JYlW6/W/J3l+ti+6zsk82blmISK+/pWIbydn4zZ29zaWq9XKdiddata2So3dvVvrteW1ylpls1y+u3T39ot3XiiPrK7Xar9478vrr37j17/65Lu/O/ji97NiXe7kdddjlNpVnzuJk5mNiFfPI9gEzHTW8xMuBx9MGhEfiYjP5Pf/Yszk/zsBgIus1VqM1mJ3GgC46NJ8DCxJixGRpp1OQLE9hvdMXEqr9Ubz5v36zuZqe6zsSsyl99erldtXF/7w3fzguSRLL+V5eX6eLp9K34mIqxHxo4Un8nRxpV5dnUyXBwCm3pPd7X9E/GshTYvFgU7t8akeAPDYKEy6AADA2Gn/AWD6aP8BYPoM0P53Puw/OPeyAADj4f0/AEwf7T8ATB/tPwBMla+99lq2tI4633+9+ubuzkb9zVurlcZGsbazUlypb28V1+r1tfw7e2qPul61Xt9aej523io1K41mqbG7d69W39ls3su/1/teZW4stQIA/per1975fRIRBy89kS/RNZeDthoutnSERwGPl5lhTtZBgMea2b5geg3UhOedhN+ee1mAyej5Zd6Fnpvv95P/I4jfM4IPlRsfH3z83xzPcLEY2Yfp9cHG/18eeTmA8TP+D9Or1UpOz/k/f5IFAFxIQ/wKX+sHo+qEABP1qMm8R/L5PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwwlyPiO5GkxXwu8DT7Ny0WI56KiCsxl9xfr1ZuR8TTcS0i5hay9NKkCw0ADCn9a9KZ/+vG4nOXT+fOJ/9eyNcR8b2fvv7jt5abze2lbP8/TvYvHE8fVn543hDzCgIAg/vzIAfl7Xe5s+56I//gcH/leDnHMp7x3pdOJh9dOTrcz5d2zmy0Wq1WRCHvS1z6ZxKznXMKEfFsRMyMIP7B2xHxsV71T/KxkSudmU+740cn9lNjjZ++L36a57XX2cv30RGUBabNO9nz55Ve918a1/N17/u/kD+hhpc//woRx8++o674s51IMz3iZ/f89UFjPP+br57Z2Vps570d8exsr/jJSfykT/znBoz/x0986ocv98lr/SziRvSO3x2r1KxtlRq7e7fWa8trlbXKZrl8d+nu7RfvvFAu5WPUpeOR6rP+9tLNp/uVLav/pT7xCz3rP39y7ucGrP/P//PGtz79MLlwOv4XPtv75/9Mz/htWZv4+QHjL1/6Zd/pu7P4q33q/6if/80B47/7l73VAQ8FAMagsbu3sVytVraH2sjehY7iOmc2siIOdvBxd3G4oH+KfGNEL0ufjawzNsjBc+f1qp77xuxJX3G0V/5mdsUxVycdeS2G2ngwrliTeyYB4/Hwpp90SQAAAAAAAAAAAAAAgH7G8adLk64jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF9d/AwAA//8+JMPM")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x2e)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f00000039c0)=[{{&(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x2000c044)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="8000000002000200080004000000000008001b"], 0x30}}, 0x0)
sendto$inet(r5, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r7, 0x54a2)

7m43.217313331s ago: executing program 34 (id=473):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x2e)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f00000039c0)=[{{&(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x2000c044)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="8000000002000200080004000000000008001b"], 0x30}}, 0x0)
sendto$inet(r5, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r7, 0x54a2)

26.892998438s ago: executing program 7 (id=1334):
mount$nfs(0x0, 0x0, 0x0, 0x21022, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x110, 0x0, &(0x7f0000000180), 0x0)
syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00')
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x10001})
capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340))
listxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
listxattr(&(0x7f0000000040)='./bus\x00', &(0x7f0000000200)=""/91, 0x5b)

23.628128691s ago: executing program 7 (id=1339):
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000380)={0x1f, 0xffff}, 0x6)
socket$nl_crypto(0x10, 0x3, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_devices(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='b *:* m'], 0x8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
sendto$inet6(r1, &(0x7f00000003c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82de131f9e42074be539791e3e98687ee05985300"/159, 0x9f, 0x8c5, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r1, 0x2000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, 0x0, 0x0)
bind$inet6(r0, 0x0, 0x0)
r4 = openat$cgroup_devices(r2, &(0x7f00000001c0)='devices.deny\x00', 0x2, 0x0)
socket$inet(0xa, 0x1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r6 = syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYRES16=r6, @ANYBLOB, @ANYRES16=r5], 0x21c}}, 0x0)
splice(r0, 0x0, r4, 0x0, 0x7, 0x0)

22.949273756s ago: executing program 7 (id=1343):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000007c7336270018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
pipe2$9p(&(0x7f0000000000), 0x84800)
recvmmsg(r4, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0xb3}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

21.842928067s ago: executing program 7 (id=1344):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000400)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r4 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x4)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
statx(0xffffffffffffff9c, 0x0, 0x6000, 0x100, 0x0)
writev(r6, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0xa2442, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)

19.906590888s ago: executing program 7 (id=1350):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
select(0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0))

18.704110168s ago: executing program 7 (id=1355):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
getsockname$packet(r0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = socket(0x11, 0x4, 0x6)
getsockopt$bt_BT_SECURITY(r3, 0x107, 0x11, 0x0, 0x20000002)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)

17.576276196s ago: executing program 3 (id=1356):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

17.454407629s ago: executing program 8 (id=1358):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r5 = add_key$user(&(0x7f0000000080), &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000540)="0706675823b8a37f19b37e0f9f120663b78a6a322f28cb301825eddc42c667fc68923d7df9f4c1843c5f11b63d2684fff43955079736fa4c80100487c31c09706b6bf145eb1baf416d2681491bd6a3098fe1a6741d65b085b4075db8419d9e6d17b1eec4dfb860a71d61af753459bcc5ea1f20d6c1c74afda3b0c08bf98886eaac01b08aa753b8727f25773c98cd6a78c06b758992b03b81e2e09cf103dc16a5658a3b58626b457ee4773d41b3548f2258a2e11cc22555da4ef9", 0xba, r4)
r6 = add_key$user(&(0x7f0000000180), &(0x7f0000000340)={'syz', 0x3}, &(0x7f0000000140)="04", 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f00000001c0)={r6, r5, r6}, &(0x7f0000000700)=""/259, 0x103, 0x0)

17.350981523s ago: executing program 1 (id=1360):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
capset(0x0, &(0x7f0000000040))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

15.59191593s ago: executing program 3 (id=1361):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

14.740303578s ago: executing program 6 (id=1362):
mount$nfs(0x0, 0x0, 0x0, 0x21022, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_io_uring_setup(0x110, 0x0, &(0x7f0000000180), &(0x7f0000000280))
syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00')
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08800, &(0x7f0000000140)=ANY=[], 0x1, 0x67c, &(0x7f0000000580)="$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")

14.695684498s ago: executing program 8 (id=1363):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x80e, &(0x7f00000000c0)={[{@quota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@stripe={'stripe', 0x3d, 0x4}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}]}, 0x3, 0x45c, &(0x7f00000009c0)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})

14.393340633s ago: executing program 1 (id=1364):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
getsockname$packet(r0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
socket(0x11, 0x4, 0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)

14.025683738s ago: executing program 4 (id=1365):
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000380)={0x1f, 0xffff}, 0x6)
socket$nl_crypto(0x10, 0x3, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_devices(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='b *:'], 0x8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
sendto$inet6(r1, &(0x7f00000003c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82de131f9e42074be539791e3e98687ee05985300"/169, 0xa9, 0x8c5, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r1, 0x2000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000007c0)={&(0x7f0000ffd000/0x1000)=nil, 0x20, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1, 0x0}, &(0x7f0000000800)=0x40)
bind$inet6(r0, 0x0, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0)

13.351083767s ago: executing program 3 (id=1366):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
capset(0x0, &(0x7f0000000040))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r2, 0xffffffffffffffff, 0x0)

11.951115078s ago: executing program 6 (id=1367):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r5 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r4, r6, 0x1, 0x0, @void}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
mount$cgroup(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)

11.947134347s ago: executing program 8 (id=1368):
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

11.7076844s ago: executing program 4 (id=1369):
epoll_create1(0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$int_in(r0, 0x5452, &(0x7f0000000280)=0xffffffffffffffff)
sendto$inet6(r0, &(0x7f0000000340)="a4", 0x1, 0x4000, &(0x7f0000000400)={0xa, 0x4e20, 0x0, @private1}, 0x1c)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r0, 0x1)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

11.553771156s ago: executing program 1 (id=1370):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000400)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r3 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
statx(0xffffffffffffff9c, 0x0, 0x6000, 0x100, 0x0)
chown(0x0, 0x0, 0x0)
writev(r5, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0xa2442, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)

10.543681874s ago: executing program 3 (id=1371):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

10.210529654s ago: executing program 6 (id=1372):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4004854)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000180), 0x0, 0x840)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x3f8}, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
listen(r0, 0x0)
shutdown(r0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000200)=0x2, 0x43)

8.950060102s ago: executing program 1 (id=1373):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

8.94765113s ago: executing program 8 (id=1374):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x80e, &(0x7f00000000c0)={[{@quota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@stripe={'stripe', 0x3d, 0x4}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}]}, 0x3, 0x45c, &(0x7f00000009c0)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})

8.913157796s ago: executing program 3 (id=1375):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_CURSOR(r1, 0xc01c64a3, &(0x7f0000000040)={0x2, 0x0, 0x10000003, 0x8000, 0x9ab, 0x401fc, 0x5})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f0000002540)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
shmat(r6, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
shmdt(0x0)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000080)={0xf0f046})

8.911986417s ago: executing program 4 (id=1376):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
capset(0x0, &(0x7f0000000040))
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r3, 0xffffffffffffffff, 0x0)

5.602302715s ago: executing program 1 (id=1377):
mount$nfs(0x0, 0x0, 0x0, 0x21022, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
listxattr(&(0x7f0000000040)='./bus\x00', &(0x7f0000000200)=""/91, 0x5b)

5.601080423s ago: executing program 8 (id=1378):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e85"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
mount$cgroup(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

5.379259095s ago: executing program 6 (id=1379):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmmsg(0xffffffffffffffff, &(0x7f0000006200)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000380)="2e046d2d4cc9c0a3a5fefbad4546c78d28a87dab434e2733fac498751ede6b5aa009019415543d0316ac23e1df1fc62cd13b3fef690e0af2539af59c3b4cbd66bb3b307944ed2c1de84aa2059b81b1b114a611c6a2e5d7ec3a0d15207265157014bf8b904dcfe962be42a8d02918312bab4c58a35bcd1986639904f8ea56da8b33fa3c4ea3799bb6f2215a481763a23c5e83472bf6ac55836887f86f6c9cf52d2554864af8ee5bd304fc0ea85c", 0xad}, {&(0x7f0000000540)="416e426679dd", 0x6}, {&(0x7f0000000600)="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", 0x37e}], 0x3}}], 0x1, 0x4000000)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000300)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080e4ff00ffffffffffff080211000001"], 0x6f4}}, 0x0)

5.267730189s ago: executing program 4 (id=1380):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, 0xffffffffffffffff, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x334e8b})
r1 = socket(0x2, 0x80805, 0x0)
mincore(&(0x7f0000000000/0x1000)=nil, 0x1000, 0xfffffffffffffffe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x8)
r2 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000240)='sched_switch\x00', r5}, 0x18)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7fc}, 0xe)
r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000340)={r6, r6, 0xb, 0x0, 0x0, 0x8, 0xb6, 0x7f, 0x7, 0x801, 0x2, 0x10, 'syz0\x00'})
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, 0x0, &(0x7f0000000200))

3.531098477s ago: executing program 35 (id=1355):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
getsockname$packet(r0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = socket(0x11, 0x4, 0x6)
getsockopt$bt_BT_SECURITY(r3, 0x107, 0x11, 0x0, 0x20000002)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da97e22f4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ad0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bff3b89c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c2ed01faa7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497dad64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6fba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd2310801570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb414c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000000000000000000000000000000a0cc2b89ce1525748ce167cbabb881f060599a6a59f645edca1d5c24b2f6b8c997a8f3e1b7679984a566d98d4d31198ee4c5ea7be0d99cf89bba4a6fd0bec12e7792bec3c5038e13b1982f80cdecd07f8908a983a7c9fb81c2ba7f7e87c991f30e50d1b3bbe4cf2a2f5d4571b6568ada51bc121c9139d2a8e0638c84066b1759"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)

2.375672378s ago: executing program 6 (id=1382):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
getsockname$packet(r0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
socket(0x11, 0x4, 0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)

2.328855231s ago: executing program 1 (id=1383):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, 0xffffffffffffffff, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x334e8b})
r1 = socket(0x2, 0x80805, 0x0)
mincore(&(0x7f0000000000/0x1000)=nil, 0x1000, 0xfffffffffffffffe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x8)
r2 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000240)='sched_switch\x00', r5}, 0x18)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7fc}, 0xe)
r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000340)={r6, r6, 0xb, 0x0, 0x0, 0x8, 0xb6, 0x7f, 0x7, 0x801, 0x2, 0x10, 'syz0\x00'})
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, 0x0, &(0x7f0000000200))

2.30343706s ago: executing program 4 (id=1384):
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000380)={0x1f, 0xffff}, 0x6)
socket$nl_crypto(0x10, 0x3, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_devices(r1, 0x0, 0x8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
sendto$inet6(r1, &(0x7f00000003c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82de131f9e42074be539791e3e98687ee05985300"/169, 0xa9, 0x8c5, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r1, 0x2000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000007c0)={&(0x7f0000ffd000/0x1000)=nil, 0x20, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1, 0x0}, &(0x7f0000000800)=0x40)
bind$inet6(r0, 0x0, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0)

2.121874385s ago: executing program 3 (id=1385):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000400)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r3 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
statx(0xffffffffffffff9c, 0x0, 0x6000, 0x100, 0x0)
chown(0x0, 0x0, 0x0)
writev(r5, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0xa2442, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)

1.983496439s ago: executing program 4 (id=1386):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

884.587372ms ago: executing program 8 (id=1387):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

0s ago: executing program 6 (id=1388):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

kernel console output (not intermixed with test programs):

d167579-eb65-4e76-9a50-61ac97e9b59d
[  556.644989][ T9933] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  556.769928][ T5844] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  557.007318][ T9933] BTRFS info (device loop4): rebuilding free space tree
[  557.042709][ T9933] BTRFS info (device loop4): disabling free space tree
[  557.049873][ T9933] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  557.059645][ T9933] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  557.184853][ T5829] BTRFS info (device loop3): last unmount of filesystem 05ab60c7-2d43-4fc6-a6c3-3a1ae1a78ec7
[  557.754343][ T9957] loop6: detected capacity change from 0 to 512
[  557.927775][ T9957] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  557.993628][ T9957] EXT4-fs (loop6): 1 truncate cleaned up
[  558.046334][ T9957] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  558.509183][ T9964] loop1: detected capacity change from 0 to 32768
[  558.551482][ T9964] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.769 (9964)
[  558.995794][ T5841] BTRFS info (device loop4): last unmount of filesystem a16aa81d-a642-430d-ae7c-f696dc377b37
[  559.215108][ T9964] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  559.225894][ T9964] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  559.290513][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  559.358457][ T9816] bridge0: port 1(bridge_slave_0) entered blocking state
[  559.387455][ T9816] bridge0: port 1(bridge_slave_0) entered disabled state
[  559.406432][ T9816] bridge_slave_0: entered allmulticast mode
[  559.581232][ T9816] bridge_slave_0: entered promiscuous mode
[  559.647190][ T9816] bridge0: port 2(bridge_slave_1) entered blocking state
[  559.661430][ T9964] BTRFS info (device loop1): rebuilding free space tree
[  559.683141][ T9816] bridge0: port 2(bridge_slave_1) entered disabled state
[  559.707481][ T9964] BTRFS info (device loop1): disabling free space tree
[  559.714495][ T9964] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  559.724244][ T9964] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  559.773232][ T9816] bridge_slave_1: entered allmulticast mode
[  559.926811][ T9816] bridge_slave_1: entered promiscuous mode
[  560.979590][ T9988] loop6: detected capacity change from 0 to 4096
[  561.018381][ T4943] bridge_slave_1: left allmulticast mode
[  561.145496][ T9988] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  561.193072][ T4943] bridge_slave_1: left promiscuous mode
[  561.200561][ T4943] bridge0: port 2(bridge_slave_1) entered disabled state
[  561.414984][ T5844] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  561.543279][ T4943] bridge_slave_0: left allmulticast mode
[  561.548984][ T4943] bridge_slave_0: left promiscuous mode
[  561.714383][ T4943] bridge0: port 1(bridge_slave_0) entered disabled state
[  561.758549][ T9988] ntfs3(loop6): ino=1a, mi_enum_attr
[  561.764424][ T9988] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  561.771813][ T9988] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  562.180696][ T9997] ntfs3(loop6): ino=5, "/" ntfs_readdir
[  562.463111][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  562.469777][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  562.946361][T10001] loop3: detected capacity change from 0 to 512
[  562.981705][T10001] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  563.055763][T10001] EXT4-fs (loop3): 1 truncate cleaned up
[  563.070857][T10005] loop1: detected capacity change from 0 to 512
[  563.074422][T10001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  563.108640][T10005] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.775: casefold flag without casefold feature
[  563.141650][T10005] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.775: couldn't read orphan inode 15 (err -117)
[  563.206660][T10005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  564.148920][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.636486][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.911166][   T29] audit: type=1326 audit(1740543977.438:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10011 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0230b8d169 code=0x7ffc0000
[  565.606594][T10019] loop3: detected capacity change from 0 to 1024
[  565.663102][   T29] audit: type=1326 audit(1740543977.438:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10011 comm="syz.1.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0230b8d169 code=0x7ffc0000
[  565.797573][ T6743] hfsplus: b-tree write err: -5, ino 4
[  565.815893][T10022] loop1: detected capacity change from 0 to 512
[  565.848388][T10022] EXT4-fs: quotafile must be on filesystem root
[  566.234019][T10024] loop3: detected capacity change from 0 to 32768
[  566.244240][T10024] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.782 (10024)
[  566.919622][T10024] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  566.930561][T10024] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  567.005650][T10024] BTRFS info (device loop3): rebuilding free space tree
[  567.022492][T10024] BTRFS info (device loop3): disabling free space tree
[  567.029556][T10024] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  567.039312][T10024] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  567.133551][ T4943] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  567.150554][   T29] audit: type=1800 audit(1740543979.758:27): pid=10024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.782" name="bus" dev="loop3" ino=263 res=0 errno=0
[  567.179696][T10015] loop6: detected capacity change from 0 to 32768
[  567.241689][T10015] BTRFS: device /dev/loop6 (7:6) using temp-fsid 2a9e5671-dd84-419f-89bf-55b056ed49fb
[  567.265990][ T4943] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  567.836042][T10015] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.779 (10015)
[  567.893403][ T4943] bond0 (unregistering): Released all slaves
[  568.172353][ T5829] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  568.510212][ T9816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  568.576014][ T9816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  569.015175][ T4943] hsr_slave_0: left promiscuous mode
[  569.201337][ T4943] hsr_slave_1: left promiscuous mode
[  569.296372][ T4943] batman_adv: batadv0: Removing interface: batadv_slave_0
[  569.425366][ T4943] batman_adv: batadv0: Removing interface: batadv_slave_1
[  569.447253][T10057] program syz.4.787 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  569.803841][T10061] loop6: detected capacity change from 0 to 512
[  570.406692][T10063] loop3: detected capacity change from 0 to 32768
[  570.441024][T10063] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.785 (10063)
[  570.456502][T10061] EXT4-fs error (device loop6): ext4_orphan_get:1389: inode #15: comm syz.6.788: casefold flag without casefold feature
[  570.477280][T10063] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  570.488490][T10063] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  570.517872][T10061] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.788: couldn't read orphan inode 15 (err -117)
[  570.633942][T10061] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  571.538382][T10063] BTRFS info (device loop3): rebuilding free space tree
[  571.554990][T10063] BTRFS info (device loop3): disabling free space tree
[  571.561916][T10063] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  571.571776][T10063] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  571.602841][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  572.625854][T10096] loop1: detected capacity change from 0 to 32768
[  572.654243][T10096] BTRFS: device /dev/loop1 (7:1) using temp-fsid 9efce155-d099-417c-8cf2-1bfca6f9cf19
[  572.663951][T10096] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.792 (10096)
[  572.743282][T10096] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  572.753728][T10096] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  574.203158][T10101] loop4: detected capacity change from 0 to 40427
[  574.713704][T10101] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  574.720696][T10101] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  574.747218][T10096] BTRFS info (device loop1): rebuilding free space tree
[  574.765140][T10096] BTRFS info (device loop1): disabling free space tree
[  574.772060][T10096] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  574.782033][T10096] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  574.801042][T10101] F2FS-fs (loop4): build fault injection attr: rate: 17008, type: 0x1fffff
[  574.810039][T10101] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x1f8
[  574.823483][T10101] F2FS-fs (loop4): invalid crc value
[  574.844865][T10101] F2FS-fs (loop4): Found nat_bits in checkpoint
[  574.856601][ T4943] team0 (unregistering): Port device team_slave_1 removed
[  574.942984][T10101] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  574.950078][T10101] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  574.960084][ T5829] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  575.911179][T10133] loop6: detected capacity change from 0 to 32768
[  575.920117][T10133] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.796 (10133)
[  575.980583][ T5841] syz-executor: attempt to access beyond end of device
[  575.980583][ T5841] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  576.000091][T10133] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  576.010365][T10133] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm
[  576.068062][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  576.439801][ T4943] team0 (unregistering): Port device team_slave_0 removed
[  576.473525][T10133] BTRFS info (device loop6): rebuilding free space tree
[  576.490767][T10133] BTRFS info (device loop6): disabling free space tree
[  576.491398][ T5844] BTRFS info (device loop1): last unmount of filesystem 9efce155-d099-417c-8cf2-1bfca6f9cf19
[  576.497816][T10133] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  576.518332][T10133] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  577.368538][T10161] loop4: detected capacity change from 0 to 512
[  578.024383][T10161] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  578.071093][T10161] EXT4-fs (loop4): 1 truncate cleaned up
[  578.097549][T10161] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  578.115762][ T6084] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  579.459142][T10174] loop3: detected capacity change from 0 to 512
[  579.649228][T10177] loop1: detected capacity change from 0 to 16
[  579.796700][T10177] erofs: DAX unsupported by block device. Turning off DAX.
[  579.830013][T10177] erofs (device loop1): mounted with root inode @ nid 36.
[  579.863653][T10177] syz.1.802: attempt to access beyond end of device
[  579.863653][T10177] loop1: rw=0, sector=131157, nr_sectors = 1 limit=16
[  579.877433][T10177] erofs (device loop1): read error -5 @ 0 of nid 36
[  580.148472][T10174] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.801: casefold flag without casefold feature
[  580.188040][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.211599][T10174] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.801: couldn't read orphan inode 15 (err -117)
[  580.263606][T10174] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.902792][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.977700][T10181] loop1: detected capacity change from 0 to 256
[  581.105925][T10181] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  581.373651][T10190] 9pnet_fd: Insufficient options for proto=fd
[  583.223398][T10198] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  583.571926][T10195] loop1: detected capacity change from 0 to 32768
[  583.581654][T10195] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.808 (10195)
[  583.599249][T10195] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  583.609467][T10195] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  585.467185][T10195] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  585.468476][T10195] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  585.478987][T10195] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  585.489367][T10195] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  585.539539][T10195] BTRFS error (device loop1): open_ctree failed: -12
[  585.915384][T10234] loop6: detected capacity change from 0 to 32768
[  585.948054][T10234] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.811 (10234)
[  585.997008][   T29] audit: type=1326 audit(1740543998.608:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131af8d169 code=0x7ffc0000
[  586.811496][   T29] audit: type=1326 audit(1740543998.608:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131af8d169 code=0x7ffc0000
[  586.823488][T10234] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  586.833766][    C1] vkms_vblank_simulate: vblank timer overrun
[  586.850538][T10234] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm
[  587.066177][T10234] BTRFS info (device loop6): rebuilding free space tree
[  587.095053][T10234] BTRFS info (device loop6): disabling free space tree
[  587.102025][T10234] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  587.111889][T10234] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  587.916258][T10261] loop1: detected capacity change from 0 to 512
[  588.039213][   T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  588.073303][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  588.086326][   T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  588.099614][   T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  588.113096][   T55] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  588.124732][   T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  588.181107][T10261] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.815: casefold flag without casefold feature
[  588.200634][T10261] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.815: couldn't read orphan inode 15 (err -117)
[  588.235259][T10261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.675545][   T47] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  589.159909][   T47] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  589.215764][   T47] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  589.259579][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.320419][   T47] usb 4-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  589.403293][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  589.448656][   T47] usb 4-1: Product: syz
[  589.486836][   T47] usb 4-1: Manufacturer: syz
[  589.510110][   T47] usb 4-1: SerialNumber: syz
[  589.576436][ T9816] team0: Port device team_slave_0 added
[  589.579442][   T47] usb 4-1: config 0 descriptor??
[  589.590945][ T9816] team0: Port device team_slave_1 added
[  589.648518][T10266] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  589.686530][T10266] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  589.824250][T10283] loop1: detected capacity change from 0 to 512
[  589.840810][T10283] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  589.855266][ T6084] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  589.890814][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_0
[  589.920508][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  589.986063][T10266] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  590.013948][T10266] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  590.030230][T10283] EXT4-fs (loop1): 1 truncate cleaned up
[  590.053963][T10283] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.067459][ T9816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  590.141386][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_1
[  590.255077][   T55] Bluetooth: hci3: command tx timeout
[  590.388268][T10286] loop4: detected capacity change from 0 to 16
[  590.423484][T10286] erofs: DAX unsupported by block device. Turning off DAX.
[  590.454581][T10286] erofs (device loop4): mounted with root inode @ nid 36.
[  590.497597][T10286] syz.4.819: attempt to access beyond end of device
[  590.497597][T10286] loop4: rw=0, sector=131157, nr_sectors = 1 limit=16
[  590.511775][T10286] erofs (device loop4): read error -5 @ 0 of nid 36
[  590.901278][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  591.215244][ T9816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  591.305769][   T47] Error reading MAC address
[  592.161058][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  593.044622][   T55] Bluetooth: hci3: command tx timeout
[  593.216145][ T5895] usb 4-1: USB disconnect, device number 3
[  593.465504][ T9816] hsr_slave_0: entered promiscuous mode
[  593.494670][ T9816] hsr_slave_1: entered promiscuous mode
[  593.500957][ T9816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  593.508954][ T9816] Cannot create hsr debugfs directory
[  594.074473][ T8713] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  594.410788][T10307] loop3: detected capacity change from 0 to 16
[  594.430016][T10307] erofs: DAX unsupported by block device. Turning off DAX.
[  594.452928][T10307] erofs (device loop3): mounted with root inode @ nid 36.
[  594.495727][T10307] syz.3.824: attempt to access beyond end of device
[  594.495727][T10307] loop3: rw=0, sector=131157, nr_sectors = 1 limit=16
[  594.511094][T10307] erofs (device loop3): read error -5 @ 0 of nid 36
[  595.092941][   T55] Bluetooth: hci3: command tx timeout
[  595.259909][ T8713] usb 2-1: Using ep0 maxpacket: 16
[  595.309659][ T8713] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  595.350862][T10309] loop3: detected capacity change from 0 to 512
[  595.389512][ T8713] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  595.437923][ T8713] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  595.438271][T10309] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.826: casefold flag without casefold feature
[  595.501475][T10309] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.826: couldn't read orphan inode 15 (err -117)
[  595.520372][ T8713] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  595.530547][ T8713] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  595.533888][T10309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.545380][ T8713] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  595.583055][ T8713] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  595.591100][ T8713] usb 2-1: Manufacturer: syz
[  595.604563][ T8713] usb 2-1: config 0 descriptor??
[  595.723552][   T47] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  596.019893][   T47] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  596.090414][T10301] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  596.111837][ T4943] bridge_slave_1: left allmulticast mode
[  596.165562][   T47] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  596.192684][ T4943] bridge_slave_1: left promiscuous mode
[  596.209860][ T4943] bridge0: port 2(bridge_slave_1) entered disabled state
[  596.212684][T10301] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  596.254837][ T4943] bridge_slave_0: left allmulticast mode
[  596.273278][ T4943] bridge_slave_0: left promiscuous mode
[  596.279144][ T4943] bridge0: port 1(bridge_slave_0) entered disabled state
[  596.304410][   T47] usb 7-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  596.326338][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.336807][   T47] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  596.358990][   T47] usb 7-1: Product: syz
[  596.373983][   T47] usb 7-1: Manufacturer: syz
[  596.378611][   T47] usb 7-1: SerialNumber: syz
[  596.432436][   T47] usb 7-1: config 0 descriptor??
[  596.448156][T10316] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  596.473258][T10316] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  596.688358][ T4943] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  596.730219][ T4943] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  596.750164][T10316] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  596.757561][T10316] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  596.771178][ T4943] bond0 (unregistering): Released all slaves
[  596.932139][T10263] chnl_net:caif_netlink_parms(): no params data found
[  597.173544][   T55] Bluetooth: hci3: command tx timeout
[  597.257894][   T47] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  598.046109][ T8713] rc_core: IR keymap rc-hauppauge not found
[  598.073381][ T8713] Registered IR keymap rc-empty
[  598.078608][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  598.173545][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  598.199141][ T4943] hsr_slave_0: left promiscuous mode
[  598.248716][ T4943] hsr_slave_1: left promiscuous mode
[  598.260053][ T8713] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  598.314219][ T4943] batman_adv: batadv0: Removing interface: batadv_slave_0
[  598.363600][T10330] loop3: detected capacity change from 0 to 32768
[  598.364438][ T8713] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input15
[  598.371837][   T47] dm9601 7-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  598.392023][T10330] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.831 (10330)
[  598.396796][ T4943] batman_adv: batadv0: Removing interface: batadv_slave_1
[  598.414979][T10330] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  598.425242][T10330] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  598.441446][   T47] usb 7-1: USB disconnect, device number 2
[  598.597651][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  598.719420][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.049380][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.068830][T10330] BTRFS info (device loop3): rebuilding free space tree
[  599.120971][T10330] BTRFS info (device loop3): disabling free space tree
[  599.127972][T10330] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  599.137724][T10330] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  599.216935][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.283015][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.304862][   T29] audit: type=1800 audit(1740544011.918:30): pid=10330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.831" name="bus" dev="loop3" ino=263 res=0 errno=0
[  599.325231][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.354353][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.409919][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.676134][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  599.735489][ T8713] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  600.241906][ T8713] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[  600.439155][ T8713] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  600.551103][ T8713] usb 2-1: USB disconnect, device number 2
[  600.643803][ T5829] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  600.983359][T10359] loop1: detected capacity change from 0 to 32768
[  601.010306][T10359] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.836 (10359)
[  601.079705][T10359] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  601.089949][T10359] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  601.747831][T10359] BTRFS info (device loop1): rebuilding free space tree
[  601.771377][T10359] BTRFS info (device loop1): disabling free space tree
[  601.778404][T10359] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  601.788179][T10359] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  601.847233][T10378] program syz.3.835 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  601.937456][T10374] program syz.4.837 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  601.979437][   T29] audit: type=1800 audit(1740544014.568:31): pid=10359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.836" name="bus" dev="loop1" ino=263 res=0 errno=0
[  602.199284][T10384] loop3: detected capacity change from 0 to 512
[  602.263501][T10384] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  602.277181][ T4943] team0 (unregistering): Port device team_slave_1 removed
[  602.931814][T10384] EXT4-fs (loop3): 1 truncate cleaned up
[  602.945943][T10384] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  602.999048][ T4943] team0 (unregistering): Port device team_slave_0 removed
[  604.667163][T10399] loop6: detected capacity change from 0 to 32768
[  604.691356][T10399] BTRFS: device /dev/loop6 (7:6) using temp-fsid b8b7f545-0bc2-47b1-bafa-a8860dddb0aa
[  604.701356][T10399] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.841 (10399)
[  604.721447][T10399] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  604.732094][T10399] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm
[  604.758075][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.974400][T10399] BTRFS info (device loop6): rebuilding free space tree
[  604.991300][T10399] BTRFS info (device loop6): disabling free space tree
[  604.998247][T10399] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  605.008028][T10399] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  605.142685][   T29] audit: type=1800 audit(1740544017.748:32): pid=10399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.841" name="bus" dev="loop6" ino=263 res=0 errno=0
[  606.353232][T10423] loop3: detected capacity change from 0 to 512
[  606.360197][T10423] journal_path: Non-blockdev passed as './bus'
[  606.366474][T10423] EXT4-fs: error: could not find journal device path
[  606.381751][   T29] audit: type=1326 audit(1740544018.988:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10418 comm="syz.3.842" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f131af8d169 code=0x0
[  606.714664][ T6084] BTRFS info (device loop6): last unmount of filesystem b8b7f545-0bc2-47b1-bafa-a8860dddb0aa
[  606.750081][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  606.763472][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  606.988992][T10426] loop3: detected capacity change from 0 to 32768
[  607.006779][T10426] BTRFS: device /dev/loop3 (7:3) using temp-fsid 228a31de-c2ba-46a7-83b6-4d7e6bb77ddc
[  607.017117][T10426] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.844 (10426)
[  607.024794][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  607.046219][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  607.066174][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  607.076166][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  607.076232][T10426] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  607.093430][T10426] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  607.258451][T10426] BTRFS info (device loop3): rebuilding free space tree
[  607.286242][T10426] BTRFS info (device loop3): disabling free space tree
[  607.293638][T10426] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  607.303415][T10426] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  607.405059][ T5844] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  607.446509][T10263] bridge0: port 1(bridge_slave_0) entered blocking state
[  607.466966][   T29] audit: type=1800 audit(1740544020.078:34): pid=10426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.844" name="bus" dev="loop3" ino=263 res=0 errno=0
[  607.488640][T10263] bridge0: port 1(bridge_slave_0) entered disabled state
[  607.496720][T10263] bridge_slave_0: entered allmulticast mode
[  607.534256][T10263] bridge_slave_0: entered promiscuous mode
[  607.593825][T10263] bridge0: port 2(bridge_slave_1) entered blocking state
[  607.600972][T10263] bridge0: port 2(bridge_slave_1) entered disabled state
[  607.668421][T10263] bridge_slave_1: entered allmulticast mode
[  608.294497][T10263] bridge_slave_1: entered promiscuous mode
[  608.835785][T10263] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  609.038226][ T5829] BTRFS info (device loop3): last unmount of filesystem 228a31de-c2ba-46a7-83b6-4d7e6bb77ddc
[  609.177675][ T5839] Bluetooth: hci1: command tx timeout
[  609.557681][T10263] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  611.090382][T10263] team0: Port device team_slave_0 added
[  611.685522][ T5839] Bluetooth: hci1: command tx timeout
[  611.782485][T10462] loop4: detected capacity change from 0 to 32768
[  611.804877][T10462] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.849 (10462)
[  611.822133][T10462] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  611.832410][T10462] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  612.567183][T10263] team0: Port device team_slave_1 added
[  612.651017][T10462] BTRFS info (device loop4): rebuilding free space tree
[  612.672555][T10462] BTRFS info (device loop4): disabling free space tree
[  612.679637][T10462] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  612.689394][T10462] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  612.771579][   T29] audit: type=1800 audit(1740544025.378:35): pid=10462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.849" name="bus" dev="loop4" ino=263 res=0 errno=0
[  612.869434][T10482] loop6: detected capacity change from 0 to 4096
[  613.422980][T10482] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  613.441338][T10263] batman_adv: batadv0: Adding interface: batadv_slave_0
[  613.458973][T10263] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  613.520357][T10263] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  613.548184][T10263] batman_adv: batadv0: Adding interface: batadv_slave_1
[  613.561973][T10263] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  613.612523][T10482] ntfs3(loop6): ino=1a, mi_enum_attr
[  613.618034][T10482] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  613.639665][T10482] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  613.719514][T10263] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  613.730211][ T5839] Bluetooth: hci1: command tx timeout
[  613.740820][ T5841] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  614.093663][T10495] loop1: detected capacity change from 0 to 32768
[  614.112492][T10495] BTRFS: device /dev/loop1 (7:1) using temp-fsid d427d70a-becc-45b0-946e-161b30b03900
[  614.122208][T10495] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.853 (10495)
[  614.141672][T10495] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  614.151941][T10495] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  614.388302][T10263] hsr_slave_0: entered promiscuous mode
[  614.424206][T10263] hsr_slave_1: entered promiscuous mode
[  614.488986][T10263] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  614.497039][T10263] Cannot create hsr debugfs directory
[  614.560149][T10495] BTRFS info (device loop1): rebuilding free space tree
[  614.586967][T10425] chnl_net:caif_netlink_parms(): no params data found
[  614.607113][T10495] BTRFS info (device loop1): disabling free space tree
[  614.614291][T10495] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  614.624948][T10495] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  614.920851][ T4943] bridge_slave_1: left allmulticast mode
[  614.987672][ T4943] bridge_slave_1: left promiscuous mode
[  615.096612][ T4943] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.503877][ T4943] bridge_slave_0: left allmulticast mode
[  615.513200][ T4943] bridge_slave_0: left promiscuous mode
[  615.518977][ T4943] bridge0: port 1(bridge_slave_0) entered disabled state
[  615.745399][T10522] ntfs3(loop6): ino=5, "/" ntfs_readdir
[  615.814484][ T5839] Bluetooth: hci1: command tx timeout
[  616.547804][T10530] loop3: detected capacity change from 0 to 512
[  616.554960][T10530] journal_path: Non-blockdev passed as './bus'
[  616.561146][T10530] EXT4-fs: error: could not find journal device path
[  616.627059][   T29] audit: type=1326 audit(1740544029.188:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.3.855" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f131af8d169 code=0x0
[  616.859835][ T4943] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  617.087304][ T4943] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  617.174755][ T4943] bond0 (unregistering): Released all slaves
[  617.184005][ T5844] BTRFS info (device loop1): last unmount of filesystem d427d70a-becc-45b0-946e-161b30b03900
[  618.304992][ T4943] hsr_slave_0: left promiscuous mode
[  618.333586][ T4943] hsr_slave_1: left promiscuous mode
[  618.333604][ T5895] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  618.339618][ T4943] batman_adv: batadv0: Removing interface: batadv_slave_0
[  618.623860][ T4943] batman_adv: batadv0: Removing interface: batadv_slave_1
[  618.631122][ T5895] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  618.649636][ T5895] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  619.644806][ T5895] usb 4-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  619.661359][ T5895] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  620.630004][ T5895] usb 4-1: Product: syz
[  620.634398][ T5895] usb 4-1: Manufacturer: syz
[  620.639028][ T5895] usb 4-1: SerialNumber: syz
[  620.652367][ T5895] usb 4-1: config 0 descriptor??
[  620.773156][ T5895] usb 4-1: can't set config #0, error -71
[  620.796074][ T5895] usb 4-1: USB disconnect, device number 4
[  624.442500][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  624.589025][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  624.949650][T10570] loop3: detected capacity change from 0 to 512
[  624.956686][T10570] journal_path: Non-blockdev passed as './bus'
[  624.963357][T10570] EXT4-fs: error: could not find journal device path
[  624.985496][   T29] audit: type=1326 audit(1740544037.588:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10569 comm="syz.3.868" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f131af8d169 code=0x0
[  625.102649][ T4943] team0 (unregistering): Port device team_slave_1 removed
[  625.247229][T10573] loop4: detected capacity change from 0 to 4096
[  625.278749][T10573] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  625.710823][T10573] ntfs3(loop4): ino=1a, mi_enum_attr
[  625.726725][T10573] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  626.024016][T10573] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  626.038709][ T4943] team0 (unregistering): Port device team_slave_0 removed
[  626.471358][T10588] ntfs3(loop4): ino=5, "/" ntfs_readdir
[  626.610552][T10575] lo speed is unknown, defaulting to 1000
[  626.759293][T10575] lo speed is unknown, defaulting to 1000
[  626.815603][T10593] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input16
[  626.931478][T10575] lo speed is unknown, defaulting to 1000
[  626.937739][T10425] bridge0: port 1(bridge_slave_0) entered blocking state
[  626.963057][T10425] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.975818][T10575] infiniband s›z0: RDMA CMA: cma_listen_on_dev, error -98
[  626.976330][T10425] bridge_slave_0: entered allmulticast mode
[  627.012816][T10425] bridge_slave_0: entered promiscuous mode
[  627.028489][T10425] bridge0: port 2(bridge_slave_1) entered blocking state
[  627.121127][T10425] bridge0: port 2(bridge_slave_1) entered disabled state
[  627.194565][T10425] bridge_slave_1: entered allmulticast mode
[  627.235053][T10425] bridge_slave_1: entered promiscuous mode
[  627.327669][T10575] lo speed is unknown, defaulting to 1000
[  628.064314][T10575] lo speed is unknown, defaulting to 1000
[  628.096681][T10425] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  628.129004][T10425] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  628.290398][T10602] netlink: 8 bytes leftover after parsing attributes in process `syz.1.875'.
[  628.763101][T10575] lo speed is unknown, defaulting to 1000
[  628.769956][T10575] lo speed is unknown, defaulting to 1000
[  628.861759][T10575] lo speed is unknown, defaulting to 1000
[  629.008249][T10575] lo speed is unknown, defaulting to 1000
[  629.046653][T10425] team0: Port device team_slave_0 added
[  630.143276][T10425] team0: Port device team_slave_1 added
[  630.180705][T10610] loop6: detected capacity change from 0 to 512
[  630.252099][T10610] EXT4-fs error (device loop6): ext4_orphan_get:1389: inode #15: comm syz.6.878: casefold flag without casefold feature
[  630.334042][T10425] batman_adv: batadv0: Adding interface: batadv_slave_0
[  630.341027][T10425] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  630.397408][T10610] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.878: couldn't read orphan inode 15 (err -117)
[  630.423242][T10425] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  630.425733][T10610] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  630.445225][T10425] batman_adv: batadv0: Adding interface: batadv_slave_1
[  630.463179][T10425] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  630.490716][T10425] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  630.545258][T10263] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  630.584901][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  630.616175][T10263] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  630.993515][T10263] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  631.883754][T10263] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  632.569306][T10425] hsr_slave_0: entered promiscuous mode
[  632.589556][T10425] hsr_slave_1: entered promiscuous mode
[  632.613026][T10425] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  632.662545][T10425] Cannot create hsr debugfs directory
[  633.912152][T10631] loop4: detected capacity change from 0 to 32768
[  633.950395][T10631] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.884 (10631)
[  633.986364][T10630] lo speed is unknown, defaulting to 1000
[  634.066854][T10631] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  634.078053][T10631] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  634.104512][T10637] loop1: detected capacity change from 0 to 16
[  634.114380][T10637] erofs: DAX unsupported by block device. Turning off DAX.
[  634.122769][T10637] erofs (device loop1): mounted with root inode @ nid 36.
[  634.134214][T10637] syz.1.886: attempt to access beyond end of device
[  634.134214][T10637] loop1: rw=0, sector=131157, nr_sectors = 1 limit=16
[  634.147644][T10637] erofs (device loop1): read error -5 @ 0 of nid 36
[  634.399226][T10631] BTRFS info (device loop4): rebuilding free space tree
[  634.419420][T10631] BTRFS info (device loop4): disabling free space tree
[  634.426556][T10631] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  634.438963][T10631] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  634.548908][   T29] audit: type=1800 audit(1740544047.158:38): pid=10631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.884" name="bus" dev="loop4" ino=263 res=0 errno=0
[  635.486669][T10263] 8021q: adding VLAN 0 to HW filter on device bond0
[  635.503607][T10665] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input17
[  635.543636][ T5841] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  635.591791][T10263] 8021q: adding VLAN 0 to HW filter on device team0
[  635.787477][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.794656][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.997577][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[  636.004763][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[  636.380334][T10425] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  636.721337][T10425] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  636.768340][T10425] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  636.863690][T10425] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  636.993831][T10263] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  637.059184][T10681] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input18
[  638.557478][T10697] siw: device registration error -23
[  638.569519][T10425] 8021q: adding VLAN 0 to HW filter on device bond0
[  638.809366][T10425] 8021q: adding VLAN 0 to HW filter on device team0
[  638.898763][ T7029] bridge0: port 1(bridge_slave_0) entered blocking state
[  638.905936][ T7029] bridge0: port 1(bridge_slave_0) entered forwarding state
[  638.947364][T10263] 8021q: adding VLAN 0 to HW filter on device batadv0
[  639.032103][ T7029] bridge0: port 2(bridge_slave_1) entered blocking state
[  639.039355][ T7029] bridge0: port 2(bridge_slave_1) entered forwarding state
[  639.241365][T10425] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  640.217622][T10425] 8021q: adding VLAN 0 to HW filter on device batadv0
[  640.253719][T10263] veth0_vlan: entered promiscuous mode
[  640.305258][T10263] veth1_vlan: entered promiscuous mode
[  640.415206][T10263] veth0_macvtap: entered promiscuous mode
[  640.506711][T10263] veth1_macvtap: entered promiscuous mode
[  640.629491][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  640.689225][T10757] netlink: 'syz.4.910': attribute type 1 has an invalid length.
[  640.698260][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  640.752943][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  640.900139][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  640.929490][T10762] netlink: 12 bytes leftover after parsing attributes in process `syz.4.910'.
[  641.629597][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  641.640213][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  641.654705][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  641.672931][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  641.694189][T10263] batman_adv: batadv0: Interface activated: batadv_slave_0
[  641.701974][T10757] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  641.768166][T10769] netlink: 'syz.1.911': attribute type 1 has an invalid length.
[  641.828093][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  641.850315][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  641.877492][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  641.902990][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  641.923195][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  641.942644][T10779] netlink: 12 bytes leftover after parsing attributes in process `syz.1.911'.
[  641.962066][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.002695][T10263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  642.052174][T10263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.091981][T10263] batman_adv: batadv0: Interface activated: batadv_slave_1
[  642.150207][T10776] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  642.171347][T10776] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  642.187208][T10776] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  642.196604][T10776] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  642.218526][T10776] bond1: (slave geneve2): making interface the new active one
[  642.244182][T10776] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  642.294111][T10263] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  642.318931][T10263] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  642.337004][T10263] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  642.357990][T10263] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  642.482347][T10425] veth0_vlan: entered promiscuous mode
[  642.568589][T10425] veth1_vlan: entered promiscuous mode
[  642.775020][T10425] veth0_macvtap: entered promiscuous mode
[  643.065819][T10425] veth1_macvtap: entered promiscuous mode
[  643.859175][T10808] loop4: detected capacity change from 0 to 2048
[  643.979025][T10808] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  644.012614][T10808] System zones: 0-7
[  644.034964][T10808] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  644.082465][ T4943] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  644.119198][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.140888][ T4943] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  644.148566][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.148620][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.148671][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.148689][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.148717][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.148746][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.311522][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.342261][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  644.356732][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.372195][T10425] batman_adv: batadv0: Interface activated: batadv_slave_0
[  644.415850][T10821] siw: device registration error -23
[  644.458630][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  644.497238][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.522721][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  644.562661][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.574036][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  644.586177][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.596470][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  644.614066][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.632322][T10425] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  644.651231][T10425] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  644.685670][T10425] batman_adv: batadv0: Interface activated: batadv_slave_1
[  644.778357][T10425] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  644.798161][T10825] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  644.812140][T10425] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  644.827931][T10425] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  644.874013][T10425] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  644.960996][T10825] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28
[  644.963201][   T29] audit: type=1804 audit(1740544057.568:39): pid=10829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.922" name="/newroot/192/file0/file1" dev="loop4" ino=15 res=1 errno=0
[  645.023317][T10829] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  645.093371][T10825] EXT4-fs (loop4): This should not happen!! Data will be lost
[  645.093371][T10825] 
[  645.094909][ T3492] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  645.143854][ T3492] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  645.194482][T10829] EXT4-fs (loop4): This should not happen!! Data will be lost
[  645.194482][T10829] 
[  645.250945][T10825] EXT4-fs (loop4): Total free blocks count 0
[  645.269725][ T7029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  645.301728][ T7029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  645.317588][T10829] EXT4-fs (loop4): Total free blocks count 0
[  645.318978][T10825] EXT4-fs (loop4): Free/Dirty block details
[  645.412131][T10829] EXT4-fs (loop4): Free/Dirty block details
[  645.421609][ T7380] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  645.431554][ T7380] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  645.448242][T10825] EXT4-fs (loop4): free_blocks=2415919104
[  645.493136][T10839] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input19
[  646.097936][T10846] lo speed is unknown, defaulting to 1000
[  647.243241][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  647.245362][ T5839] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  648.748701][T10869] Bluetooth: MGMT ver 1.23
[  649.943715][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  649.959727][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  649.969414][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  650.003040][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  650.023537][   T55] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  650.034374][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  650.164004][T10878] lo speed is unknown, defaulting to 1000
[  650.957791][T10900] netlink: 'syz.8.941': attribute type 1 has an invalid length.
[  651.083769][ T6217] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.336444][ T5841] EXT4-fs: 7 callbacks suppressed
[  651.336467][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  651.379481][ T6217] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.546773][T10917] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input20
[  651.705997][ T6217] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.940685][T10915] tipc: Started in network mode
[  651.966240][T10915] tipc: Node identity 4a156f8beb7a, cluster identity 4711
[  652.013327][T10915] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  652.140241][ T5839] Bluetooth: hci2: command tx timeout
[  652.849268][T10926] syzkaller0: entered promiscuous mode
[  652.874439][T10937] siw: device registration error -23
[  652.890454][T10926] syzkaller0: entered allmulticast mode
[  652.913617][T10926] tipc: Resetting bearer <eth:syzkaller0>
[  653.085786][ T5895] tipc: Node number set to 2708434827
[  653.111399][ T6217] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  653.269177][   T48] tipc: Resetting bearer <eth:syzkaller0>
[  653.279551][T10914] tipc: Resetting bearer <eth:syzkaller0>
[  654.207449][ T5839] Bluetooth: hci2: command tx timeout
[  655.127663][T10914] tipc: Disabling bearer <eth:syzkaller0>
[  655.372964][T10878] chnl_net:caif_netlink_parms(): no params data found
[  655.540817][T10975] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input21
[  655.764266][ T6217] bridge_slave_1: left allmulticast mode
[  655.769979][ T6217] bridge_slave_1: left promiscuous mode
[  655.806899][ T6217] bridge0: port 2(bridge_slave_1) entered disabled state
[  655.854710][ T6217] bridge_slave_0: left allmulticast mode
[  655.869519][ T6217] bridge_slave_0: left promiscuous mode
[  655.928510][ T6217] bridge0: port 1(bridge_slave_0) entered disabled state
[  656.283642][ T5839] Bluetooth: hci2: command tx timeout
[  657.093322][T11015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.967'.
[  657.187112][T11020] netlink: 4 bytes leftover after parsing attributes in process `syz.1.967'.
[  657.201155][T11019] loop3: detected capacity change from 0 to 512
[  657.225913][T11019] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.969: casefold flag without casefold feature
[  657.282560][T11024] netlink: 'syz.8.970': attribute type 1 has an invalid length.
[  657.291630][T11019] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.969: couldn't read orphan inode 15 (err -117)
[  657.315078][T11019] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  657.510176][ T6217] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  657.549062][ T6217] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  657.564608][ T6217] bond0 (unregistering): Released all slaves
[  657.815417][T11015] team_slave_0: entered promiscuous mode
[  657.821615][T11015] team_slave_1: entered promiscuous mode
[  657.835477][T11015] macvtap1: entered promiscuous mode
[  657.841291][T11015] team0: entered promiscuous mode
[  657.849336][T11015] macvtap1: entered allmulticast mode
[  657.870231][T11015] team0: entered allmulticast mode
[  657.892987][T11015] team_slave_0: entered allmulticast mode
[  657.899313][T11015] team_slave_1: entered allmulticast mode
[  657.911527][T11015] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  657.942652][T11020] team0: left allmulticast mode
[  657.948294][T11020] team_slave_0: left allmulticast mode
[  657.988625][T11020] team_slave_1: left allmulticast mode
[  658.019350][T11020] team0: left promiscuous mode
[  658.062720][T11020] team_slave_0: left promiscuous mode
[  658.068811][T11020] team_slave_1: left promiscuous mode
[  658.144835][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.363978][ T5839] Bluetooth: hci2: command tx timeout
[  658.401869][T10878] bridge0: port 1(bridge_slave_0) entered blocking state
[  658.426376][T10878] bridge0: port 1(bridge_slave_0) entered disabled state
[  658.442738][T10878] bridge_slave_0: entered allmulticast mode
[  658.452249][T10878] bridge_slave_0: entered promiscuous mode
[  658.661771][T10878] bridge0: port 2(bridge_slave_1) entered blocking state
[  658.683577][T11044] netlink: 24 bytes leftover after parsing attributes in process `syz.3.976'.
[  658.713255][T10878] bridge0: port 2(bridge_slave_1) entered disabled state
[  658.720495][T10878] bridge_slave_1: entered allmulticast mode
[  658.805733][T10878] bridge_slave_1: entered promiscuous mode
[  660.067458][T10878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  660.347007][T10878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  660.410224][T11064] lo speed is unknown, defaulting to 1000
[  661.273563][ T6217] hsr_slave_0: left promiscuous mode
[  661.323249][ T6217] hsr_slave_1: left promiscuous mode
[  661.363081][ T6217] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  661.404658][ T6217] batman_adv: batadv0: Removing interface: batadv_slave_0
[  661.464357][ T6217] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  661.705441][ T6217] batman_adv: batadv0: Removing interface: batadv_slave_1
[  661.735273][ T6217] veth1_macvtap: left promiscuous mode
[  661.740920][ T6217] veth0_macvtap: left promiscuous mode
[  661.747120][ T6217] veth1_vlan: left promiscuous mode
[  661.752558][ T6217] veth0_vlan: left promiscuous mode
[  663.179540][ T6217] team0 (unregistering): Port device team_slave_1 removed
[  663.226031][ T6217] team0 (unregistering): Port device team_slave_0 removed
[  663.602002][T10878] team0: Port device team_slave_0 added
[  663.628441][T11111] vlan2: entered allmulticast mode
[  663.659188][T11111] macvtap0: entered allmulticast mode
[  663.680836][T11111] veth0_macvtap: entered allmulticast mode
[  663.697569][T11111] bridge0: port 3(vlan2) entered blocking state
[  663.703812][T11115] netlink: 8 bytes leftover after parsing attributes in process `syz.4.989'.
[  663.704632][T11111] bridge0: port 3(vlan2) entered disabled state
[  663.720660][T11111] vlan2: entered promiscuous mode
[  663.726488][T11111] macvtap0: entered promiscuous mode
[  663.734860][T11111] bridge0: port 3(vlan2) entered blocking state
[  663.741481][T11111] bridge0: port 3(vlan2) entered forwarding state
[  663.750717][T11097] lo speed is unknown, defaulting to 1000
[  663.794923][T10878] team0: Port device team_slave_1 added
[  664.035580][T10878] batman_adv: batadv0: Adding interface: batadv_slave_0
[  664.042564][T10878] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  664.121842][T10878] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  664.164334][T11123] sock: sock_timestamping_bind_phc: sock not bind to device
[  664.164517][T10878] batman_adv: batadv0: Adding interface: batadv_slave_1
[  664.190849][T11125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.994'.
[  664.220895][T10878] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  664.260252][T10878] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  664.304195][T11126] netlink: 4 bytes leftover after parsing attributes in process `syz.3.994'.
[  664.357176][T11128] ieee802154 phy0 wpan0: encryption failed: -22
[  664.427891][T11125] team_slave_0: entered promiscuous mode
[  664.437316][T11125] team_slave_1: entered promiscuous mode
[  664.456545][T11125] macvtap2: entered promiscuous mode
[  664.462024][T11125] team0: entered promiscuous mode
[  664.479873][T11125] macvtap2: entered allmulticast mode
[  664.490933][T11125] team0: entered allmulticast mode
[  664.500045][T11125] team_slave_0: entered allmulticast mode
[  664.509683][T11125] team_slave_1: entered allmulticast mode
[  664.522220][T11125] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  664.560667][T11126] team0: left allmulticast mode
[  664.575547][T11126] team_slave_0: left allmulticast mode
[  664.581384][T11126] team_slave_1: left allmulticast mode
[  664.597377][T11126] team0: left promiscuous mode
[  664.607082][T11126] team_slave_0: left promiscuous mode
[  664.612596][T11126] team_slave_1: left promiscuous mode
[  664.680258][T11130] loop8: detected capacity change from 0 to 32768
[  664.682931][T10878] hsr_slave_0: entered promiscuous mode
[  664.706888][T11130] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.995 (11130)
[  664.738972][T11130] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  664.739152][T10878] hsr_slave_1: entered promiscuous mode
[  664.749529][T11130] BTRFS info (device loop8): using sha256 (sha256-ni) checksum algorithm
[  664.771442][T10878] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  664.783615][T10878] Cannot create hsr debugfs directory
[  664.791711][T11123] netlink: 'syz.4.993': attribute type 1 has an invalid length.
[  664.844894][T11123] netlink: 224 bytes leftover after parsing attributes in process `syz.4.993'.
[  665.006945][T11130] BTRFS info (device loop8): rebuilding free space tree
[  665.020789][T11130] BTRFS info (device loop8): disabling free space tree
[  665.027856][T11130] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  665.037580][T11130] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  666.814589][T11166] loop6: detected capacity change from 0 to 4096
[  666.855229][T11166] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  666.929734][T11166] ntfs3(loop6): ino=1a, mi_enum_attr
[  666.950888][T11166] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  666.993531][T11166] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  667.036707][T10425] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  667.054284][T11166] ntfs3(loop6): ino=5, "/" ntfs_readdir
[  667.098151][T11171] bridge0: port 2(bridge_slave_1) entered disabled state
[  667.107769][T11171] bridge0: port 1(bridge_slave_0) entered disabled state
[  667.599149][T11171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  667.661048][T11171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  668.102448][T11171] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.154904][T11171] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.219475][T11171] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.249927][T11171] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  668.366779][T11197] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1007'.
[  668.423386][T11198] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1007'.
[  668.459126][T11171] dummy0: left allmulticast mode
[  668.466320][T11171] macvtap1: left promiscuous mode
[  668.471746][T11171] macvtap1: left allmulticast mode
[  668.799659][T11192] lo speed is unknown, defaulting to 1000
[  668.853798][T11197] bond_slave_0: entered promiscuous mode
[  668.859744][T11197] bond_slave_1: entered promiscuous mode
[  669.045920][T11197] macvtap1: entered promiscuous mode
[  669.602676][T11197] bond0: entered promiscuous mode
[  669.616037][T11197] macvtap1: entered allmulticast mode
[  669.621441][T11197] bond0: entered allmulticast mode
[  669.685108][T11197] bond_slave_0: entered allmulticast mode
[  669.713098][T11197] bond_slave_1: entered allmulticast mode
[  669.733318][T11197] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  669.808593][T11198] bond0: left allmulticast mode
[  669.863255][T11198] bond_slave_0: left allmulticast mode
[  669.870296][T11198] bond_slave_1: left allmulticast mode
[  670.165963][T11198] bond0: left promiscuous mode
[  670.302687][T11198] bond_slave_0: left promiscuous mode
[  670.308722][T11198] bond_slave_1: left promiscuous mode
[  670.411237][T11205] netlink: 'syz.3.1008': attribute type 4 has an invalid length.
[  670.419085][T11205] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1008'.
[  670.439669][T11206] lo speed is unknown, defaulting to 1000
[  670.634372][T11227] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1012'.
[  670.694564][T11232] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1012'.
[  670.758297][T11221] syzkaller0: entered promiscuous mode
[  670.763950][T11221] syzkaller0: entered allmulticast mode
[  670.790972][T11227] macvtap2: entered promiscuous mode
[  670.801957][T11227] team0: entered promiscuous mode
[  670.812435][T11227] team_slave_0: entered promiscuous mode
[  670.829283][T11227] team_slave_1: entered promiscuous mode
[  670.851623][T11227] macvtap2: entered allmulticast mode
[  670.870331][T11227] team0: entered allmulticast mode
[  670.884831][T11227] team_slave_0: entered allmulticast mode
[  670.905203][T11227] team_slave_1: entered allmulticast mode
[  670.919461][T11227] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  670.946987][T11232] team0: left allmulticast mode
[  670.956016][T11232] team_slave_0: left allmulticast mode
[  670.973498][T11232] team_slave_1: left allmulticast mode
[  670.998813][T11232] team0: left promiscuous mode
[  671.004039][T11232] team_slave_0: left promiscuous mode
[  671.009711][T11232] team_slave_1: left promiscuous mode
[  671.231367][T11244] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1014'.
[  672.798976][T10878] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  672.843337][T10878] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  673.144099][T10878] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  673.190433][T10878] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  673.471477][T11256] netlink: 'syz.4.1016': attribute type 4 has an invalid length.
[  673.479404][T11256] netlink: 17 bytes leftover after parsing attributes in process `syz.4.1016'.
[  673.590291][T11258] lo speed is unknown, defaulting to 1000
[  675.280457][T11267] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  675.323588][T10878] 8021q: adding VLAN 0 to HW filter on device bond0
[  675.404017][T10878] 8021q: adding VLAN 0 to HW filter on device team0
[  675.697080][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  675.704302][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  675.782972][T11277] loop4: detected capacity change from 0 to 16
[  675.885250][T11277] erofs: DAX unsupported by block device. Turning off DAX.
[  675.900583][T11277] erofs (device loop4): mounted with root inode @ nid 36.
[  675.933320][T11277] syz.4.1024: attempt to access beyond end of device
[  675.933320][T11277] loop4: rw=0, sector=131157, nr_sectors = 1 limit=16
[  675.947403][T11277] erofs (device loop4): read error -5 @ 0 of nid 36
[  676.599141][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[  676.606374][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[  676.699291][T11283] loop6: detected capacity change from 0 to 512
[  676.818184][T11283] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  676.893268][T11283] ext4 filesystem being mounted at /199/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  676.957743][T10878] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  677.015585][T10878] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  677.515279][ T5906] lo speed is unknown, defaulting to 1000
[  677.938580][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  678.381116][T11309] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.253497][T11322] netlink: 'syz.1.1033': attribute type 4 has an invalid length.
[  679.261265][T11322] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1033'.
[  679.308510][T11323] lo speed is unknown, defaulting to 1000
[  679.497144][T11309] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.563501][T11337] sock: sock_timestamping_bind_phc: sock not bind to device
[  679.666193][T11337] ieee802154 phy1 wpan1: encryption failed: -22
[  679.739742][T11346] loop3: detected capacity change from 0 to 512
[  679.792708][T11346] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  679.862120][T11309] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.882598][T11346] EXT4-fs (loop3): 1 truncate cleaned up
[  679.904022][T11346] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  679.959991][T10878] 8021q: adding VLAN 0 to HW filter on device batadv0
[  680.382226][T11361] loop6: detected capacity change from 0 to 40427
[  680.391680][T11309] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.403979][T11361] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  680.411750][T11361] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  680.476233][T11361] F2FS-fs (loop6): invalid crc value
[  680.487283][T11361] F2FS-fs (loop6): Found nat_bits in checkpoint
[  680.705539][T11309] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  680.715233][T11361] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  680.722317][T11361] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  680.758196][T11309] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  680.791664][T11309] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  680.895017][T11309] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  681.283729][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.891127][T10878] veth0_vlan: entered promiscuous mode
[  681.934935][T10878] veth1_vlan: entered promiscuous mode
[  682.904560][T10878] veth0_macvtap: entered promiscuous mode
[  682.927865][T10878] veth1_macvtap: entered promiscuous mode
[  683.045600][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  683.093105][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.143230][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  683.190577][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.231041][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  683.259000][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.281767][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  683.322805][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.348641][T10878] batman_adv: batadv0: Interface activated: batadv_slave_0
[  683.387536][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  683.430213][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.443682][T11425] loop6: detected capacity change from 0 to 512
[  683.463000][T11425] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  683.466958][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  683.505237][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.523002][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  683.525799][T11425] EXT4-fs (loop6): 1 truncate cleaned up
[  683.534778][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.549645][T10878] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  683.560612][T10878] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  683.576357][T11425] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  683.600491][T10878] batman_adv: batadv0: Interface activated: batadv_slave_1
[  683.637398][T10878] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  683.651471][T10878] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  683.660461][T10878] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  683.669576][T10878] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  684.149123][T11434] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1057'.
[  684.157661][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.613499][ T3574] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  685.416973][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  685.573801][ T3574] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  685.662886][ T7381] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  685.723888][ T7381] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  685.942674][T11449] loop3: detected capacity change from 0 to 512
[  685.993823][T11449] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.1063: casefold flag without casefold feature
[  686.053340][T11449] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1063: couldn't read orphan inode 15 (err -117)
[  686.157076][T11449] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  686.389062][T11461] netlink: 'syz.8.1062': attribute type 4 has an invalid length.
[  686.396990][T11461] netlink: 17 bytes leftover after parsing attributes in process `syz.8.1062'.
[  686.624706][T11461] lo speed is unknown, defaulting to 1000
[  687.518106][T11469] loop7: detected capacity change from 0 to 128
[  687.528511][T11469] EXT4-fs: Ignoring removed nobh option
[  687.648631][T11469] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  687.662411][T11469] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  688.493932][T10878] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  688.746812][T11478] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1065'.
[  688.784101][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.949289][T11484] loop7: detected capacity change from 0 to 512
[  689.127674][T11484] EXT4-fs error (device loop7): ext4_orphan_get:1389: inode #15: comm syz.7.1067: casefold flag without casefold feature
[  689.253908][T11484] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.1067: couldn't read orphan inode 15 (err -117)
[  689.345069][T11484] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  691.667458][T11555] netlink: 'syz.1.1081': attribute type 4 has an invalid length.
[  691.675485][T11555] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1081'.
[  691.803027][T11555] lo speed is unknown, defaulting to 1000
[  692.708237][T11563] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1084'.
[  692.776542][T11566] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1084'.
[  692.959024][T10878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  693.635638][T11580] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1087'.
[  693.681881][T11581] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1088'.
[  695.271058][T11591] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.294381][T11591] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  695.700434][T11591] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.779612][T11591] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  695.817710][T11612] loop4: detected capacity change from 0 to 512
[  695.911829][T11612] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.038149][T11612] ext4 filesystem being mounted at /219/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  696.064984][T11615] loop8: detected capacity change from 0 to 512
[  696.152235][T11615] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.237763][T11615] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  696.274484][T11591] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  697.174448][T11591] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  699.349199][T11632] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1097'.
[  699.699988][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.768946][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  700.067137][T11645] loop4: detected capacity change from 0 to 512
[  700.160797][T11591] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  700.243179][T11591] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  700.308735][T11645] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  700.408854][T11645] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  700.516468][T11656] netlink: 'syz.8.1099': attribute type 4 has an invalid length.
[  700.524494][T11656] netlink: 17 bytes leftover after parsing attributes in process `syz.8.1099'.
[  700.626833][T11656] lo speed is unknown, defaulting to 1000
[  702.691488][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  702.751562][T11591] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  702.813663][T11591] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  702.896234][T11591] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  702.925290][T11591] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  703.067649][T11591] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  703.103105][T11591] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  704.252515][T11591] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  704.908882][T11591] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  706.332297][T11682] netlink: 'syz.4.1103': attribute type 4 has an invalid length.
[  706.340565][T11682] netlink: 17 bytes leftover after parsing attributes in process `syz.4.1103'.
[  706.355859][T11683] lo speed is unknown, defaulting to 1000
[  706.567676][T11698] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1105'.
[  706.596360][T11694] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1107'.
[  706.721397][T11703] sock: sock_timestamping_bind_phc: sock not bind to device
[  706.781809][T11703] netlink: 'syz.3.1107': attribute type 1 has an invalid length.
[  706.853652][T11703] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1107'.
[  707.448604][T11714] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input22
[  708.765437][T11734] netlink: 'syz.3.1112': attribute type 4 has an invalid length.
[  708.773340][T11734] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1112'.
[  708.872877][T11734] lo speed is unknown, defaulting to 1000
[  710.591794][T11744] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1117'.
[  712.283857][T11761] netlink: 'syz.4.1119': attribute type 4 has an invalid length.
[  712.291637][T11761] netlink: 17 bytes leftover after parsing attributes in process `syz.4.1119'.
[  712.307137][T11762] lo speed is unknown, defaulting to 1000
[  713.340203][T11774] netlink: 'syz.8.1120': attribute type 4 has an invalid length.
[  713.348317][T11774] netlink: 17 bytes leftover after parsing attributes in process `syz.8.1120'.
[  713.361109][T11775] lo speed is unknown, defaulting to 1000
[  714.038131][T11788] netlink: 'syz.3.1123': attribute type 4 has an invalid length.
[  714.046047][T11788] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1123'.
[  714.149722][T11788] lo speed is unknown, defaulting to 1000
[  715.746430][T11796] loop1: detected capacity change from 0 to 32768
[  715.761662][T11796] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1124 (11796)
[  715.794402][T11796] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  715.804640][T11796] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  715.822469][T11795] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1125'.
[  715.973348][T11795] sock: sock_timestamping_bind_phc: sock not bind to device
[  716.189213][T11795] netlink: 'syz.4.1125': attribute type 1 has an invalid length.
[  716.265425][T11795] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1125'.
[  716.294262][T11796] BTRFS info (device loop1): rebuilding free space tree
[  716.454180][T11796] BTRFS info (device loop1): disabling free space tree
[  716.461438][T11796] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  716.471254][T11796] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  717.072923][ T5939] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  717.154282][T11828] loop4: detected capacity change from 0 to 512
[  717.278557][T11828] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  717.370555][T11828] EXT4-fs (loop4): 1 truncate cleaned up
[  717.407194][T11828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  717.533489][ T5939] usb 9-1: Using ep0 maxpacket: 16
[  718.725583][ T5939] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  718.788763][ T5939] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  718.888972][ T5939] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  718.984529][ T5939] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  719.039691][ T5939] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  719.113998][ T5939] usb 9-1: string descriptor 0 read error: -71
[  719.159511][ T5939] usb 9-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  719.212924][ T5939] usb 9-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  719.255098][ T5939] usb 9-1: config 0 descriptor??
[  719.272373][ T5939] usb 9-1: can't set config #0, error -71
[  719.300142][ T5939] usb 9-1: USB disconnect, device number 2
[  719.787643][T11853] loop8: detected capacity change from 0 to 32768
[  719.796156][T11853] BTRFS: device /dev/loop8 (7:8) using temp-fsid 66e06c32-6489-49f7-8867-10616c3f780c
[  719.805844][T11853] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.1134 (11853)
[  719.836163][T11853] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  719.849122][T11853] BTRFS info (device loop8): using sha256 (sha256-ni) checksum algorithm
[  720.081167][ T5844] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  720.976743][T11853] BTRFS info (device loop8): rebuilding free space tree
[  720.992782][T11853] BTRFS info (device loop8): disabling free space tree
[  721.000035][T11853] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  721.011068][T11853] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  721.792686][T11890] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1141'.
[  721.856143][T11892] sock: sock_timestamping_bind_phc: sock not bind to device
[  721.946911][T11890] netlink: 'syz.3.1141': attribute type 1 has an invalid length.
[  721.961602][T11890] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1141'.
[  721.998581][T10425] BTRFS info (device loop8): last unmount of filesystem 66e06c32-6489-49f7-8867-10616c3f780c
[  722.088967][T11896] loop1: detected capacity change from 0 to 512
[  722.235755][T11896] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  722.333923][T11896] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.723085][T11918] netlink: 'syz.3.1144': attribute type 4 has an invalid length.
[  723.730866][T11918] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1144'.
[  723.946622][T11918] lo speed is unknown, defaulting to 1000
[  724.517309][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.764618][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  725.065719][T11929] loop8: detected capacity change from 0 to 128
[  725.074934][T11929] EXT4-fs: Ignoring removed nobh option
[  725.246595][T11929] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  725.272258][T11929] ext4 filesystem being mounted at /37/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  725.948898][T10425] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  726.455682][ T5906] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  726.645630][ T5906] usb 2-1: Using ep0 maxpacket: 16
[  726.681217][ T5906] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  726.715284][ T5906] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  726.760870][ T5906] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  726.790975][ T5906] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  726.838676][ T5906] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  726.894071][ T5906] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  726.911586][ T5906] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  726.955332][ T5906] usb 2-1: Manufacturer: syz
[  726.986766][ T5906] usb 2-1: config 0 descriptor??
[  727.203113][T11946] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  727.273475][T11946] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  727.533875][ T5906] rc_core: IR keymap rc-hauppauge not found
[  727.588066][ T5906] Registered IR keymap rc-empty
[  727.614463][T11972] loop3: detected capacity change from 0 to 32768
[  727.614871][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  727.636436][T11972] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1157 (11972)
[  727.656964][T11972] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  727.668087][T11972] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  727.763235][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  727.854195][ T5906] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  727.932550][ T5906] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input23
[  727.953448][T11972] BTRFS info (device loop3): rebuilding free space tree
[  727.993395][T11972] BTRFS info (device loop3): disabling free space tree
[  728.000433][T11972] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  728.010362][T11972] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  728.127860][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  728.246317][T12003] loop6: detected capacity change from 0 to 512
[  729.133053][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.143740][T12003] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  729.319634][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.324602][T12003] EXT4-fs (loop6): 1 truncate cleaned up
[  729.362964][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.379478][T12003] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  729.428163][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.493263][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.553667][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.613303][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.652443][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.726865][ T5906] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  729.814116][ T5906] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  729.842981][ T5906] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  729.865296][T12022] loop8: detected capacity change from 0 to 512
[  729.934511][ T5829] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  729.962319][T12024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1165'.
[  729.987737][ T5906] usb 2-1: USB disconnect, device number 3
[  730.026473][T12022] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  730.056245][T12022] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  730.238783][T12031] loop4: detected capacity change from 0 to 512
[  730.633895][T12031] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  730.957828][T12031] ext4 filesystem being mounted at /232/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  731.008955][T12041] loop7: detected capacity change from 0 to 512
[  731.263178][T12041] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  731.744366][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  731.766337][T12043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1170'.
[  731.775973][T12041] EXT4-fs (loop7): 1 truncate cleaned up
[  731.782576][T12041] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  732.964376][T10878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  733.189586][T12057] loop7: detected capacity change from 0 to 512
[  733.247401][T12057] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  733.303403][T12057] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  733.436584][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  734.681826][T10878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  734.701148][T12065] sock: sock_timestamping_bind_phc: sock not bind to device
[  734.711933][T12065] ieee802154 phy1 wpan1: encryption failed: -22
[  737.990164][T12094] loop3: detected capacity change from 0 to 512
[  738.095815][T12094] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  738.108925][T12094] ext4 filesystem being mounted at /277/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  738.141053][T12085] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  738.940776][T12085] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.024179][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  739.060710][T12108] loop4: detected capacity change from 0 to 4096
[  739.061065][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  739.121283][T12108] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  739.202639][T12112] loop8: detected capacity change from 0 to 2048
[  739.225674][T12085] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  739.265046][T12108] ntfs3(loop4): ino=1a, mi_enum_attr
[  739.270415][T12108] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  739.327620][T12112] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  739.353484][T12108] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  739.444474][T12112] System zones: 0-7
[  740.419185][T12112] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  741.093470][T12121] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input24
[  741.551844][T12124] ntfs3(loop4): ino=5, "/" ntfs_readdir
[  742.144889][T12085] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  742.664658][T12112] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  742.679641][T12112] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28
[  742.692085][T12112] EXT4-fs (loop8): This should not happen!! Data will be lost
[  742.692085][T12112] 
[  742.701820][T12112] EXT4-fs (loop8): Total free blocks count 0
[  742.707898][T12112] EXT4-fs (loop8): Free/Dirty block details
[  742.713883][T12112] EXT4-fs (loop8): free_blocks=2415919104
[  742.720707][T12112] EXT4-fs (loop8): dirty_blocks=16
[  742.726248][T12112] EXT4-fs (loop8): Block reservation details
[  742.733923][T12112] EXT4-fs (loop8): i_reserved_data_blocks=1
[  742.746855][T12112] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  742.762936][   T29] audit: type=1804 audit(1740544155.358:40): pid=12112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1186" name="/newroot/46/file0/file1" dev="loop8" ino=15 res=1 errno=0
[  743.141007][T12129] loop3: detected capacity change from 0 to 32768
[  743.153151][T12129] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1190 (12129)
[  743.222931][T12129] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  743.234227][T12129] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  743.253643][T12138] sock: sock_timestamping_bind_phc: sock not bind to device
[  743.362442][T12138] ieee802154 phy1 wpan1: encryption failed: -22
[  743.396096][T12085] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  743.459763][T12129] BTRFS info (device loop3): rebuilding free space tree
[  743.497679][T12129] BTRFS info (device loop3): disabling free space tree
[  743.504738][T12129] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  743.514659][T12129] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  743.541694][T12085] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  743.612124][T12085] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  743.712066][   T29] audit: type=1800 audit(1740544156.258:41): pid=12129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1190" name="bus" dev="loop3" ino=263 res=0 errno=0
[  743.803184][T12085] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  744.775771][ T5829] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  745.660719][T12186] loop8: detected capacity change from 0 to 1024
[  745.810011][T12194] vlan2: entered allmulticast mode
[  745.891719][T12186] hfsplus: inconsistency in B*Tree (0,1,255,1,0)
[  746.765816][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  747.967936][T12225] netlink: 'syz.4.1206': attribute type 1 has an invalid length.
[  749.764234][T12231] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1206'.
[  750.056836][T12234] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1206'.
[  750.197844][T12238] lo speed is unknown, defaulting to 1000
[  750.405625][T12234] 8021q: adding VLAN 0 to HW filter on device bond1
[  751.338652][T12251] loop8: detected capacity change from 0 to 512
[  751.445940][T12251] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  751.539132][T12255] loop4: detected capacity change from 0 to 512
[  751.657822][T12251] EXT4-fs (loop8): 1 truncate cleaned up
[  751.694493][T12251] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  751.707857][T12255] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  751.791938][T12255] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  752.449099][T12273] loop6: detected capacity change from 0 to 16
[  752.733139][T12273] erofs: DAX unsupported by block device. Turning off DAX.
[  752.751290][T12273] erofs (device loop6): mounted with root inode @ nid 36.
[  752.789945][T12267] syz.6.1214: attempt to access beyond end of device
[  752.789945][T12267] loop6: rw=0, sector=131157, nr_sectors = 1 limit=16
[  752.890944][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  753.263247][T12267] erofs (device loop6): read error -5 @ 0 of nid 36
[  754.844547][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.017824][T12307] loop6: detected capacity change from 0 to 2048
[  755.243718][T12307] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  755.781013][T12307] System zones: 0-7
[  755.813105][T12307] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  756.035188][T12325] loop1: detected capacity change from 0 to 512
[  756.524040][T12329] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  756.539095][T12329] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28
[  756.552774][T12329] EXT4-fs (loop6): This should not happen!! Data will be lost
[  756.552774][T12329] 
[  756.562488][T12329] EXT4-fs (loop6): Total free blocks count 0
[  756.568528][T12329] EXT4-fs (loop6): Free/Dirty block details
[  756.574472][T12329] EXT4-fs (loop6): free_blocks=2415919104
[  756.580212][T12329] EXT4-fs (loop6): dirty_blocks=16
[  756.585393][T12329] EXT4-fs (loop6): Block reservation details
[  756.591388][T12329] EXT4-fs (loop6): i_reserved_data_blocks=1
[  756.803348][T12331] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  757.243668][   T29] audit: type=1804 audit(1740544169.318:42): pid=12331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1219" name="/newroot/230/file0/file1" dev="loop6" ino=15 res=1 errno=0
[  757.855945][T12325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  757.958775][T12325] ext4 filesystem being mounted at /244/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  760.043844][T12345] loop8: detected capacity change from 0 to 512
[  760.158782][T12338] loop4: detected capacity change from 0 to 4096
[  760.177804][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  760.234606][T12338] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  760.268497][T12345] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  760.362561][T12345] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  760.476733][T12352] loop6: detected capacity change from 0 to 512
[  761.752666][T12338] ntfs3(loop4): Failed to read $UpCase (-4).
[  762.461118][T12352] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  762.721344][T12352] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  763.261076][ T5939] IPVS: starting estimator thread 0...
[  763.965177][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  764.443987][T12379] loop1: detected capacity change from 0 to 512
[  764.462943][T12375] IPVS: using max 22 ests per chain, 52800 per kthread
[  764.488502][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  764.553098][T12379] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.1235: casefold flag without casefold feature
[  764.661951][T12387] loop7: detected capacity change from 0 to 512
[  764.670571][T12379] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1235: couldn't read orphan inode 15 (err -117)
[  764.728075][T12379] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  764.935875][T12387] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  765.058811][T12387] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  767.557037][T12407] loop8: detected capacity change from 0 to 512
[  767.615668][T12407] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  767.667501][T12407] EXT4-fs (loop8): blocks per group (64) and clusters per group (32768) inconsistent
[  767.677447][T12410] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1243'.
[  767.712655][T10878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  768.238943][ T5939] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  770.074542][T10267] Bluetooth: hci1: command 0x0406 tx timeout
[  771.126524][ T5939] usb 4-1: Using ep0 maxpacket: 16
[  771.441247][ T5939] usb 4-1: device descriptor read/all, error -71
[  772.468721][T12419] netlink: 'syz.8.1241': attribute type 4 has an invalid length.
[  772.483356][T12419] netlink: 17 bytes leftover after parsing attributes in process `syz.8.1241'.
[  772.502498][T12422] lo speed is unknown, defaulting to 1000
[  775.472744][T12452] loop7: detected capacity change from 0 to 16
[  775.510049][T12452] erofs: DAX unsupported by block device. Turning off DAX.
[  775.561238][T12452] erofs (device loop7): mounted with root inode @ nid 36.
[  775.596619][T12452] syz.7.1255: attempt to access beyond end of device
[  775.596619][T12452] loop7: rw=0, sector=131157, nr_sectors = 1 limit=16
[  775.610772][T12452] erofs (device loop7): read error -5 @ 0 of nid 36
[  775.855089][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  779.053787][T12491] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input25
[  779.724949][T12490] loop6: detected capacity change from 0 to 512
[  779.830515][T12490] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  779.919775][T12490] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  781.254572][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  782.059972][T12537] loop8: detected capacity change from 0 to 512
[  782.190759][T12537] EXT4-fs error (device loop8): ext4_orphan_get:1389: inode #15: comm syz.8.1279: casefold flag without casefold feature
[  782.254856][T12537] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.1279: couldn't read orphan inode 15 (err -117)
[  782.344308][T12537] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  784.878672][T12553] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1283'.
[  784.916498][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  785.318170][T12555] loop4: detected capacity change from 0 to 16
[  785.326457][T12555] erofs: DAX unsupported by block device. Turning off DAX.
[  785.345287][T12555] erofs (device loop4): mounted with root inode @ nid 36.
[  785.359321][T12555] syz.4.1284: attempt to access beyond end of device
[  785.359321][T12555] loop4: rw=0, sector=131157, nr_sectors = 1 limit=16
[  785.373128][T12555] erofs (device loop4): read error -5 @ 0 of nid 36
[  785.808807][T12566] loop7: detected capacity change from 0 to 1024
[  785.847538][T12563] loop8: detected capacity change from 0 to 16
[  785.866113][T12563] erofs: DAX unsupported by block device. Turning off DAX.
[  785.878274][T12563] erofs (device loop8): mounted with root inode @ nid 36.
[  785.888768][T12563] syz.8.1285: attempt to access beyond end of device
[  785.888768][T12563] loop8: rw=0, sector=131157, nr_sectors = 1 limit=16
[  785.902491][T12563] erofs (device loop8): read error -5 @ 0 of nid 36
[  789.668683][T12603] loop8: detected capacity change from 0 to 512
[  789.937374][T12603] EXT4-fs error (device loop8): ext4_orphan_get:1389: inode #15: comm syz.8.1298: casefold flag without casefold feature
[  790.032622][T12603] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.1298: couldn't read orphan inode 15 (err -117)
[  790.591038][T12603] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  791.558957][T12618] loop3: detected capacity change from 0 to 2048
[  791.686367][T12618] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  791.725278][T12618] System zones: 0-7
[  791.846391][T12618] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  791.866135][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  792.213650][T12634] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  792.228636][T12634] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28
[  792.241028][T12634] EXT4-fs (loop3): This should not happen!! Data will be lost
[  792.241028][T12634] 
[  792.250700][T12634] EXT4-fs (loop3): Total free blocks count 0
[  792.256840][T12634] EXT4-fs (loop3): Free/Dirty block details
[  792.262772][T12634] EXT4-fs (loop3): free_blocks=2415919104
[  792.268542][T12634] EXT4-fs (loop3): dirty_blocks=16
[  792.273686][T12634] EXT4-fs (loop3): Block reservation details
[  792.279671][T12634] EXT4-fs (loop3): i_reserved_data_blocks=1
[  792.291366][T12636] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  792.328283][   T29] audit: type=1804 audit(1740544204.898:43): pid=12636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1304" name="/newroot/296/file0/file1" dev="loop3" ino=15 res=1 errno=0
[  793.209325][T12647] loop8: detected capacity change from 0 to 512
[  794.235962][T12647] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  794.333047][T12647] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  797.381401][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  799.615858][T12702] loop7: detected capacity change from 0 to 2048
[  799.915838][T12702] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  799.972990][T12702] System zones: 0-7
[  801.706236][T12702] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  803.073648][T12719] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  803.089803][   T29] audit: type=1804 audit(1740544215.288:44): pid=12740 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1322" name="/newroot/34/file0/file1" dev="loop7" ino=15 res=1 errno=0
[  803.555753][T12737] loop4: detected capacity change from 0 to 256
[  803.747141][T12737] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  803.764509][T12742] loop1: detected capacity change from 0 to 2048
[  803.831282][T12745] loop8: detected capacity change from 0 to 512
[  803.864080][T10878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  803.883741][T12745] journal_path: Non-blockdev passed as './bus'
[  803.901143][T12742] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  803.911916][T12745] EXT4-fs: error: could not find journal device path
[  803.914013][T12742] System zones: 0-7
[  803.970222][T12742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  803.987238][T12750] loop3: detected capacity change from 0 to 512
[  804.003135][T12743] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  804.025454][T12750] EXT4-fs: quotafile must be on filesystem root
[  805.373608][   T29] audit: type=1804 audit(1740544217.938:45): pid=12759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1329" name="/newroot/258/file0/file1" dev="loop1" ino=15 res=1 errno=0
[  805.667560][T12760] loop8: detected capacity change from 0 to 512
[  805.805372][T12760] EXT4-fs error (device loop8): ext4_orphan_get:1389: inode #15: comm syz.8.1335: casefold flag without casefold feature
[  805.820746][T12766] loop7: detected capacity change from 0 to 512
[  805.834918][T12763] loop4: detected capacity change from 0 to 2048
[  805.855391][T12760] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.1335: couldn't read orphan inode 15 (err -117)
[  805.871839][T12766] EXT4-fs error (device loop7): ext4_orphan_get:1389: inode #15: comm syz.7.1334: casefold flag without casefold feature
[  805.901745][T12763] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0102]
[  805.920774][T12766] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.1334: couldn't read orphan inode 15 (err -117)
[  805.944278][T12760] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  805.963442][T12763] System zones: 0-7
[  805.971862][T12763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  806.024177][ T5906] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  806.029182][T12766] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  806.041297][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  806.396574][T12743] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  806.890835][T12777] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  806.905836][T12777] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28
[  806.918225][T12777] EXT4-fs (loop4): This should not happen!! Data will be lost
[  806.918225][T12777] 
[  806.929102][T12777] EXT4-fs (loop4): Total free blocks count 0
[  806.935205][T12777] EXT4-fs (loop4): Free/Dirty block details
[  806.941139][T12777] EXT4-fs (loop4): free_blocks=2415919104
[  806.946896][T12777] EXT4-fs (loop4): dirty_blocks=16
[  806.952038][T12777] EXT4-fs (loop4): Block reservation details
[  806.958066][T12777] EXT4-fs (loop4): i_reserved_data_blocks=1
[  806.978541][T12778] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  807.066219][   T29] audit: type=1804 audit(1740544219.588:46): pid=12778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1337" name="/newroot/265/file0/file1" dev="loop4" ino=15 res=1 errno=0
[  807.194462][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  807.225598][T10878] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  807.507356][ T5906] usb 4-1: Using ep0 maxpacket: 16
[  807.522321][ T5906] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  807.544682][ T5906] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  807.567479][T12743] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  807.568395][ T5906] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  807.595714][ T5906] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  807.627235][ T5906] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  807.723405][ T5906] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  807.732491][ T5906] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  807.753928][ T5906] usb 4-1: Manufacturer: syz
[  807.773865][ T5906] usb 4-1: config 0 descriptor??
[  807.952181][T12743] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  807.974220][T12794] loop8: detected capacity change from 0 to 512
[  808.020518][T12767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  808.033313][T12767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  808.124510][T12794] EXT4-fs error (device loop8): ext4_orphan_get:1389: inode #15: comm syz.8.1342: casefold flag without casefold feature
[  808.136452][ T5906] rc_core: IR keymap rc-hauppauge not found
[  808.179026][T12794] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.1342: couldn't read orphan inode 15 (err -117)
[  808.291598][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  808.313973][T12794] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  808.851845][ T5906] Registered IR keymap rc-empty
[  808.856893][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  808.894207][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  808.909169][T12743] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  808.921932][ T5906] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  809.012324][ T5906] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input26
[  809.021470][T12743] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  809.143220][T12743] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  809.169871][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  809.644128][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  809.655293][T12743] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  809.691100][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  810.260381][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  810.386671][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  810.584851][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  810.664170][T10425] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  810.703046][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  810.750650][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  810.803642][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  811.821320][ T5906] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  811.881290][ T5906] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  811.940546][ T5906] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  811.992969][ T5906] usb 4-1: USB disconnect, device number 7
[  817.170897][T12869] loop6: detected capacity change from 0 to 512
[  817.385221][T12869] EXT4-fs error (device loop6): ext4_orphan_get:1389: inode #15: comm syz.6.1362: casefold flag without casefold feature
[  817.422465][T12869] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.1362: couldn't read orphan inode 15 (err -117)
[  817.437807][T12869] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  817.648463][T12881] loop8: detected capacity change from 0 to 512
[  817.659219][T12881] journal_path: Non-blockdev passed as './bus'
[  817.665933][T12881] EXT4-fs: error: could not find journal device path
[  818.500693][   T29] audit: type=1326 audit(1740544230.358:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12870 comm="syz.8.1363" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f538778d169 code=0x0
[  818.772009][ T6084] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  819.054490][T12873] Can't find ip_set type hash:net,po
[  819.121217][T12887] lo speed is unknown, defaulting to 1000
[  822.695380][T12921] loop8: detected capacity change from 0 to 512
[  822.703152][T12921] journal_path: Non-blockdev passed as './bus'
[  822.709408][T12921] EXT4-fs: error: could not find journal device path
[  823.234251][   T29] audit: type=1326 audit(1740544235.338:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12911 comm="syz.8.1374" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f538778d169 code=0x0
[  826.205638][T12930] loop1: detected capacity change from 0 to 512
[  826.476827][T12935] lo speed is unknown, defaulting to 1000
[  827.171822][T12930] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.1377: casefold flag without casefold feature
[  827.303499][T12930] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1377: couldn't read orphan inode 15 (err -117)
[  827.384332][T12930] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  827.601590][T12944] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input27
[  828.489151][ T5844] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  829.852075][   T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  829.873059][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  830.504506][   T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  830.529952][   T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  830.541611][   T55] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  830.550931][   T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  830.780553][T12960] lo speed is unknown, defaulting to 1000
[  831.943219][T12965] ==================================================================
[  831.951322][T12965] BUG: KASAN: slab-use-after-free in __mutex_lock+0x830/0x1010
[  831.958895][T12965] Read of size 8 at addr ffff888059e74060 by task syz.1.1383/12965
[  831.966789][T12965] 
[  831.969114][T12965] CPU: 0 UID: 0 PID: 12965 Comm: syz.1.1383 Not tainted 6.14.0-rc4-syzkaller-00015-g2a1944bff549 #0
[  831.969143][T12965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  831.969158][T12965] Call Trace:
[  831.969168][T12965]  <TASK>
[  831.969178][T12965]  dump_stack_lvl+0x241/0x360
[  831.969215][T12965]  ? __pfx_dump_stack_lvl+0x10/0x10
[  831.969242][T12965]  ? __pfx__printk+0x10/0x10
[  831.969267][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.969308][T12965]  ? _printk+0xd5/0x120
[  831.969331][T12965]  ? __virt_addr_valid+0x183/0x530
[  831.969355][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.969397][T12965]  print_report+0x16e/0x5b0
[  831.969428][T12965]  ? __virt_addr_valid+0x183/0x530
[  831.969451][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.969491][T12965]  ? __virt_addr_valid+0x45f/0x530
[  831.969513][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.969553][T12965]  ? __phys_addr+0xba/0x170
[  831.969593][T12965]  ? __mutex_lock+0x830/0x1010
[  831.969626][T12965]  kasan_report+0x143/0x180
[  831.969656][T12965]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  831.969686][T12965]  ? __mutex_lock+0x830/0x1010
[  831.969722][T12965]  __mutex_lock+0x830/0x1010
[  831.969756][T12965]  ? __mutex_lock+0x602/0x1010
[  831.969792][T12965]  ? l2cap_register_user+0x6d/0x1e0
[  831.969818][T12965]  ? __pfx___mutex_lock+0x10/0x10
[  831.969850][T12965]  ? dev_set_name+0xd5/0x120
[  831.969884][T12965]  ? __pfx_dev_set_name+0x10/0x10
[  831.969914][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.969958][T12965]  l2cap_register_user+0x6d/0x1e0
[  831.969986][T12965]  hidp_connection_add+0x14f0/0x19a0
[  831.970032][T12965]  hidp_sock_ioctl+0x446/0x870
[  831.970060][T12965]  ? __pfx_hidp_sock_ioctl+0x10/0x10
[  831.970107][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.970147][T12965]  ? tomoyo_path_number_perm+0x65d/0x770
[  831.970182][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.970226][T12965]  ? __lock_acquire+0x1397/0x2100
[  831.970270][T12965]  sock_do_ioctl+0x15a/0x460
[  831.970303][T12965]  ? __pfx_sock_do_ioctl+0x10/0x10
[  831.970341][T12965]  sock_ioctl+0x626/0x8e0
[  831.970369][T12965]  ? __pfx_sock_ioctl+0x10/0x10
[  831.970396][T12965]  ? __fget_files+0x2a/0x410
[  831.970432][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.970473][T12965]  ? __fget_files+0x2a/0x410
[  831.970510][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  831.970550][T12965]  ? __pfx_sock_ioctl+0x10/0x10
[  831.970577][T12965]  __se_sys_ioctl+0xf7/0x170
[  831.970604][T12965]  do_syscall_64+0xf3/0x230
[  831.970641][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  831.970676][T12965] RIP: 0033:0x7f0230b8d169
[  831.970697][T12965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  831.970718][T12965] RSP: 002b:00007f0231a7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  831.970746][T12965] RAX: ffffffffffffffda RBX: 00007f0230da6160 RCX: 00007f0230b8d169
[  831.970766][T12965] RDX: 0000400000000340 RSI: 00000000400448c8 RDI: 0000000000000009
[  831.970784][T12965] RBP: 00007f0230c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  831.970801][T12965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  831.970817][T12965] R13: 0000000000000000 R14: 00007f0230da6160 R15: 00007ffc1bb01848
[  831.970843][T12965]  </TASK>
[  831.970852][T12965] 
[  832.295733][T12965] Allocated by task 10878:
[  832.300138][T12965]  kasan_save_track+0x3f/0x80
[  832.304822][T12965]  __kasan_kmalloc+0x98/0xb0
[  832.309410][T12965]  __kmalloc_noprof+0x285/0x4c0
[  832.314266][T12965]  hci_alloc_dev_priv+0x27/0x2030
[  832.319286][T12965]  vhci_create_device+0x116/0x6b0
[  832.324318][T12965]  vhci_write+0x3cf/0x490
[  832.328663][T12965]  vfs_write+0xad1/0xd10
[  832.332909][T12965]  ksys_write+0x18f/0x2b0
[  832.337282][T12965]  do_syscall_64+0xf3/0x230
[  832.341792][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  832.347690][T12965] 
[  832.350002][T12965] Freed by task 10878:
[  832.354056][T12965]  kasan_save_track+0x3f/0x80
[  832.358729][T12965]  kasan_save_free_info+0x40/0x50
[  832.363762][T12965]  __kasan_slab_free+0x59/0x70
[  832.368526][T12965]  kfree+0x196/0x430
[  832.372428][T12965]  hci_release_dev+0x1525/0x16b0
[  832.377365][T12965]  bt_host_release+0x83/0x90
[  832.381970][T12965]  device_release+0x9b/0x1c0
[  832.386562][T12965]  kobject_put+0x231/0x480
[  832.390980][T12965]  vhci_release+0x88/0xd0
[  832.395311][T12965]  __fput+0x3eb/0x9f0
[  832.399298][T12965]  task_work_run+0x251/0x310
[  832.403885][T12965]  do_exit+0xa2a/0x28e0
[  832.408046][T12965]  do_group_exit+0x207/0x2c0
[  832.412638][T12965]  get_signal+0x168c/0x1720
[  832.417142][T12965]  arch_do_signal_or_restart+0x96/0x860
[  832.422695][T12965]  syscall_exit_to_user_mode+0xce/0x340
[  832.428279][T12965]  do_syscall_64+0x100/0x230
[  832.432872][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  832.438770][T12965] 
[  832.441084][T12965] Last potentially related work creation:
[  832.446785][T12965]  kasan_save_stack+0x3f/0x60
[  832.451458][T12965]  kasan_record_aux_stack+0xaa/0xc0
[  832.456691][T12965]  insert_work+0x3e/0x330
[  832.461021][T12965]  __queue_work+0xb66/0xf50
[  832.465525][T12965]  queue_work_on+0x1c2/0x380
[  832.470117][T12965]  process_scheduled_works+0xac0/0x18e0
[  832.475661][T12965]  worker_thread+0x870/0xd30
[  832.480253][T12965]  kthread+0x7ab/0x920
[  832.484328][T12965]  ret_from_fork+0x4d/0x80
[  832.488746][T12965]  ret_from_fork_asm+0x1a/0x30
[  832.493509][T12965] 
[  832.495819][T12965] Second to last potentially related work creation:
[  832.502390][T12965]  kasan_save_stack+0x3f/0x60
[  832.507064][T12965]  kasan_record_aux_stack+0xaa/0xc0
[  832.512270][T12965]  insert_work+0x3e/0x330
[  832.516598][T12965]  __queue_work+0xc8b/0xf50
[  832.521101][T12965]  call_timer_fn+0x189/0x650
[  832.525699][T12965]  __run_timer_base+0x695/0x8e0
[  832.530552][T12965]  run_timer_softirq+0xb7/0x170
[  832.535408][T12965]  handle_softirqs+0x2d6/0x9b0
[  832.540170][T12965]  __irq_exit_rcu+0xf7/0x220
[  832.544761][T12965]  irq_exit_rcu+0x9/0x30
[  832.548999][T12965]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  832.554632][T12965]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  832.560617][T12965] 
[  832.562932][T12965] The buggy address belongs to the object at ffff888059e74000
[  832.562932][T12965]  which belongs to the cache kmalloc-8k of size 8192
[  832.576983][T12965] The buggy address is located 96 bytes inside of
[  832.576983][T12965]  freed 8192-byte region [ffff888059e74000, ffff888059e76000)
[  832.590775][T12965] 
[  832.593092][T12965] The buggy address belongs to the physical page:
[  832.599487][T12965] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x59e70
[  832.608241][T12965] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  832.616736][T12965] ksm flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  832.624622][T12965] page_type: f5(slab)
[  832.628599][T12965] raw: 00fff00000000040 ffff88801b042280 ffffea0001a59600 0000000000000003
[  832.637180][T12965] raw: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  832.645793][T12965] head: 00fff00000000040 ffff88801b042280 ffffea0001a59600 0000000000000003
[  832.654547][T12965] head: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  832.663221][T12965] head: 00fff00000000003 ffffea0001679c01 ffffffffffffffff 0000000000000000
[  832.671906][T12965] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  832.680587][T12965] page dumped because: kasan: bad access detected
[  832.686989][T12965] page_owner tracks the page as allocated
[  832.692689][T12965] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 10846, tgid 10840 (syz.1.930), ts 646313813403, free_ts 646307699526
[  832.714164][T12965]  post_alloc_hook+0x1f4/0x240
[  832.718948][T12965]  get_page_from_freelist+0x365c/0x37a0
[  832.724494][T12965]  __alloc_frozen_pages_noprof+0x292/0x710
[  832.730301][T12965]  alloc_pages_mpol+0x311/0x660
[  832.735157][T12965]  allocate_slab+0x8f/0x3a0
[  832.739664][T12965]  ___slab_alloc+0xc27/0x14a0
[  832.744352][T12965]  __slab_alloc+0x58/0xa0
[  832.748689][T12965]  __kmalloc_noprof+0x2e6/0x4c0
[  832.753544][T12965]  ops_init+0x76/0x5b0
[  832.757615][T12965]  setup_net+0x287/0x9e0
[  832.761854][T12965]  copy_net_ns+0x33f/0x570
[  832.766265][T12965]  create_new_namespaces+0x425/0x7b0
[  832.771549][T12965]  copy_namespaces+0x41a/0x490
[  832.776312][T12965]  copy_process+0x18b5/0x3cf0
[  832.780988][T12965]  kernel_clone+0x226/0x8e0
[  832.785490][T12965]  __x64_sys_clone+0x267/0x2e0
[  832.790256][T12965] page last free pid 10846 tgid 10840 stack trace:
[  832.796741][T12965]  free_frozen_pages+0xe0d/0x10e0
[  832.801776][T12965]  __put_partials+0x160/0x1c0
[  832.806463][T12965]  put_cpu_partial+0x17c/0x250
[  832.811227][T12965]  __slab_free+0x290/0x380
[  832.815639][T12965]  qlist_free_all+0x9a/0x140
[  832.820315][T12965]  kasan_quarantine_reduce+0x14f/0x170
[  832.825766][T12965]  __kasan_slab_alloc+0x23/0x80
[  832.830642][T12965]  __kmalloc_cache_noprof+0x1d9/0x390
[  832.836042][T12965]  mpls_dev_notify+0x109/0x7a0
[  832.840811][T12965]  notifier_call_chain+0x1a7/0x3f0
[  832.845926][T12965]  register_netdevice+0x16b5/0x1b60
[  832.851134][T12965]  register_netdev+0x40/0x50
[  832.855763][T12965]  ip6gre_init_net+0x26c/0x390
[  832.860527][T12965]  ops_init+0x34b/0x5b0
[  832.864686][T12965]  setup_net+0x287/0x9e0
[  832.868929][T12965]  copy_net_ns+0x33f/0x570
[  832.873348][T12965] 
[  832.875660][T12965] Memory state around the buggy address:
[  832.881281][T12965]  ffff888059e73f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  832.889355][T12965]  ffff888059e73f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  832.897423][T12965] >ffff888059e74000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  832.905476][T12965]                                                        ^
[  832.912659][T12965]  ffff888059e74080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  832.920711][T12965]  ffff888059e74100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  832.928759][T12965] ==================================================================
[  832.937953][T12965] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  832.945158][T12965] CPU: 0 UID: 0 PID: 12965 Comm: syz.1.1383 Not tainted 6.14.0-rc4-syzkaller-00015-g2a1944bff549 #0
[  832.955929][T12965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  832.965989][T12965] Call Trace:
[  832.969271][T12965]  <TASK>
[  832.972205][T12965]  dump_stack_lvl+0x241/0x360
[  832.976897][T12965]  ? __pfx_dump_stack_lvl+0x10/0x10
[  832.982107][T12965]  ? __pfx__printk+0x10/0x10
[  832.986706][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  832.992359][T12965]  ? vscnprintf+0x5d/0x90
[  832.996713][T12965]  panic+0x349/0x880
[  833.000615][T12965]  ? check_panic_on_warn+0x21/0xb0
[  833.005750][T12965]  ? __pfx_panic+0x10/0x10
[  833.010179][T12965]  ? mark_lock+0x9a/0x360
[  833.014527][T12965]  ? _raw_spin_unlock_irqrestore+0xd8/0x140
[  833.020432][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  833.026086][T12965]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  833.031991][T12965]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  833.038331][T12965]  ? print_report+0x519/0x5b0
[  833.043031][T12965]  check_panic_on_warn+0x86/0xb0
[  833.047993][T12965]  ? __mutex_lock+0x830/0x1010
[  833.052772][T12965]  end_report+0x77/0x160
[  833.057033][T12965]  kasan_report+0x154/0x180
[  833.061549][T12965]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  833.067456][T12965]  ? __mutex_lock+0x830/0x1010
[  833.072242][T12965]  __mutex_lock+0x830/0x1010
[  833.076850][T12965]  ? __mutex_lock+0x602/0x1010
[  833.081631][T12965]  ? l2cap_register_user+0x6d/0x1e0
[  833.086836][T12965]  ? __pfx___mutex_lock+0x10/0x10
[  833.091873][T12965]  ? dev_set_name+0xd5/0x120
[  833.096481][T12965]  ? __pfx_dev_set_name+0x10/0x10
[  833.101520][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  833.107244][T12965]  l2cap_register_user+0x6d/0x1e0
[  833.112284][T12965]  hidp_connection_add+0x14f0/0x19a0
[  833.117605][T12965]  hidp_sock_ioctl+0x446/0x870
[  833.122381][T12965]  ? __pfx_hidp_sock_ioctl+0x10/0x10
[  833.127698][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  833.133359][T12965]  ? tomoyo_path_number_perm+0x65d/0x770
[  833.139014][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  833.144671][T12965]  ? __lock_acquire+0x1397/0x2100
[  833.149724][T12965]  sock_do_ioctl+0x15a/0x460
[  833.154331][T12965]  ? __pfx_sock_do_ioctl+0x10/0x10
[  833.159463][T12965]  sock_ioctl+0x626/0x8e0
[  833.163802][T12965]  ? __pfx_sock_ioctl+0x10/0x10
[  833.168660][T12965]  ? __fget_files+0x2a/0x410
[  833.173270][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  833.178925][T12965]  ? __fget_files+0x2a/0x410
[  833.183532][T12965]  ? srso_alias_return_thunk+0x5/0xfbef5
[  833.189183][T12965]  ? __pfx_sock_ioctl+0x10/0x10
[  833.194049][T12965]  __se_sys_ioctl+0xf7/0x170
[  833.198649][T12965]  do_syscall_64+0xf3/0x230
[  833.203179][T12965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  833.209101][T12965] RIP: 0033:0x7f0230b8d169
[  833.213528][T12965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  833.233178][T12965] RSP: 002b:00007f0231a7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  833.241619][T12965] RAX: ffffffffffffffda RBX: 00007f0230da6160 RCX: 00007f0230b8d169
[  833.249600][T12965] RDX: 0000400000000340 RSI: 00000000400448c8 RDI: 0000000000000009
[  833.257576][T12965] RBP: 00007f0230c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  833.265553][T12965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  833.273529][T12965] R13: 0000000000000000 R14: 00007f0230da6160 R15: 00007ffc1bb01848
[  833.281515][T12965]  </TASK>
[  833.284765][T12965] Kernel Offset: disabled
[  833.289085][T12965] Rebooting in 86400 seconds..