last executing test programs:

14m41.066640616s ago: executing program 32 (id=715):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000300)={[{@auto_da_alloc_val}, {@noquota}, {@init_itable_val={'init_itable', 0x3d, 0x5c}}, {@dioread_nolock}, {@dax_never}]}, 0x3, 0x45c, &(0x7f00000003c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xd1e2, 0x47fffffff}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000001000)=@abs={0x0, 0x0, 0xce27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x4, 0x4, 0x15, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r6}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0x1d918ac, 0x0, 0x82, 0x0, &(0x7f0000000080))

13m55.804104359s ago: executing program 33 (id=800):
syz_open_dev$usbmon(&(0x7f0000000300), 0x7, 0x0)
getgroups(0x0, 0x0)
keyctl$setperm(0x5, 0x0, 0x3220120)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x6}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x15, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x74}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x4, &(0x7f00000002c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@i_version}]}, 0x6, 0x5fd, &(0x7f0000000c00)="$eJzs3c9rHFUcAPDvzCYxaaNpRcQWxYCHFqRpUotVL7b1YA8FC/Yg4qGhSWro9gdNCrYWTMGDgoKIV5Fe/Ae8S+/eRFBvnoUqUlFQ6crszrabZDfdttmdNPP5wGTnvZnd9747eZn3dvJ2Aiit8exHGrEj4taJJGKsZdtoNDaO5/vd/OPKyWxJolZ78/ckkjyvuX+SP27NE8MR8f3hiMcrq8tduHT59HS11vBBxN7FM+f3Lly6vGf+zPSp2VOzZ6f2vbT/wOTLU/un1iXOrfnjkaNvPP3ph+++OPdDdU8SB+P44PszsSKO9TIe43ErD7E1fyAiDmQrbd6Xh80mCKHUKvnv42BEPBljUamnGsZi/pNCKwf0VK0SUQNKKtH+oaSa/YDm2L67cfDxHvdK+ufGocYAaHX8A43PRmK4PjbacjNpGRk1PtvYtg7lZ2X8d2Xnl9kSyz6H+Pv20RlYh3I6WboaEU+1iz+p121bPdIs/nTZWD+JiMmIGMrr99oD1CFpWe/F5zBruZf4W49DGhEH88cs//B9lj++It3v+AEop+uH8hP5Upa6c/7L+h7N/k+06f+Mtjl33Y+iz3+d+3/N8/1wvd+TruiHZX2WY+1fcnBlxi8fH/m8U/mt/b9sycpv9gX74cbViJ0r4v8oCzbv/2TxJ22Of7bLiYPdlfH6j78d6bSt6Phr1yJ2tR3/3OmVZmtrXJ/cOzdfnZ1s/GxbxrffvfN1p/KLjj87/ls6xN9y/NOVz8vek/NdlvHNsWtnOm0bvWv86a9DSWO8OZTnvDe9uHhhKmIoOZrv0pK/b+26NPdpvkYW/+7n2rf/Zb//V5e/zkjzT2YXzr91+manbfdz/FsuJt+qdVmHTrL4Z+5+/Fe1/yzvsy7L+Ovti8902rZW/CMPEhgAAAAAAACUUFq/BpukE7fX03RiojFf9onYklbPLSw+P3fu4tmZiN31/4ccTJtXusca6SRLT+X/D9tM71uRfiEitkfEF5WRenri5LnqTNHBAwAAAAAAAAAAAAAAAAAAwAaxNZ//37xP9Z+Vxvx/oCR6eYM5YGPT/qG86u1/1S2egDJw/ofy0v6hvLR/KC/tH8pL+4fy0v6hvLR/KC/tHwAAAAA2pe3PXv85iYilV0bqS2Yo32ZGEGxug0VXAChMpegKAIW5felfZx9Kp6v+/z/5lwP2vjpAAZJ2mfXOQW3txn+97TMBAAAAAAAAAAAAgB7YtaPz/H9zg2FzM+0PyusB5v/76gB4yPnqfygvY3zgbrP4hzttMP8fAAAAAAAAAAAAAPpmtL4k6UQ+F3g00nRiIuLRiNgWg8ncfHV2MiIei4ifKoOPZOmpoisNAAAAAAAAAAAAAAAAAAAAm8zCpcunp6vV2QutK/+uytncK827oPahrFfjHp8VSf/flpGIKPyg9GxloCUniVjKjvyGqNiFhdgY1aivFPyHCQAAAAAAAAAAAAAAAAAASqhl7nF7O7/qc40AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoP/u3P+/dytFxwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPJz+DwAA///LLUAr")

12m47.063728202s ago: executing program 1 (id=922):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x3a, 0x7, 0x0, 0x0)
gettid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, 0x0, &(0x7f0000000040)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_clone(0x63081180, 0x0, 0x0, 0x0, 0x0, 0x0)

12m44.95610026s ago: executing program 1 (id=923):
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)
getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.nlink\x00', 0x0, 0x0)

12m44.703075255s ago: executing program 1 (id=924):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000005b000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff000000000000000000000000000000c8dbd7eb152900"/39], 0x50)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000380)={0x0, r6}, 0x8)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000440)=ANY=[@ANYBLOB="1c00000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/12, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="024000000500"/25], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, 0x0)
r7 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r7, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(r7, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

12m43.436559089s ago: executing program 1 (id=926):
r0 = socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
pipe2$9p(0x0, 0x0)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, 0x0, 0x0)
sendmsg$key(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="0213f803030000002cbd7000fddbdf25010018"], 0x18}}, 0x2000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)

12m43.112183181s ago: executing program 1 (id=927):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, 0x0, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0)
syz_usb_disconnect(r1)
syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001202060000052406000005240000000d240f00e50000008700060000090581030002c0b9ff09058202080000fd00090503020002"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095000000000000002d55710c64e30cd8655910b3eb2d1451a6bf4b04dc0af703f4c87963ba8fd1c024815f140290fb3f659193ae297fdcd50b6dc8d41dff00000000000000e272e53a081168e74d7189f0e655f66e0870e108968d80ea3cac636a830bea16f1e27d5761f66d6e252599ca89adacf4e13a2013988c4222d7cf1ff84820012fd6f16b20de6f1ea6691dcee8e86fa2109aa7898fe15f2c97926d158ee55592221796f273ccf22a8ce8dd3674739087015098b80e9842e82aa484b0247773b358f02338ba5950707984fb201d101bfd1f78b0ea4f397c22d94b5a34491cf3f671af9dacdf409cc1f8d960358d99d51d8f8be0c7f6294bd71f8671a68b43621c9444d8ffe5c0827fbb8725eeeb52f472cbc857d860dccc18268bcc9f25a53578f5d1264ca6618dfbdd5c68790793e9d58c4347be3177a4936d603565c373b97b3aab1f1e5db56c00000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$EVIOCRMFF(r1, 0x550c, 0x0)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

12m39.908319106s ago: executing program 1 (id=938):
r0 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x8000000004)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0)
ioctl(0xffffffffffffffff, 0x8b22, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x25c, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
syz_open_dev$usbmon(0x0, 0x7, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r4, 0x1)
bind$inet6(r4, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @loopback, 0x4005}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000000480)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, 0x0}}], 0x1, 0x240c089d)

12m24.290682203s ago: executing program 34 (id=938):
r0 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x8000000004)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0)
ioctl(0xffffffffffffffff, 0x8b22, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x25c, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
syz_open_dev$usbmon(0x0, 0x7, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r4, 0x1)
bind$inet6(r4, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @loopback, 0x4005}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000000480)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, 0x0}}], 0x1, 0x240c089d)

11m35.812070082s ago: executing program 0 (id=1035):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x28011, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6}}, 0x40)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0xc050}, 0x840)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/243, &(0x7f0000000740)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000007c0)={0x2, 0x0, [{0x0, 0x15, &(0x7f00000006c0)=""/21}, {0x2, 0xe0, &(0x7f0000000580)=""/224}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

11m34.433212168s ago: executing program 0 (id=1040):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x4002})
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)

11m33.49567516s ago: executing program 0 (id=1041):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x8, 0x3, 0x2c0, 0x158, 0xffffffff, 0xffffffff, 0x158, 0xffffffff, 0x228, 0xffffff7a, 0xffffffff, 0x228, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x6, 0x130, 0x158, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x80, 0x3, {0x4}}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x9, 0x38, 0x1d}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x17}, @loopback, 0x0, 0xffffff00, 'team_slave_0\x00', 'ip6gre0\x00', {0xff}, {}, 0x6}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x6, 0x1, 0x2, 0x5, 0x6, 0x2], 0x2}, {0x3, [0x0, 0x0, 0x2, 0x5, 0x6, 0x1], 0x1, 0xa6adcdac30c0f96d}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x320)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
userfaultfd(0x80001)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000080000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003c60000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)={0x30, r4, 0x1, 0x70bd28, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, 0xffffffffffffffff, &(0x7f0000000000)={0xffffffffffffffff, r6, 0x2})
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r8, 0x0, 0x61, &(0x7f0000000240)={'filter\x00', 0x4}, 0x68)

11m30.870271068s ago: executing program 0 (id=1046):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r2])
getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.nlink\x00', 0x0, 0x0)

11m29.802098254s ago: executing program 0 (id=1051):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001202060000052406000005240000000d240f00e50000008700060000090581030002c0b9ff09058202080000fd00090503020002"], 0x0)
ioctl$EVIOCRMFF(0xffffffffffffffff, 0x550c, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

11m27.725878688s ago: executing program 0 (id=1057):
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85000000750000000400000007000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mkdir(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet6_icmp(0xa, 0x2, 0x3a)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
close_range(r4, 0xffffffffffffffff, 0x0)
bind$inet6(r3, &(0x7f0000000240)={0xa, 0x2, 0x1000, @empty}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x100010e, &(0x7f0000000540)={[{@errors_remount}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@jqfmt_vfsold}, {@noload}, {@init_itable_val={'init_itable', 0x3d, 0x2}}, {@jqfmt_vfsv0}, {@nombcache}]}, 0x1, 0x444, &(0x7f0000000780)="$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")

11m12.475453708s ago: executing program 35 (id=1057):
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85000000750000000400000007000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mkdir(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet6_icmp(0xa, 0x2, 0x3a)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
close_range(r4, 0xffffffffffffffff, 0x0)
bind$inet6(r3, &(0x7f0000000240)={0xa, 0x2, 0x1000, @empty}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x100010e, &(0x7f0000000540)={[{@errors_remount}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@jqfmt_vfsold}, {@noload}, {@init_itable_val={'init_itable', 0x3d, 0x2}}, {@jqfmt_vfsv0}, {@nombcache}]}, 0x1, 0x444, &(0x7f0000000780)="$eJzs28tvG0UYAPBv101LXySU8ugDCBRExCNp0gI9cAGBxAEkJC7lGJK0KnUb1ASJVhEEhMoRVeKOOCLxF3CCCwJOSFzhjipVKBcKJ6O1d2PHsdMkdbIF/37S1jO7s535PDv27E4cQN8azv5JIvZFxG8RMdjIriww3Hi5ubQw9ffSwlQStdpbfyb1cn8tLUwVRYvz9uaZkTQi/TSJIx3qnbt85fxktTpzKc+PzV94b2zu8pVnz12YPDtzdubixKlTJ0+Mv/D8xHM9ifOerK2HP5w9eui1t6+9MXX62js/fZMU8bfF0SPDax18olbrcXXl2t+STnaU2BA2pBIRWXcN1Mf/YFSi2XmD8eonXU9Mt6mBwJap5bocXqwB/2NJlN0CoBzFF312/1ts2zf7KN+Nlxo3QFncN/MtFqO+s7jFGWi7v+2l4Yg4vfjPl9kWW/McAgBghe+y+c8zneZ/adzfUu7ufG1oKF9LORAR99Z2xcGIuC+iXvaBiHhwg/W3L5Ksnv+k1zcV2Dpl878X87Wt5flfo96iyFAlz+2vxz+QnDlXnTmevycjMbAry4+vUcf3r/z6ebdjrfO/bMvqL+aCeTuu79i18pzpyfnJ24m51Y2PIw7v6BR/srwSkETEoYg4vMk6zj319dFux24d/xp6sM5U+yriyUb/L0Zb/IVk7fXJsbuiOnN8rLgqVvv5l6tvdqv/tuLvgaz/93S8/pfjH0pa12vnNl7H1d8/63pPM7qp67+5Y2f++sHk/Pyl8YidyeuNRrfun2ieW+SL8ln8I8c6j/8D0XwnjkREdhE/FBEPR8Qjed89GhGPRcSxNeL/8eXH3+127E7o/+m2/h9aWaSt/5uJndG+p3Oicv6Hb1f+j83k+j7/TtZTI/me9Xz+raddm7uaAQAA4L8njYh9kaSjy+k0HR1t/A3/wdiTVmfn5p8+M/v+xenGbwSGYiAtnnQNtjwPHc9v64v8RFv+RP7c+IvK7np+dGq2Ol128NDn9nYZ/5k/KmW3Dthyfq8F/cv4h/5l/EP/Mv6hf3UY/7vLaAew/Tp9/39UQjuA7dc2/i37QR9x/w/9y/iH/tU6/pMS2wFsq7ndcesfyUtIrEpEekc0ozeJZItHwb6yA9x4ouxPJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgN74NwAA//+HM+n4")

10m19.887656592s ago: executing program 6 (id=1161):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xb}, {0xffff, 0xffff}, {0x10, 0xfff1}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x2, 0x81, 0x7, 0x8, 0x8}, {0x6, 0x1, 0xd, 0x6, 0x6, 0xfb8e000}, 0x6, 0x4, 0x111e}}, @TCA_TBF_BURST={0x8, 0x6, 0x7f}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x24000011}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2404c0f1}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

10m17.230017883s ago: executing program 6 (id=1165):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
mkdir(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x101040)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0x4, 0x0, &(0x7f0000000080))

10m16.860129719s ago: executing program 6 (id=1166):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001e80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x57, 0x10, &(0x7f0000000000), 0xffffffffffffffc9}, 0x48)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r0, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a3705", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}}, 0x0)

10m16.578626307s ago: executing program 6 (id=1168):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket(0x10, 0x803, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
futex(0xfffffffffffffffd, 0x8, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='smaps\x00')
pread64(r5, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x437, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x5120b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)

10m14.41417255s ago: executing program 6 (id=1171):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket(0x10, 0x803, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
futex(0xfffffffffffffffd, 0x8, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='smaps\x00')
pread64(r4, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x437, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x5120b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)

10m10.498895635s ago: executing program 6 (id=1178):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r3 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read(r3, &(0x7f0000001300)=""/112, 0x70)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r4, &(0x7f0000004100)={0x2020}, 0x2020)
socket$nl_route(0x10, 0x3, 0x0)
lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)=@known='trusted.overlay.upper\x00', &(0x7f00000006c0)=""/77, 0x4d)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000040), 0x200, 0x2)
ioctl$USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000000000)={0x80, 0x6, 0x2fd, 0x0, 0x0, 0x0, 0x0})

10m4.820723124s ago: executing program 4 (id=1185):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xb}, {0xffff, 0xffff}, {0x10, 0xfff1}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x2, 0x81, 0x7, 0x8, 0x8}, {0x6, 0x1, 0xd, 0x6, 0x6, 0xfb8e000}, 0x6, 0x4, 0x111e}}, @TCA_TBF_BURST={0x8, 0x6, 0x7f}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x24000011}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2404c0f1}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

9m54.323631056s ago: executing program 36 (id=1178):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r3 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read(r3, &(0x7f0000001300)=""/112, 0x70)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x800, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r4, &(0x7f0000004100)={0x2020}, 0x2020)
socket$nl_route(0x10, 0x3, 0x0)
lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)=@known='trusted.overlay.upper\x00', &(0x7f00000006c0)=""/77, 0x4d)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000040), 0x200, 0x2)
ioctl$USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000000000)={0x80, 0x6, 0x2fd, 0x0, 0x0, 0x0, 0x0})

9m54.247329684s ago: executing program 4 (id=1192):
openat$sysfs(0xffffffffffffff9c, 0x0, 0x202, 0x40)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x1000421, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x10008)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f0000003b80)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0])
utimes(&(0x7f0000000340)='./file0\x00', 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000680)='sched_switch\x00', r4}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r4}, 0x20)
pipe(0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x200000, &(0x7f0000002380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@default_permissions}]})

9m52.608319635s ago: executing program 4 (id=1195):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getrlimit(0xc, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000640)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@rights={{0x18, 0x1, 0x1, [r6, r5]}}], 0x18, 0x50}}], 0x1, 0x404c040)
sendmmsg$inet(r7, &(0x7f0000000600), 0x0, 0x4000)
close_range(r4, 0xffffffffffffffff, 0x0)

9m51.471408247s ago: executing program 4 (id=1197):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0b0000000700000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xd5cd7000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
tkill(r1, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file1\x00', 0x8010, &(0x7f0000000400)=ANY=[@ANYRES64=0x0], 0x1, 0x14fe, &(0x7f0000001580)="$eJzs3QuYjtX6MPB1r7UexjTxNslhWPe6H940WCZJckiSQ5IkSZJTQtIkSUJiyCkJSchxkhyGkBwmJo3z+ZBz0mRLkiSnnML6rqndtve//b/s/e39//y/Pffvutb1rvtaz72etd6beZ/nuebwQ9fhtZrUrt6IiMS/BH57SRFCxAghBgkh8gkhAiFE+fjy8dnjeRSk/GsnYf9ej6Zd6xWwa4nrn7Nx/XM2rn/OxvXP2bj+ORvXP2fj+udsXH/GcrKtMwvfwC3ntn/9+X/Mby/8/P//Q/z5n7Nx/f/TnM7zzxzN9f9Pctl7/89lcP1zNq5/zsb1z9m4/jkb1z9n4/ozlpNd6+fP3K5tu9b//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5Qzn/BVaCPF7/1qvizHGGGOMMcYYY/8+Pve1XgFjjDHGGGOMMcb+54GQQgktApFL5BYxIo+IFdeJOHG9yCvyiYi4QcSLG0V+cZMoIAqKQqKwSBBFRFFhBAorSISimCguouJmUULcIhJFSVFKlBZOlBFJ4lZRVtwmyonbRXlxh6gg7hQVRSVRWVQRd4mq4m5RTdwjqot7RQ1RU9QStcV9oo64X9QVD4h64kFRXzwkGoiHRUPxiGgkHhWNxWOiiXhcNBVPiGaiuWghWopW/1f5r4ie4lXRS/QWKaKP6CteE/1EfzFADBSDxOtisHhDDBFviqFimBgu3hIjxNtipHhHjBKjxRjxrhgrxonxYoKYKCaJVPGemCzeF1PEB2KqmCamixkiTcwUs8SHYraYI+aKj8Q88bGYLxaIhWKRSBefiMViicgQn4ql4jORKZaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Co+F9vEdrFD7BS7xG6xR3wh9oovxT7xlcgSX/+T+Wf/S343ECBAggQNGnJBLoiBGIiFWIiDOMgLeSECEYiHeMgP+aEAFIBCUAgSIAGKQlFAQCAgKAbFIApRKAElIBESoRSUAgcOkiAJysJtUA7KQXkoDxWgAlSESlAJqkAVqApVoRpUg+pQHWpADagFteA+uA/uh7pQF+pBPagP9aEBNICG0BAaQSNoDI2hCTSBptAUmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIRk6QkfoBJ2gM3SGLtAFukJX6AbdoTu8Aq/Aq/Aq9IYasg/0hb7QD/rBABgIA+F1GAxvwBvwJgyFYTAc3oK34G0YCWdgFIyGMTAGqspxMB4mAMlJkAqpMBkmwxSYAlNhGkyDGZAGM2EWzILZMAfmwEcwDz6Gj2EBLIBFkA7psBiWQAZkwFI4C5mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfA5fA7bYTvshJ2wG3bDF/AFfAlfwlDIgizYD/vhAByAg3AQDsEhOAyH4QgcgaNwFI7BMTgOJ+AknIDTcBrOwFk4B+fgAlyAi3ARLsPl7P/8MpuWWuaSuWSMjJGxMlbGyTiZV+aVERmR8TJe5pf5ZQFZQBaShWSCTJBFZVGJEiXJUBaTxWRURmUJWUImykRZSpaSTjqZJJNkWVlWlpPlZHl5h6wg75QVZSXZ1lWRVWRV2c5Vk/fI6rK6rCFrylqytqwt68g6sq6sK+vJerK+rC8byIdlQ9kHBsCjMrsyTeQwaCqHQzPZXLaQLeXb8KRsLUdCG9lWtpNPy9EwCjrI1i5ZPic7yvHQSb4gJ8CLsoucBF3ly7Kb7C57yFdkT9nG9ZK95VToI/vKGdBP9pcD5EA5G2rK7IrVkm/KoXKYHC7fkovgbTlSviNHydFyjHxXjpXj5Hg5QU6Uk2SqfE9Olu/LKfIDOVVOk9PlDJkmZ8pZ8kM5W86Rc+VHcp78WM6XC+RCuUimy0/kYrlEZshP5VL5mcyUy+RyuUKulKvkarlGrpXr5Hq5QW6Um+RmuUVulZ/LbXK73CF3yl1yt9wjv5B75Zdyn/xKZsmv5X75J3lAfiMPym/lIfmdPCy/l0fkD/Ko/FEekz/J4/KEPClPydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaByqdwqRuVRseo6FaeuV3lVPhVRN6h4daPKr25SBVRBVUgVVgmqiCqqjEJlFalQFVPFVVTdrEqoW1SiKqlKqdLKqTIqSd2qyqrbVDl1uyqv7lAV1J2qoqqkKqsq6i5VVd2tqql7VHV1r6qhaqpaqra6T9VR96u66gFVTz2o6quHVAP1sGqoHlGN1KOqsXpMNVGPq6bqCdVMNVctVEvVSj2pWqunVBvVVrVTT6v26hnVQT2rktVzqqN6XnVSL6jO6kXVRb2kuqqXVTfVXfVQl9Rl5VUv1VulqD6qr3pN9VP91QA1UA1Sr6vB6g01RL2phqpharh6S41Qb6uR6h01So1WY9S7aqwap8arCWqimqRS1XtqsnpfTVEfqKlqmpquZqg0NVMN+PNMc/+B/Pf/Tv6QX8++RW1Vn6ttarvaoXaqXWq32qP2qL1qr9qn9qkslaX2q/3qgDqgDqqD6pA6pA6rw+qIOqKOqqPqmDqmjqsT6rw6pU6rn9UZdVadVefVBXVBXfzzeyA0aKmV1jrQuXRuHaPz6Fh9nY7T1+u8Op+O6Bt0vL5R59c36QK6oC6kC+sEXUQX1Uajtpp0qIvp4jqqb9Yl9C06UZfUpXRp7XQZnaRv/Zfzr7a+VrqVbq1b6za6jW6n2+n2ur3uoDvoZJ2sO+qOupPupDvrzrqL7qK76q66m+6me+geuqfuqb0QIkWn6L76Nd1P99cD9EA9SL+uB+vBeogeoofqoXq4Hq5H6BF6pB6pR+lReoweo8fqsXq8Hq8n6ok6VafqyXqynqKn6Kl6qp6up+s0naZn6Vl6tp6t5+q5ep6ep+fr+XqhXqjTdbperBfrDJ2hl+qlOlMv08v0Cr1Cr9Kr9Bq9Rq/T6/QGvUFv0pt0pv79GzR36B16l96l9+g9eq/eq/fpfTpLZ+n9er8+oA/og/qgPqQP6cP6sD6ij+ij+qg+po/p4/q4PqlP6tP6tD6jz+hz+py+oC/oi/qivqwvZ1/2BTKQgQ50kCvIFcQEMUFsEBvEBXFB3iBvEAkiQXwQH+QPbgoKBAWDQkHhICEoEhQNTICBDSgIg2JB8SAa3ByUCG4JEoOSQamgdOCCMkFScGtQNrgtKBfcHpQP7ggqBHcGFYNKQeWgSnBXUDW4O6gW3BNUD+4NagQ1g1pB7eC+oE5wf1A3eCCoFzwY1A8eChoEDwcNg0eCRsGjQePgsaBJ8HjQNHgiaBY0D1oELYNW/9b5vT9T8CnXy/Q2KaaP6WteM/1MfzPADDSDzOtmsHnDDDFvmqFmmBlu3jIjzNtmpHnHjDKjzRjzrhlrxpnxZoKZaCaZVPOemWzeN1PMB2aqmWammxkmzcw0s8yHZraZY+aaj8w887GZbxaYhWaRSTefmMVmickwn5ql5jOTaZaZ5WaFWWlWmdVmjVlr1pn1ZoPZaDaZzWaL2Wo+N9vMdrPD7DS7zG6zx3xh9povzT7zlckyX5v95k/mgPnGHDTfmkPmO3PYfG+OmB/MUfOjOWZ+MsfNCXPSnDKnzc/mjDlrzpnz5oL5xVw0l8xl47Mv7rM/3lGjxlyYC2MwBmMxFuMwDvNiXoxgBOMxHvNjfiyABbAQFsIETMCiWBSzERIWw2IYxSiWwBKYiIlYCkuhQ4dJmIRlsSyWw3JYHstjBayAFbEiVsbs+5G78G68G+/Be/BevBdrYk2sjbWxDtbBulgX62E9rI/1sQE2wIbYEBthI2yMjbEJNsGm2BSbYTNsgS2wFbbC1tga22AbbIftsD22xw7YAZMxGTtiR+yEnbAzdsYu2AW7Ylfsht2wB/bAntgTe2EvTMEU7It9sR/2wwE4AAfhIByMg3EIDsGhOBSH43AcgSNwJI7EUTgax+C7OBbH4XicgBNxEqZiKk7GyTgFp+BUnIrTcTqmYRrOwlk4G2fjXJyL83Aezsf5uBAXYjqm42JcjBmYgUtxKWZiJi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7FvbgP92EWZuF+3I8H8AAexIN4CA/hYTyMR/AIHsWjeAyP4XE8DifxJJ7G03gGz+A5PIcX8Be8iJfwMnqMsXlsrL3OxtnrbV6bz8bYPL2FEH+JC9nCNsEWsUWtsQVswb+J0VqbaEvaUra0dbaMTbK3/iGuaCvZyraKvctWtXfban+I69j7bV37gK1nH7S17X1/E9e3D9kG9nHb0D5hG9nmtrFtaZvYx21T+4RtZpvbFralbW+fsR3sszbZPmc72uf/EC+2S+xau86utxvsXvulPWfP2yP2B3vB/mJ72d52kH3dDrZv2CH2TTvUDvtDPMa+a8facXa8nWAn2kl/iKfbGTbNzrSz7Id2tp3zhzjdfmLn2Qw73y6wC+2iX+PsNWXYT+1S+5nNtMvscrvCrrSr7Gq75i9rXWE32c12i91jv7Db7Ha7w+60u+zuX+PsfeyzX9ks+7U9bL+3B+w39qA9ag/Z736Ns/d31P5oj9mf7HF7wp60p+xp+7M9Y8/+uv/svZ+yl+xl660gIEmKNAWUi3JTDOWhWLqO4uh6ykv5KEI3UDzdSPnpJipABakQFaYEKkJFyRCSJaKQilFxitLNVIJuoUQqSaWoNDkqQ0l0K5Wl26gc3U7l6Q6qQHdSRapElakK3UVV6W6qRvdQdbqXalBNqkW16T6qQ/dTXXqA6tGDVJ8eogb0MDWkR6gRPUqN6TFqQo9TU3qCmlFzakEtqRU9Sa3pKWpDbakdPU3t6RnqQM9SMj1HHel56kQvUGd6kbrQS9SVXqZu1J160CvUk16lXtSbUqgP9aXXqB/1pwE0kAbR6zSY3qAh9CYNpWE0nN6iEfQ2jaR3aBSNpjH0Lo2lcTSeJtBEmkSp9B5NpvdpCn1AU2kaTacZlEYzaRZ9SLNpDs2lj2gefUzzaQEtpEWUTp/QYlpCGfQpLaXPKJOW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lT6nbbSddtBO2kW7aQ99QXvpS9pHX1EWfU376U90gL6hg/QtHaLv6DB9T0foBzpKP9Ix+omO0wk6SafoNP1MZ+gsnaPzdIF+oYt0iS6TJxFCKEMV6jAIc4W5w5gwTxgbXhfGhdeHecN8YSS8IYwPbwzzhzeFBcKCYaGwcJgQFgmLhibE0IYUhmGxsHgYDW8OS4S3hIlhybBUWDp0YZkwKbw1LBveFpYLbw/Lh3eEFcI7w4phpbByWCW8K6wa3h1WC+8Jq4f3hjXCmmGtsHZ4X1gnvD+sGz4Q1gsfDMuFD4UNwofDhuEjYaPw0bBx+FjYJHw8bBo+ETYLm4ctwpZhq/DJsHX4VNgmbBu2C58O24fPhB3CZ8Pk8LmwY/j8VcdTwj5h3/C18LXQ+wfUwuiiaHr0k+ji6JJoRvTT6NLoZ9HM6LLo8uiK6Mroqujq6Jro2ui66ProhujG6Kbo5uiWqPe1cwsHTjrltAtcLpfbxbg8LtZd5+Lc9S6vy+ci7gYX7250+d1NroAr6Aq5wi7BFXFFnXHorCMXumKuuIu6m10Jd4tLdCVdKVfaOVfGJbmWrpVr5Vq7p1wb19a1c0+7p90z7hn3rHvWPec6uuddJ/eC6+xedF3cS+4l97Lr5rq7Hu4V19O96nq53i7Fpbi+rq/r5/q5AW6AG+QGucFusBvihrihbqgb7oa7EW6EG+lGulFulBvjxrixbqwb78a7iW6iS3WpbrKb7Ka4KW6qm+qmu+kuzaW5WW6Wm+1mu7lurpvn5rn5br5b6Ba6dJfuFrvFLsNluKVuqct0mW65W+5WupVutVvt1rq1br1b7za6jW6z2+y2uq1um9vmdrgdbpfb5fa4PW6v2+v2uX0uy2W5/W6/O+AOuIPuW3fIfecOu+/dEfeDO+p+dMfcT+64O+FOulPutPvZnXFn3Tl33l1wv7iL7pK77LxLjbwXmRx5PzIl8kFkamRaZHpkRiQtMjMyK/JhZHZkTmRu5KPIvMjHkfmRBZGFkUWR9MgnkcWRJZGMyKeRpZHPIpmRZZHlkRWRlZFVEe+LbAt9MV/cR/3NvoS/xSf6kr6UL+2dL+OT/K2+rL/Nl/O3+/L+Dl/B3+kr+kq+sn/CN/PNfQvf0rfyT/rW/infxrf17fzTvr1/xnfwz/pk/5zv6J/3nfwLvrN/0XfxL/mu/mXfzXf3Pfwrvqd/1ffyvX2K7+P7+td8P9/fD/AD/SD/uh/s3/BD/Jt+qB/mh/u3/Aj/th/p3/Gj/Gg/xr/rx/pxfryf4Cf6ST7Vv+cn+/f9FP+Bn+qn+el+hk/zM/0s/6Gf7ef4uf4jP89/7Of7BX6hX+TT/Sd+sV/iM/ynfqn/zGf6ZX65X+FX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+s/9Nr/d7/A7/S6/2+/xX/i9/ku/z3/ls/zXfr//kz/gv/EH/bf+kP/OH/bf+yP+B3/U/+iP+Z/8cX/Cn/Sn/Gn/sz/jz/pz/ry/4H/xF/0lf5l/Zo0xxhhj7B+irjLe57/JkX/u9xVCXL+98KH/Or6xwG/9/rkT2keEEM/17vro761GjZSUlD8fm6lEUHyBECJyJT+XuBIvE+3EMyJZtBVl/zIe81fn6i+7X6CrzB+9Q4jYv8rJzv89vjL/bX93//3luHlXnX+BEInFr+TkEVfiK/OX+2/mL9j6KvPn+SZViDZ/lRMnrsRX5k8ST4nnRfLfHMkYY4wxxhhjjP2mv6zc+Wr3t9n35wn6Sk5ucSX+e/fnjDHGGGOMMcYY+9/lxe49nn0yObltZ+78T3V8vt/e6v8t6+EOd/6BzrX+ysQYY4wxxhj7d7ty0X+tV8IYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjOVc/y9+ndjv57ra3xpkjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/lP9nwAAAP//sjE7Eg==")
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x2003, 0x0, 0x3, 0x0, &(0x7f0000000300))
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f00000004c0)='./bus\x00', 0x1008085, 0x0, 0x1, 0x0, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0)

9m50.299006483s ago: executing program 4 (id=1198):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000020000000000000000180900", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000180)={{0x2, 0x4e25, @dev={0xac, 0x14, 0x14, 0x3b}}, {0x306, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x0, {0x2, 0x4e60, @rand_addr=0x64010100}})
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500000000100000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r5, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x40, @local}}}, 0x32)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000001000)={0xf, {"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", 0x1000}}, 0x1006)
sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000040)={0xffffffffffffffff, 0x9, 0xff, 0x6c766424})

9m45.258875978s ago: executing program 4 (id=1202):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x0, 0x0, 0x1, 0x1}, 0x21)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x800714, &(0x7f0000000240)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}]}, 0xff, 0x485, &(0x7f0000001040)="$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")
symlink(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000580)='./bus/file0\x00')
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
syz_init_net_socket$bt_rfcomm(0x1f, 0x5, 0x3)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x8, 0x3, 0x1e8, 0x0, 0x8, 0xfa04, 0x0, 0x6c02, 0x178, 0x194, 0x194, 0x178, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'sit0\x00', 'ip6_vti0\x00', {}, {}, 0x6, 0x0, 0x4a}, 0x0, 0x70, 0x98, 0x0, {0x0, 0x74020000}}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0xffff, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x248)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
getrlimit(0xe, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="0200000001000284eea9316ce37fd532c97ee1dd4b000000000004"], 0x24, 0x3)
quotactl$Q_GETFMT(0xffffffff80000400, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

9m30.0942607s ago: executing program 37 (id=1202):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x244}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x0, 0x0, 0x1, 0x1}, 0x21)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x800714, &(0x7f0000000240)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}]}, 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDvTJL+bhNrrba2Gq1i8UfSpFV78KCi4EFB0EM9xiSttdtGmgi2BI0i9SgF7+JR8C/w5kXUgwheFTxKoWgQmnqKzK9mu9mkSZpkbfbzgc2+t/Nm3/vOzNt9My+zAbSt3uxPErEjIn6LiO4ie3OB3uJpZnpy+Pr05HASs7Nv/JXk5a5NTw5XRav1tpeZw2lE+mkSzyfz6x2/cPHMUK02er7M90+cfa9//MLFp06fHTo1emr03ODx48eODjz7zODTqxJnFte1/R+OHdj3yluXXxs+cfntH7/JmrX3YLG8Po5but4koCZ6s63292yucdmjy2j7nWBnXTrpbGFDWJaOiMh2V1fe/7ujI+Z2Xne8/ElLGwesqey7afPCi6dmgQ0siVa3AGiN6os+O/+tHus09PhfuPpCxKYyPTM9OTxzI/7OSMvXu9aw/t6IODH175fZI5Z7HQIAYAXysc2TzcZ/aezNn4u5jl3lHEpPRNwVEbsj4u6I2BMR90TkZe+NiPuKlWe7l1h/b0N+/vgnvdK0zaskG/89Vzf2m6mLv3zq6ShzO/P4u5KTp2ujR8ptcji6Nmf5gUXq+O6lXz9faFn9+C97ZPVXY8GyAVc6Gy7QjQxNDK3WRrj6ccT+zmbxJzdmArIjYF9E7F/eW++qEqcf//rAQoVuHf8iVmGeafariMeK/T8VDfFXksXnJ/u3RG30SH91VMz30y+XXl+o/tuKfxVk+3/bzcd/Q4nuf5JivrYrarXR8+PLr+PS758teE6z0uN/U/JmPmf98zvFax8MTUycH4jYlLya56tzuvz1wbl1q3xVPov/8KHm/X93uU4W//0RkR3EByPigYh4sGz7QxHxcEQcWiT+H1585N1F4k8iiZbu/5Gmn383jv+epH6+fgWJjjPff7vQjPnS9v+xmMo/awv5598tLLWBt7n5AAAA4I6QRsSOSNK+It27I9K0r6/4H/49sS2tjY1PPHFy7P1zI8U9Aj3RlVZXurrrrocOJFPlOxb5wfJacbX8aHnd+IuOrXm+b3isNtLi2KHdbb+5/0fV/zN/drS6dcCac78WtK/G/p+2qB3A+lvK979zAdiYmvT/ra1oB7D+nP9D+2rW/z9qyBv/w8Y0v///0eQn64CNyPgf2pf+D+1L/4e2dDv39a88Ud0ssPL32bLkO/zbJVH94sVa1rU15l6JtOUht1Ei6zHrW+ncb6gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADcyf4LAAD///ss5ts=")
symlink(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000580)='./bus/file0\x00')
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
syz_init_net_socket$bt_rfcomm(0x1f, 0x5, 0x3)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x8, 0x3, 0x1e8, 0x0, 0x8, 0xfa04, 0x0, 0x6c02, 0x178, 0x194, 0x194, 0x178, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'sit0\x00', 'ip6_vti0\x00', {}, {}, 0x6, 0x0, 0x4a}, 0x0, 0x70, 0x98, 0x0, {0x0, 0x74020000}}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0xffff, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x248)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
getrlimit(0xe, &(0x7f0000000040))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
mkdir(0x0, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="0200000001000284eea9316ce37fd532c97ee1dd4b000000000004"], 0x24, 0x3)
quotactl$Q_GETFMT(0xffffffff80000400, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

9m1.124928s ago: executing program 8 (id=1190):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
msync(&(0x7f0000003000/0x1000)=nil, 0xffffffffdfffcfff, 0x0)

9m0.105357571s ago: executing program 8 (id=1253):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0)
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setaffinity(r1, 0x8, &(0x7f0000000340)=0x2)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000e40)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x0, 0x18c, 0x203, 0x8000000, 0x19030000, 0x3f0, 0x2e0, 0x2e0, 0x3f0, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x2d8, 0x300, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xe}, {}, {0x0, 0x0, 0x3}, {0x2}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x16}, {}, {}, {0x7}, {}, {0x0, 0x0, 0x0, 0x101}, {}, {}, {}, {}, {}, {}, {0xfffe}, {}, {}, {}, {0x0, 0xfd}, {}, {0x7a04}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x800}, {}, {0xb84, 0x0, 0x0, 0xf00}, {0x0, 0x1, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}]}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz1\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socketpair(0x1, 0x80001, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', <r6=>r4, 0x0, 0x0, 0xfe, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, 0x0, 0x0, 0x2}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000180)={'ip6tnl0\x00', r6, 0x29, 0x1, 0x5, 0x1000007, 0x0, @dev={0xfe, 0x80, '\x00', 0x4}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8, 0x8000, 0xfffffffe}})

8m58.595476719s ago: executing program 8 (id=1254):
timer_create(0x2, 0x0, &(0x7f0000bbdffc))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r4 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(0x0, &(0x7f0000000a00), &(0x7f0000000900)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000a40)=ANY=[@ANYRESHEX=r5, @ANYBLOB="b458e66c484b1cd1fede9fa483e171836a6d074162da78fd60949051569d3077846e6270f8050958daba70b256a07566d6fc88e6a43fbfe73bfb769f631e62b7c6bf27bea72f48cf631918b7d786cb5abfa6a0431c9ecd8d1e292d844d51d721a5149b772b8f1f26889dc58ee6de26c6ae547131f39b87e4c44060f1da0ebfe909c71fafb1bdaf6aab4361d8435cf57cd7fabad5887a0893", @ANYRES32=r3, @ANYRESDEC=r5])
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000c00), &(0x7f0000000c40)=0xc)
statx(r4, &(0x7f0000001000)='./file0\x00', 0x3900, 0x400, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
fstat(r3, &(0x7f0000000380))
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)

8m43.378451676s ago: executing program 38 (id=1254):
timer_create(0x2, 0x0, &(0x7f0000bbdffc))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r4 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(0x0, &(0x7f0000000a00), &(0x7f0000000900)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000a40)=ANY=[@ANYRESHEX=r5, @ANYBLOB="b458e66c484b1cd1fede9fa483e171836a6d074162da78fd60949051569d3077846e6270f8050958daba70b256a07566d6fc88e6a43fbfe73bfb769f631e62b7c6bf27bea72f48cf631918b7d786cb5abfa6a0431c9ecd8d1e292d844d51d721a5149b772b8f1f26889dc58ee6de26c6ae547131f39b87e4c44060f1da0ebfe909c71fafb1bdaf6aab4361d8435cf57cd7fabad5887a0893", @ANYRES32=r3, @ANYRESDEC=r5])
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000c00), &(0x7f0000000c40)=0xc)
statx(r4, &(0x7f0000001000)='./file0\x00', 0x3900, 0x400, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
fstat(r3, &(0x7f0000000380))
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)

6m59.349524331s ago: executing program 9 (id=1430):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setrlimit(0x7, &(0x7f0000000180)={0x80000000, 0x3})
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000100000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r4}, 0x38)
r5 = socket$inet(0x2, 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000540)='inet_sock_set_state\x00', r6}, 0x10)
listen(r5, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r7, &(0x7f0000000080), 0x10)
r8 = socket$netlink(0x10, 0x3, 0xb)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r8, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080100bd7000fedbdf25760040690c00580046000000000000000c0058004b000000000000000c00580059000000000000000c005800780000000000dfff"], 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)
setsockopt$CAN_RAW_FILTER(r7, 0x65, 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
capset(&(0x7f0000000000)={0x20080522}, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

6m56.805528651s ago: executing program 9 (id=1433):
add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
ioctl$int_in(r3, 0x5452, &(0x7f0000001840)=0x5d4)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r4, 0x5608)

6m53.103493666s ago: executing program 9 (id=1435):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
statfs(&(0x7f0000000040)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x40000103, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
shutdown(r2, 0x0)
recvmmsg(r2, &(0x7f00000004c0), 0xf02, 0xf0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f0000000280)=ANY=[@ANYRESDEC=r2, @ANYRES8=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffe33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x396}, 0x94)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0}, 0x18)
socket$nl_generic(0x11, 0x3, 0x10)
r3 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
sendmsg(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x2c}, 0x4)
getpid()

6m51.916234993s ago: executing program 9 (id=1439):
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001202060000052406000005240000000d240f00e50000008700060000090581030002c0b9ff09058202080000fd0009"], 0x0)
ioctl$EVIOCRMFF(r0, 0x550c, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

6m47.762307861s ago: executing program 9 (id=1446):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
mknodat$loop(0xffffffffffffff9c, 0x0, 0x6004, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
fsopen(0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
getrlimit(0x6, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000001c0)={0x0, 0x0})
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz0\x00', 0x200002, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0))

6m44.844878748s ago: executing program 9 (id=1448):
getresuid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100))
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r3 = openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$RTC_WKALM_SET(r3, 0x4028700f, &(0x7f0000001300)={0x2, 0x0, {0x0, 0x0, 0x4, 0x2000017, 0x10000000, 0x60, 0x0, 0xffffffff}})
ptrace$ARCH_SET_CPUID(0x1e, 0x0, 0x1, 0x1012)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
ioprio_set$pid(0x3, 0x0, 0x6000)

6m29.735532284s ago: executing program 39 (id=1448):
getresuid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100))
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r3 = openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$RTC_WKALM_SET(r3, 0x4028700f, &(0x7f0000001300)={0x2, 0x0, {0x0, 0x0, 0x4, 0x2000017, 0x10000000, 0x60, 0x0, 0xffffffff}})
ptrace$ARCH_SET_CPUID(0x1e, 0x0, 0x1, 0x1012)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
ioprio_set$pid(0x3, 0x0, 0x6000)

42.995431979s ago: executing program 7 (id=2038):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x1c, 0x1, 0x4, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x14)

41.248905441s ago: executing program 7 (id=2042):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1e, &(0x7f0000000780)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@lazytime}, {@nombcache}, {@nolazytime}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000a40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
bpf$MAP_LOOKUP_BATCH(0x12, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10000}, 0x38)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, 0x0, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x84, @remote, 0x0, 0x0, 'wlc\x00', 0x20, 0xfffffffe, 0x7f}, 0x2c)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}], 0x1, 0x0)
writev(r1, 0x0, 0x0)
execve(0x0, 0x0, 0x0)
r5 = getpid()
tgkill(r0, r5, 0x14)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r6 = open$dir(0x0, 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes256, 0x0, @desc3})
rename(&(0x7f0000000180)='./file0\x00', 0x0)

39.84268891s ago: executing program 7 (id=2044):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe91, 0x1f000801}, 0x4040)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000339000/0x1000)=nil, 0x800000})

39.176375055s ago: executing program 7 (id=2045):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x0)
getdents(r0, &(0x7f0000000880)=""/232, 0xe8)

38.949213968s ago: executing program 7 (id=2046):
socket$inet6(0xa, 0x200000000003, 0x87)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRES16=r0], 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRESHEX=r2], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x18)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r4, 0x0, 0x7fffefff)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$pokeuser(0x6, r5, 0x388, 0x41d9fda7)
syz_emit_ethernet(0x66, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x30, 0x2b, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, @local, {[@hopopts={0x87, 0x2, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0)

37.803755961s ago: executing program 7 (id=2047):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bond0\x00'})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r4)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f00000000c0)={0x3000, 0xf000, 0x9, 0x6, 0x3})
socket$nl_xfrm(0x10, 0x3, 0x6)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx\x00'}, 0x58)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x48, 0x2, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x48}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000050)
sendmsg$IPSET_CMD_SAVE(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x8, 0x6, 0x801, 0x0, 0x7000000, {0x0, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)

21.380265151s ago: executing program 40 (id=2047):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bond0\x00'})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r4)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f00000000c0)={0x3000, 0xf000, 0x9, 0x6, 0x3})
socket$nl_xfrm(0x10, 0x3, 0x6)
bind$alg(0xffffffffffffffff, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx\x00'}, 0x58)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x48, 0x2, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x48}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000050)
sendmsg$IPSET_CMD_SAVE(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x8, 0x6, 0x801, 0x0, 0x7000000, {0x0, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)

14.851662815s ago: executing program 2 (id=2083):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1e, &(0x7f0000000780)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@lazytime}, {@nombcache}, {@nolazytime}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000a40)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dad2Z33Jmvd8ee2ckG0LdG05ckYk9E/B4Rw9VsfYHR6j83V5am/15Zmk6iXH7zr6RS7sbK0nReNH/f7jwzEFH4NIlDTepduHT53FSpNHsxy48vnn9vfOHS5Wfnzk+dnT07e2Hy1KkTxyeePzn5XFfiTOO6cfDD+cMHXn376uvTp6++8/O3SR5/QxxdMtru4OPlcper6629NelkoIcNoSPFajeNwUr/H45irJ284Xjlk542DthS5XK5fF/rw8tl4C6WRK9bAPRG/kOfzn/zbZuGHneE6y9WJ0Bp3DezrXpkIApZmcGG+W03jUbE6eV/vkq32Jr7EAAAdb5Pxz/PNBv/FaL2vtD/szWUkYi4JyL2RcTJiNgfEfdGVMreHxEPdFh/4yLJ+vFP4dqmAtugdPz3Qra2VT/+y0d/MVLMcnsr8Q8mZ+ZKs8eyz+RoDO5I8xNt6vjh5d8+b3WsdvyXbmn9+Vgwa8e1gR3175mZWpy6nZhrXf844uBAs/iT1ZWAJCIORMTBTdYx99Q3h1sdu3X8bXRhnan8dcQT1fO/HA3x55L265Pj/4vS7LHx/KpY75dfr7zRqv7bir8L0vO/q+n1vxr/SFK7XrvQyf/+5ZPp65U/Pms5p9ns9T+UvFW374OpxcWLExFDyWvVRtfun2woN7lWPo3/6JHm/X9frH0ShyIivYgfjIiHIuLhrO2PRMSjEXGkzafw00uPvbv5+LdWGv9MR+d/LTEUjXuaJ4rnfvyurtKRTuJPz/+JSupotmcj338baVenVzMAAAD8VxUiYk8khbHVdKEwNlb9G/79satQml9YfPrM/PsXZqrPCIzEYCG/0zVccz90IpvW5/nJhvzx7L7xF8WdlfzY9HxpptfBQ5/b3aL/p/4s9rp1wJbzvBb0L/0f+pf+D/1L/4f+1aT/7+xFO4Dt1+z3/6MetAPYfg3937If9BHzf+hfm+n/vjPg7tC2Lw9tXzuAbbWwM279kLyExLpEFO6IZkhsUaLX30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADd8W8AAAD//58P56I=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
bpf$MAP_LOOKUP_BATCH(0x12, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10000}, 0x38)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, 0x0, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x84, @remote, 0x0, 0x0, 'wlc\x00', 0x20, 0xfffffffe, 0x7f}, 0x2c)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}], 0x1, 0x0)
writev(r1, 0x0, 0x0)
execve(0x0, 0x0, 0x0)
r5 = getpid()
tgkill(r0, r5, 0x14)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r6 = open$dir(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes256, 0x0, @desc3})
rename(0x0, 0x0)

13.437261424s ago: executing program 2 (id=2086):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@user_xattr}, {@resgid}, {@barrier_val={'barrier', 0x3d, 0xb}}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0xfc, 0x0, &(0x7f0000000100))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r3}, 0x10)

11.244256281s ago: executing program 2 (id=2090):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x1c, 0x1, 0x4, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x14)

9.251963957s ago: executing program 2 (id=2092):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000100000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$inet(0x2, 0x1, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000540)='inet_sock_set_state\x00', r5}, 0x10)
listen(r4, 0x0)

7.30134476s ago: executing program 3 (id=2095):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000580)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)
close(r3)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0x12, &(0x7f00000008c0)=r6, 0x4)
close(r1)

7.220948648s ago: executing program 5 (id=2096):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x1d, 0x2, 0x2, &(0x7f0000000280))
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0)

6.869553082s ago: executing program 3 (id=2097):
r0 = creat(&(0x7f0000000180)='./file0\x00', 0x10)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r0, &(0x7f0000000400)="2ec8425d4ce2ef00", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000240)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x2000000000000116}}, 0x40)
syz_clone(0x22180, 0x0, 0xa42f, 0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)

6.324697656s ago: executing program 3 (id=2098):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000048a3b082422cd808436a4b9f8b46f2e5601467c09310c80b5120e857d6c33879980427f8c4c52edd25f356bcc8cbea7269e44cf6255d343f32"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback, 0xa}, 0x1c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2081413, 0x0, 0x1, 0x0, &(0x7f0000000080))
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x19560c0, 0x0, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)

5.893771059s ago: executing program 5 (id=2099):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x1c, 0x1, 0x4, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x14)

4.329306413s ago: executing program 3 (id=2100):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0x4})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x39383ddd, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20041090}, 0x0)

4.232880672s ago: executing program 5 (id=2101):
r0 = socket(0x1, 0x5, 0x0)
close(r0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x299be000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd24, 0x25dfdafd, {0x0, 0x0, 0x0, r8, {0xc, 0xc}, {0x0, 0xfff1}, {0x99d411631b5903aa, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r9 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r9, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r9, &(0x7f0000000000)={0xa, 0x4e26, 0xffffffff, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x5}, 0x1c)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

2.970414227s ago: executing program 2 (id=2102):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1e, &(0x7f0000000780)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb2}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@lazytime}, {@nombcache}, {@nolazytime}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000a40)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dad2Z33Jmvd8ee2ckG0LdG05ckYk9E/B4Rw9VsfYHR6j83V5am/15Zmk6iXH7zr6RS7sbK0nReNH/f7jwzEFH4NIlDTepduHT53FSpNHsxy48vnn9vfOHS5Wfnzk+dnT07e2Hy1KkTxyeePzn5XFfiTOO6cfDD+cMHXn376uvTp6++8/O3SR5/QxxdMtru4OPlcper6629NelkoIcNoSPFajeNwUr/H45irJ284Xjlk542DthS5XK5fF/rw8tl4C6WRK9bAPRG/kOfzn/zbZuGHneE6y9WJ0Bp3DezrXpkIApZmcGG+W03jUbE6eV/vkq32Jr7EAAAdb5Pxz/PNBv/FaL2vtD/szWUkYi4JyL2RcTJiNgfEfdGVMreHxEPdFh/4yLJ+vFP4dqmAtugdPz3Qra2VT/+y0d/MVLMcnsr8Q8mZ+ZKs8eyz+RoDO5I8xNt6vjh5d8+b3WsdvyXbmn9+Vgwa8e1gR3175mZWpy6nZhrXf844uBAs/iT1ZWAJCIORMTBTdYx99Q3h1sdu3X8bXRhnan8dcQT1fO/HA3x55L265Pj/4vS7LHx/KpY75dfr7zRqv7bir8L0vO/q+n1vxr/SFK7XrvQyf/+5ZPp65U/Pms5p9ns9T+UvFW374OpxcWLExFDyWvVRtfun2woN7lWPo3/6JHm/X9frH0ShyIivYgfjIiHIuLhrO2PRMSjEXGkzafw00uPvbv5+LdWGv9MR+d/LTEUjXuaJ4rnfvyurtKRTuJPz/+JSupotmcj338baVenVzMAAAD8VxUiYk8khbHVdKEwNlb9G/79satQml9YfPrM/PsXZqrPCIzEYCG/0zVccz90IpvW5/nJhvzx7L7xF8WdlfzY9HxpptfBQ5/b3aL/p/4s9rp1wJbzvBb0L/0f+pf+D/1L/4f+1aT/7+xFO4Dt1+z3/6MetAPYfg3937If9BHzf+hfm+n/vjPg7tC2Lw9tXzuAbbWwM279kLyExLpEFO6IZkhsUaLX30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADd8W8AAAD//58P56I=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
bpf$MAP_LOOKUP_BATCH(0x12, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x10000}, 0x38)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, 0x0, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x84, @remote, 0x0, 0x0, 'wlc\x00', 0x20, 0xfffffffe, 0x7f}, 0x2c)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}], 0x1, 0x0)
writev(r1, 0x0, 0x0)
execve(0x0, 0x0, 0x0)
r5 = getpid()
tgkill(r0, r5, 0x14)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r6 = open$dir(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes256, 0x0, @desc3})
rename(0x0, 0x0)

2.682722585s ago: executing program 5 (id=2103):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000007c0)="4c0000001200ff09ff3a150099a283ff04b8008000f0ffff0000000600401500240036001fc411a0b598bc593ab6821148a730cc33a49868c62b2ca654a6613b6aab", 0x42}, {&(0x7f0000000080)='G%\t\x00\x00\x00\x00\x00\x00\x00', 0xa}], 0x2}, 0x0)
recvmmsg(r4, &(0x7f0000001300)=[{{0x0, 0x0, 0x0}}], 0x300, 0x48, 0x0)

2.655795658s ago: executing program 3 (id=2104):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
setsockopt$sock_attach_bpf(r4, 0x107, 0x12, &(0x7f00000008c0), 0x4)
close(r3)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0x12, &(0x7f00000008c0)=r6, 0x4)
close(r1)

1.791753313s ago: executing program 3 (id=2105):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r1=>0x0)
io_submit(r1, 0x0, &(0x7f0000001d00))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x7, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xf}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}]}, &(0x7f00000001c0)='syzkaller\x00', 0x7, 0x40, &(0x7f0000000400)=""/64, 0x40f00, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000480), &(0x7f00000004c0)=[{0x1, 0x5, 0xb, 0x5}, {0x3, 0x3, 0x2b, 0x1}, {0x2, 0x1, 0x9, 0xa}], 0x10, 0xffffffff}, 0x94)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0x3f0, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x3a4, 0x8, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x328, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x10}, @WGPEER_A_ALLOWEDIPS={0x2f8, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x4}, {0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x3}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x2c}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}]}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x3f0}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)

1.538217388s ago: executing program 2 (id=2106):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeaff)
ioctl$FICLONERANGE(r0, 0x4020940d, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000380)={0x1, 0x0, 0x7})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000380)={0x1, 0x0, 0x103ff})

1.468193175s ago: executing program 5 (id=2107):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@user_xattr}, {@resgid}, {@barrier_val={'barrier', 0x3d, 0xb}}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0xfc, 0x0, &(0x7f0000000100))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r3}, 0x10)

0s ago: executing program 5 (id=2108):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000048a3b082422cd808436a4b9f8b46f2e5601467c09310c80b5120e857d6c33879980427f8c4c52edd25f356bcc8cbea7269e44cf6255d343f32"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback, 0xa}, 0x1c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2081413, 0x0, 0x1, 0x0, &(0x7f0000000080))
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x19560c0, 0x0, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)

kernel console output (not intermixed with test programs):

ab3558efc9 code=0x7ffc0000
[  838.298479][   T27] audit: type=1326 audit(1761059115.576:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  838.398534][   T27] audit: type=1326 audit(1761059115.576:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  838.449284][   T27] audit: type=1326 audit(1761059115.576:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  838.522028][   T27] audit: type=1326 audit(1761059115.576:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  838.562529][T12067] loop9: detected capacity change from 0 to 512
[  838.603794][T12067] EXT4-fs: Ignoring removed mblk_io_submit option
[  838.631248][   T27] audit: type=1326 audit(1761059115.576:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  838.653964][   T27] audit: type=1326 audit(1761059115.586:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  838.692656][T12067] EXT4-fs: inline encryption not supported
[  839.046083][T12067] EXT4-fs: Ignoring removed mblk_io_submit option
[  839.338634][   T27] audit: type=1326 audit(1761059115.586:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  839.379151][T12067] EXT4-fs (loop9): Test dummy encryption mode enabled
[  839.508581][   T27] audit: type=1326 audit(1761059115.586:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12059 comm="syz.7.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  839.539222][T12067] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  840.858951][T12081] overlayfs: failed to resolve './bus': -2
[  841.128984][T12067] EXT4-fs (loop9): 1 truncate cleaned up
[  841.178223][T12067] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  841.343253][T12085] loop7: detected capacity change from 0 to 512
[  841.571804][T12085] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  841.585091][T12085] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  842.781062][T12092] futex_wake_op: syz.5.1274 tries to shift op by 32; fix this program
[  844.047102][T11732] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  844.361518][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  846.527886][T12114] syzkaller0: entered promiscuous mode
[  846.568751][T12114] syzkaller0: entered allmulticast mode
[  846.686752][   T27] kauditd_printk_skb: 10 callbacks suppressed
[  846.686769][   T27] audit: type=1326 audit(1761059124.146:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  846.767837][   T27] audit: type=1326 audit(1761059124.146:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  846.858486][   T27] audit: type=1326 audit(1761059124.186:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  847.098679][   T27] audit: type=1326 audit(1761059124.186:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  847.137658][   T27] audit: type=1326 audit(1761059124.186:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  847.251081][T12132] overlayfs: failed to resolve './bus': -2
[  847.483848][   T27] audit: type=1326 audit(1761059124.186:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  847.865434][   T27] audit: type=1326 audit(1761059124.186:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  848.000655][   T27] audit: type=1326 audit(1761059124.186:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  848.044933][ T5805] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  848.058320][ T5805] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  848.068785][ T5805] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  848.094079][   T27] audit: type=1326 audit(1761059124.186:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  848.117900][   T27] audit: type=1326 audit(1761059124.186:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12122 comm="syz.7.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  848.349397][ T5805] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  848.393017][ T5805] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  848.400580][ T5805] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  850.727479][ T5805] Bluetooth: hci3: command tx timeout
[  852.798616][ T5805] Bluetooth: hci3: command tx timeout
[  854.476164][T12176] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1292'.
[  854.486143][T12176] bridge_slave_1: left allmulticast mode
[  854.492019][T12176] bridge_slave_1: left promiscuous mode
[  854.500639][T12176] bridge0: port 2(bridge_slave_1) entered disabled state
[  854.659537][T12176] bridge_slave_0: left allmulticast mode
[  854.665375][T12176] bridge_slave_0: left promiscuous mode
[  854.674308][T12176] bridge0: port 1(bridge_slave_0) entered disabled state
[  854.898477][ T5805] Bluetooth: hci3: command tx timeout
[  855.135940][ T8752] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  855.485025][T12182] loop7: detected capacity change from 0 to 256
[  857.018577][ T5805] Bluetooth: hci3: command tx timeout
[  857.085037][ T8752] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  857.351558][ T8752] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  857.598208][ T8752] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  859.316576][T12136] chnl_net:caif_netlink_parms(): no params data found
[  860.945101][T12136] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.955027][T12136] bridge0: port 1(bridge_slave_0) entered disabled state
[  861.690316][T12136] bridge_slave_0: entered allmulticast mode
[  861.704970][T12136] bridge_slave_0: entered promiscuous mode
[  861.783728][T12136] bridge0: port 2(bridge_slave_1) entered blocking state
[  861.791981][T12136] bridge0: port 2(bridge_slave_1) entered disabled state
[  861.848763][T12136] bridge_slave_1: entered allmulticast mode
[  861.863400][T12136] bridge_slave_1: entered promiscuous mode
[  862.062459][T12136] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  862.086609][T12136] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  862.177349][T12136] team0: Port device team_slave_0 added
[  862.224286][T12136] team0: Port device team_slave_1 added
[  862.549249][T12136] batman_adv: batadv0: Adding interface: batadv_slave_0
[  862.570175][T12136] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  862.706100][T12136] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  862.769747][T12136] batman_adv: batadv0: Adding interface: batadv_slave_1
[  862.797296][T12136] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  862.824141][T12136] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  863.084088][T12136] hsr_slave_0: entered promiscuous mode
[  863.121216][T12136] hsr_slave_1: entered promiscuous mode
[  863.358928][T12243] overlayfs: failed to resolve './bus': -2
[  863.801007][T12252] overlayfs: failed to resolve './file1': -2
[  864.320552][ T8752] hsr_slave_0: left promiscuous mode
[  864.340067][ T8752] hsr_slave_1: left promiscuous mode
[  864.365028][ T8752] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  864.378562][ T8752] batman_adv: batadv0: Removing interface: batadv_slave_0
[  864.400558][ T8752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  864.418863][ T8752] batman_adv: batadv0: Removing interface: batadv_slave_1
[  864.436411][ T8752] bridge_slave_1: left allmulticast mode
[  864.449032][ T8752] bridge_slave_1: left promiscuous mode
[  864.454858][ T8752] bridge0: port 2(bridge_slave_1) entered disabled state
[  864.487902][ T8752] bridge_slave_0: left allmulticast mode
[  864.498532][ T8752] bridge_slave_0: left promiscuous mode
[  864.504527][ T8752] bridge0: port 1(bridge_slave_0) entered disabled state
[  864.590696][ T8752] veth1_macvtap: left promiscuous mode
[  864.606638][ T8752] veth0_macvtap: left promiscuous mode
[  864.616884][ T8752] veth1_vlan: left promiscuous mode
[  864.628812][ T8752] veth0_vlan: left promiscuous mode
[  866.605070][ T8752] team0 (unregistering): Port device team_slave_1 removed
[  866.733705][ T8752] team0 (unregistering): Port device team_slave_0 removed
[  866.847602][ T8752] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  867.001383][ T8752] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  867.814265][   T27] kauditd_printk_skb: 14 callbacks suppressed
[  867.814282][   T27] audit: type=1326 audit(1761059145.276:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12274 comm="syz.9.1305" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3ca3d8efc9 code=0x0
[  868.387707][ T8752] bond0 (unregistering): Released all slaves
[  870.602218][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  870.611874][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  871.658542][T12296] usb usb8: usbfs: process 12296 (syz.9.1308) did not claim interface 0 before use
[  873.696963][T12305] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1310'.
[  874.435064][T12310] loop9: detected capacity change from 0 to 1024
[  874.634985][T12310] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  875.889777][T11732] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  876.350657][T12320] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  876.624182][   T27] audit: type=1326 audit(1761059154.086:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12323 comm="syz.5.1315" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8766f8efc9 code=0x0
[  876.776529][T12333] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  876.804259][T12331] loop9: detected capacity change from 0 to 256
[  876.841727][T12331] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  876.964207][T12136] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  877.027088][T12136] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  877.062149][T12136] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  877.075483][T12337] loop7: detected capacity change from 0 to 512
[  877.086038][T12337] EXT4-fs: Ignoring removed mblk_io_submit option
[  877.099031][T12136] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  877.108524][T12337] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  877.139711][T12337] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002]
[  877.159625][T12337] EXT4-fs (loop7): orphan cleanup on readonly fs
[  877.167539][T12337] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1317: bg 0: block 361: padding at end of block bitmap is not set
[  877.192191][T12337] EXT4-fs (loop7): Remounting filesystem read-only
[  877.245391][T12337] EXT4-fs (loop7): 1 truncate cleaned up
[  877.252562][T12337] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  877.820454][T12351] EXT4-fs warning (device loop7): dx_probe:893: inode #2: comm syz.7.1317: dx entry: limit 0 != root limit 125
[  877.832406][T12351] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1317: Corrupt directory, running e2fsck is recommended
[  877.860137][T12351] EXT4-fs warning (device loop7): dx_probe:893: inode #2: comm syz.7.1317: dx entry: limit 0 != root limit 125
[  877.872032][T12351] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1317: Corrupt directory, running e2fsck is recommended
[  877.900439][T12351] EXT4-fs warning (device loop7): dx_probe:893: inode #2: comm syz.7.1317: dx entry: limit 0 != root limit 125
[  877.912662][T12351] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1317: Corrupt directory, running e2fsck is recommended
[  877.938787][T12351] EXT4-fs warning (device loop7): dx_probe:893: inode #2: comm syz.7.1317: dx entry: limit 0 != root limit 125
[  877.950697][T12351] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1317: Corrupt directory, running e2fsck is recommended
[  877.978844][T12351] EXT4-fs warning (device loop7): dx_probe:893: inode #2: comm syz.7.1317: dx entry: limit 0 != root limit 125
[  877.991611][T12351] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1317: Corrupt directory, running e2fsck is recommended
[  878.736406][T12136] 8021q: adding VLAN 0 to HW filter on device bond0
[  878.877228][T12136] 8021q: adding VLAN 0 to HW filter on device team0
[  878.927913][ T8750] bridge0: port 1(bridge_slave_0) entered blocking state
[  878.935235][ T8750] bridge0: port 1(bridge_slave_0) entered forwarding state
[  878.967977][T12355] fuse: Bad value for 'fd'
[  879.049915][ T8756] bridge0: port 2(bridge_slave_1) entered blocking state
[  879.057151][ T8756] bridge0: port 2(bridge_slave_1) entered forwarding state
[  879.850676][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  881.190670][T12136] 8021q: adding VLAN 0 to HW filter on device batadv0
[  881.243805][T12136] veth0_vlan: entered promiscuous mode
[  881.278098][T12136] veth1_vlan: entered promiscuous mode
[  881.345718][T12136] veth0_macvtap: entered promiscuous mode
[  881.360536][T12381] loop7: detected capacity change from 0 to 512
[  881.385853][T12136] veth1_macvtap: entered promiscuous mode
[  881.446175][T12381] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  881.473108][T12136] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  881.498752][T12381] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  881.504680][T12136] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  881.547469][T12136] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  881.565831][   T27] audit: type=1326 audit(1761059159.026:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  881.606812][T12136] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  881.627408][T12136] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  881.641556][   T27] audit: type=1326 audit(1761059159.056:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fab35585e67 code=0x7ffc0000
[  881.650206][T12136] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  881.695608][T12136] batman_adv: batadv0: Interface activated: batadv_slave_0
[  881.698550][   T27] audit: type=1326 audit(1761059159.056:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fab3552b099 code=0x7ffc0000
[  881.727361][   T27] audit: type=1326 audit(1761059159.056:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  881.756431][T12136] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  881.767436][T12136] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  881.779703][   T27] audit: type=1326 audit(1761059159.066:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fab35585e67 code=0x7ffc0000
[  881.822036][T12136] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  881.862076][T12136] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  881.882153][   T27] audit: type=1326 audit(1761059159.066:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fab3552b099 code=0x7ffc0000
[  881.910965][T12136] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  881.935117][T12136] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  881.946522][   T27] audit: type=1326 audit(1761059159.066:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  881.971343][T12136] batman_adv: batadv0: Interface activated: batadv_slave_1
[  882.022507][T12136] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  882.041533][   T27] audit: type=1326 audit(1761059159.066:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fab35585e67 code=0x7ffc0000
[  882.064930][T12136] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  882.085579][T12136] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  882.113707][T12136] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  882.133335][   T27] audit: type=1326 audit(1761059159.066:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fab3552b099 code=0x7ffc0000
[  882.242038][   T27] audit: type=1326 audit(1761059159.066:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[  882.274591][   T27] audit: type=1326 audit(1761059159.086:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12380 comm="syz.7.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fab35585e67 code=0x7ffc0000
[  882.401189][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  882.546075][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  882.567480][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  882.766681][ T2950] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  882.807273][T12390] loop9: detected capacity change from 0 to 1024
[  882.815439][ T2950] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  882.849623][T12390] EXT4-fs: quotafile must be on filesystem root
[  883.034543][T12392] fuse: Bad value for 'fd'
[  884.778860][T12408] loop9: detected capacity change from 0 to 512
[  884.815063][T12408] ext4: Unknown parameter 'minixdf..'
[  885.316778][T12412] loop7: detected capacity change from 0 to 512
[  885.455890][T12412] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  885.558278][T12412] EXT4-fs (loop7): 1 orphan inode deleted
[  885.565304][T12412] EXT4-fs (loop7): 1 truncate cleaned up
[  885.578992][T12412] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  886.314782][T12414] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  886.866590][T12414] EXT4-fs (loop7): Remounting filesystem read-only
[  888.554156][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  888.575310][T12422] ceph: No mds server is up or the cluster is laggy
[  888.585453][T12298] libceph: connect (1)[c::]:6789 error -101
[  888.610056][T12298] libceph: mon0 (1)[c::]:6789 connect error
[  889.321385][T12429] loop7: detected capacity change from 0 to 1024
[  889.543097][T12429] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  889.761019][T12436] vlan2: entered allmulticast mode
[  893.801460][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  894.359053][T12468] loop9: detected capacity change from 0 to 512
[  895.689187][T12468] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  895.702853][T12468] ext4 filesystem being mounted at /24/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  897.747642][T11732] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  897.782637][T12471] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  898.091647][T12500] loop7: detected capacity change from 0 to 512
[  898.164134][T12500] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.1344: casefold flag without casefold feature
[  898.268070][T12500] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1344: couldn't read orphan inode 15 (err -117)
[  898.305853][T12500] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  899.316522][   T27] kauditd_printk_skb: 81 callbacks suppressed
[  899.465906][T12511] Invalid ELF header magic: != ELF
[  899.496079][   T27] audit: type=1804 audit(1761059176.526:643): pid=12511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1344" name="/newroot/76/file0/bus" dev="loop7" ino=18 res=1 errno=0
[  899.517742][   T27] audit: type=1800 audit(1761059176.536:644): pid=12511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1344" name="bus" dev="loop7" ino=18 res=0 errno=0
[  899.710690][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  901.170607][T12528] fuse: Bad value for 'fd'
[  902.338993][T12542] loop3: detected capacity change from 0 to 512
[  902.359724][T12542] EXT4-fs: Ignoring removed mblk_io_submit option
[  902.458750][T12542] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  902.514200][T12542] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002]
[  902.528951][T12542] EXT4-fs (loop3): orphan cleanup on readonly fs
[  902.583441][T12542] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1357: bg 0: block 361: padding at end of block bitmap is not set
[  902.671446][T12542] EXT4-fs (loop3): Remounting filesystem read-only
[  902.703067][T12542] EXT4-fs (loop3): 1 truncate cleaned up
[  902.714092][T12542] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  903.820476][T12560] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.1357: dx entry: limit 0 != root limit 125
[  903.832745][T12560] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.1357: Corrupt directory, running e2fsck is recommended
[  903.890622][T12560] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.1357: dx entry: limit 0 != root limit 125
[  903.903826][T12560] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.1357: Corrupt directory, running e2fsck is recommended
[  903.963875][T12560] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.1357: dx entry: limit 0 != root limit 125
[  903.975892][T12560] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.1357: Corrupt directory, running e2fsck is recommended
[  904.037123][T12560] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.1357: dx entry: limit 0 != root limit 125
[  904.049047][T12560] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.1357: Corrupt directory, running e2fsck is recommended
[  905.720043][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  909.288700][   T27] audit: type=1326 audit(1761059186.696:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.370328][   T27] audit: type=1326 audit(1761059186.696:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.392857][   T27] audit: type=1326 audit(1761059186.696:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.415592][   T27] audit: type=1326 audit(1761059186.696:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.477260][   T27] audit: type=1326 audit(1761059186.716:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.573983][   T27] audit: type=1326 audit(1761059186.716:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.574908][T12604] loop7: detected capacity change from 0 to 256
[  909.648496][   T27] audit: type=1326 audit(1761059186.716:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.719654][   T27] audit: type=1326 audit(1761059186.716:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.745437][T12604] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  909.796278][   T27] audit: type=1326 audit(1761059186.726:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  909.865030][T12610] Invalid ELF header magic: != ELF
[  909.876912][   T27] audit: type=1326 audit(1761059186.726:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.3.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[  911.555340][T12631] Invalid ELF header magic: != ELF
[  912.233028][T12644] syz.7.1375[12644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  912.234589][T12644] syz.7.1375[12644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  913.042707][T12645] overlayfs: overlapping lowerdir path
[  918.703073][T12664] tty tty26: ldisc open failed (-12), clearing slot 25
[  921.235789][T12697] Invalid ELF header magic: != ELF
[  923.838535][T10924] Bluetooth: hci2: command 0x0406 tx timeout
[  925.428671][ T2198] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  925.438255][T12738] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1391'.
[  925.657970][ T2198] usb 4-1: Using ep0 maxpacket: 16
[  925.670720][ T2198] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  925.706123][ T2198] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  925.731055][ T2198] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  925.788907][ T2198] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  925.814656][ T2198] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  925.878447][ T2198] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  925.886516][ T2198] usb 4-1: SerialNumber: syz
[  925.942219][ T2198] cdc_ether: probe of 4-1:1.0 failed with error -22
[  926.218181][ T2198] usb 4-1: USB disconnect, device number 10
[  926.374937][T12752] loop9: detected capacity change from 0 to 2048
[  926.450092][T12752] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  927.367726][T11732] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  929.046663][T12788] Invalid ELF header magic: != ELF
[  931.995937][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  932.013013][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  933.018589][ T2198] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  933.965508][ T2198] usb 10-1: Using ep0 maxpacket: 16
[  934.011552][ T2198] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  934.059474][ T2198] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[  934.101715][ T2198] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  934.129485][ T2198] usb 10-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  934.161122][ T2198] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  934.192096][ T2198] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  934.221658][ T2198] usb 10-1: SerialNumber: syz
[  934.272961][T12821] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  934.335186][ T2198] cdc_ether: probe of 10-1:1.0 failed with error -22
[  934.566047][ T2198] usb 10-1: USB disconnect, device number 2
[  936.527330][T12872] loop3: detected capacity change from 0 to 512
[  936.638719][T12872] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1415: casefold flag without casefold feature
[  937.188490][T12872] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1415: couldn't read orphan inode 15 (err -117)
[  937.498194][T12872] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  938.208657][   T27] kauditd_printk_skb: 12 callbacks suppressed
[  938.208675][   T27] audit: type=1804 audit(1761059215.416:667): pid=12883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1415" name="/newroot/24/file0/bus" dev="loop3" ino=18 res=1 errno=0
[  938.478426][   T27] audit: type=1800 audit(1761059215.416:668): pid=12883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1415" name="bus" dev="loop3" ino=18 res=0 errno=0
[  938.542318][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  941.420147][T12919] loop9: detected capacity change from 0 to 512
[  941.913471][T12922] syz.3.1421[12922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  941.914378][T12922] syz.3.1421[12922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  944.072264][T12919] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  944.096720][T12919] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  944.886374][T11732] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  946.214213][T12954] loop3: detected capacity change from 0 to 512
[  946.217305][T12955] loop7: detected capacity change from 0 to 1024
[  946.233252][T12955] EXT4-fs: Ignoring removed bh option
[  946.239114][T12955] EXT4-fs: inline encryption not supported
[  946.273838][T12954] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  946.310641][T12955] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  946.446695][T12954] EXT4-fs (loop3): 1 orphan inode deleted
[  946.452560][T12954] EXT4-fs (loop3): 1 truncate cleaned up
[  946.459752][T12954] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  946.486609][T12955] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 2: comm syz.7.1424: lblock 2 mapped to illegal pblock 2 (length 1)
[  946.511442][T12955] Quota error (device loop7): qtree_write_dquot: dquota write failed
[  946.520352][T12955] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 48: comm syz.7.1424: lblock 0 mapped to illegal pblock 48 (length 1)
[  946.536971][T12955] Quota error (device loop7): v2_write_file_info: Can't write info structure
[  946.545991][T12955] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.1424: Failed to acquire dquot type 0
[  946.559162][T12955] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5908: Corrupt filesystem
[  946.572152][T12955] EXT4-fs error (device loop7): ext4_evict_inode:252: inode #11: comm syz.7.1424: mark_inode_dirty error
[  946.590697][T12955] EXT4-fs warning (device loop7): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  946.605726][T12955] EXT4-fs (loop7): 1 orphan inode deleted
[  946.613140][T12955] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  947.243137][ T8750] EXT4-fs error (device loop7): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  947.362602][ T8750] Quota error (device loop7): remove_tree: Can't read quota data block 1
[  947.392864][ T8750] EXT4-fs error (device loop7): ext4_release_dquot:6976: comm kworker/u4:17: Failed to release dquot type 0
[  947.872788][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  948.667190][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  948.731227][T10922] EXT4-fs error (device loop7): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[  948.784584][T10922] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5908: Corrupt filesystem
[  948.828689][T10922] EXT4-fs error (device loop7): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[  950.469058][T12988] overlayfs: failed to clone upperpath
[  953.134970][T13010] loop3: detected capacity change from 0 to 512
[  956.050313][T13010] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  956.063561][T13010] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  956.440410][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  958.938493][T12283] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  959.128822][T12283] usb 10-1: Using ep0 maxpacket: 16
[  959.136892][T12283] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[  959.168668][T12283] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  959.218623][T12283] usb 10-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  959.274917][T12283] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  959.311393][T12283] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  960.132004][T12283] usb 10-1: SerialNumber: syz
[  960.151903][T13042] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  960.179009][T12283] cdc_ether: probe of 10-1:1.0 failed with error -22
[  960.407287][T12283] usb 10-1: USB disconnect, device number 3
[  960.692587][T13073] process 'syz.5.1443' launched './file0' with NULL argv: empty string added
[  965.198399][T13108] vlan2: entered allmulticast mode
[  967.735485][T13123] loop7: detected capacity change from 0 to 512
[  969.060092][T13128] fuse: Invalid rootmode
[  969.217337][T13123] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  969.250355][T13123] EXT4-fs (loop7): 1 orphan inode deleted
[  969.256163][T13123] EXT4-fs (loop7): 1 truncate cleaned up
[  969.263108][T13123] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  969.570060][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  969.916600][   T27] audit: type=1326 audit(1761059247.376:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13143 comm="syz.7.1456" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x0
[  972.119068][T13157] syz.3.1457[13157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.119214][T13157] syz.3.1457[13157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  975.948959][T10924] Bluetooth: hci3: command 0x0406 tx timeout
[  977.960325][T13169] loop7: detected capacity change from 0 to 8
[  977.971827][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  977.979881][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  977.986139][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  977.994066][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.019932][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.027796][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.035110][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.043001][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.049309][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.057128][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.063422][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.071589][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.079074][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.086934][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.093268][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.101135][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.107429][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.115309][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.121620][T13169] SQUASHFS error: lzo decompression failed, data probably corrupt
[  978.129627][T13169] SQUASHFS error: Failed to read block 0x0: -5
[  978.147831][   T27] audit: type=1800 audit(1761059255.466:670): pid=13169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1459" name="file2" dev="loop7" ino=3 res=0 errno=0
[  978.530652][T13178] vlan2: entered allmulticast mode
[  979.725458][T13191] loop7: detected capacity change from 0 to 512
[  979.733201][T13184] loop3: detected capacity change from 0 to 8192
[  979.740429][T13191] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  979.815443][T13191] EXT4-fs (loop7): 1 orphan inode deleted
[  979.821344][T13191] EXT4-fs (loop7): 1 truncate cleaned up
[  979.828500][T13191] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  981.626362][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  982.712264][T13220] syz.5.1468[13220] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  982.818839][T13220] syz.5.1468[13220] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  987.073005][ T5802] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  987.073568][T13231] loop3: detected capacity change from 0 to 512
[  987.209150][ T5802] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  987.218253][ T5802] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  987.227910][ T5802] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  987.235878][ T5802] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  987.244981][ T5802] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  988.293702][T13231] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1471: casefold flag without casefold feature
[  988.340602][T13231] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1471: couldn't read orphan inode 15 (err -117)
[  988.356588][T13231] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  988.450314][T13246] vlan2: entered allmulticast mode
[  988.455510][T13246] bridge_slave_0: entered allmulticast mode
[  989.348535][ T5805] Bluetooth: hci0: command tx timeout
[  989.459147][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  989.816270][T13259] fuse: Bad value for 'fd'
[  989.879627][T13261] loop7: detected capacity change from 0 to 512
[  989.904169][T13261] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  989.964978][T13230] chnl_net:caif_netlink_parms(): no params data found
[  989.995632][T13261] EXT4-fs (loop7): 1 orphan inode deleted
[  990.002717][T13261] EXT4-fs (loop7): 1 truncate cleaned up
[  990.010074][T13261] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  991.236273][T13230] bridge0: port 1(bridge_slave_0) entered blocking state
[  991.301201][T13230] bridge0: port 1(bridge_slave_0) entered disabled state
[  991.344432][T13230] bridge_slave_0: entered allmulticast mode
[  991.391341][T13230] bridge_slave_0: entered promiscuous mode
[  991.429131][ T5805] Bluetooth: hci0: command tx timeout
[  991.461818][T13230] bridge0: port 2(bridge_slave_1) entered blocking state
[  991.486386][T13230] bridge0: port 2(bridge_slave_1) entered disabled state
[  991.525455][T13230] bridge_slave_1: entered allmulticast mode
[  991.568222][T13230] bridge_slave_1: entered promiscuous mode
[  991.600022][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  991.947073][T13230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  991.986475][T13230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  992.147244][T13230] team0: Port device team_slave_0 added
[  992.773115][ T8750] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  992.854905][T13230] team0: Port device team_slave_1 added
[  993.060948][ T8750] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  993.440477][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  993.454219][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  993.509395][ T5805] Bluetooth: hci0: command tx timeout
[  994.190936][ T8750] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  994.253824][T13230] batman_adv: batadv0: Adding interface: batadv_slave_0
[  994.278652][T13230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  994.381877][T13230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  994.511456][ T8750] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  994.628085][T13230] batman_adv: batadv0: Adding interface: batadv_slave_1
[  994.656756][T13230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  994.785556][T13230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  995.199618][T13302] fuse: Bad value for 'fd'
[  995.249951][T13230] hsr_slave_0: entered promiscuous mode
[  995.267003][T13230] hsr_slave_1: entered promiscuous mode
[  995.293816][T13230] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  995.305757][T13230] Cannot create hsr debugfs directory
[  995.588524][ T5805] Bluetooth: hci0: command tx timeout
[  995.749007][T13308] loop7: detected capacity change from 0 to 512
[  995.767802][T13308] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  996.012789][T13308] EXT4-fs (loop7): 1 orphan inode deleted
[  996.018786][T13308] EXT4-fs (loop7): 1 truncate cleaned up
[  996.025849][T13308] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  996.139130][T13311] vlan0: entered allmulticast mode
[  996.768547][T13310] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  997.188953][T13310] EXT4-fs (loop7): Remounting filesystem read-only
[  997.205625][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  997.932609][T13314] loop3: detected capacity change from 0 to 8
[  997.944696][T13314] SQUASHFS error: lzo decompression failed, data probably corrupt
[  997.952668][T13314] SQUASHFS error: Failed to read block 0x0: -5
[  997.959020][T13314] SQUASHFS error: lzo decompression failed, data probably corrupt
[  997.966852][T13314] SQUASHFS error: Failed to read block 0x0: -5
[  997.982121][   T27] audit: type=1800 audit(1761059275.436:671): pid=13314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1485" name="file2" dev="loop3" ino=3 res=0 errno=0
[  998.008735][T13314] SQUASHFS error: lzo decompression failed, data probably corrupt
[  998.016591][T13314] SQUASHFS error: Failed to read block 0x0: -5
[  998.023057][T13314] SQUASHFS error: lzo decompression failed, data probably corrupt
[  998.030976][T13314] SQUASHFS error: Failed to read block 0x0: -5
[  998.037243][T13314] SQUASHFS error: lzo decompression failed, data probably corrupt
[  998.045104][T13314] SQUASHFS error: Failed to read block 0x0: -5
[  998.051376][T13314] SQUASHFS error: lzo decompression failed, data probably corrupt
[  998.059217][T13314] SQUASHFS error: Failed to read block 0x0: -5
[ 1001.158201][T13346] fuse: Bad value for 'fd'
[ 1002.092450][T13357] loop3: detected capacity change from 0 to 512
[ 1002.124602][T13357] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1002.244349][T13357] EXT4-fs (loop3): 1 orphan inode deleted
[ 1002.250480][T13357] EXT4-fs (loop3): 1 truncate cleaned up
[ 1002.259057][T13357] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1003.783712][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1006.248239][T13383] loop7: detected capacity change from 0 to 8192
[ 1007.875999][T13230] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1007.887137][T13230] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1008.054271][T13230] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1009.328681][T13409] loop3: detected capacity change from 0 to 512
[ 1009.340215][T13230] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1009.393930][T13409] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1009.417875][T13409] EXT4-fs (loop3): 1 orphan inode deleted
[ 1009.423766][T13409] EXT4-fs (loop3): 1 truncate cleaned up
[ 1009.431085][T13409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1009.595421][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1009.913052][ T8750] hsr_slave_0: left promiscuous mode
[ 1009.924110][ T8750] hsr_slave_1: left promiscuous mode
[ 1009.935501][ T8750] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1009.943771][ T8750] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1009.952426][ T8750] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1009.960561][ T8750] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1009.969270][ T8750] bridge_slave_1: left allmulticast mode
[ 1009.975960][ T8750] bridge_slave_1: left promiscuous mode
[ 1009.983186][ T8750] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1010.009757][ T8750] bridge_slave_0: left allmulticast mode
[ 1010.016867][ T8750] bridge_slave_0: left promiscuous mode
[ 1010.028093][ T8750] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1010.120415][ T8750] veth1_macvtap: left promiscuous mode
[ 1010.126036][ T8750] veth0_macvtap: left promiscuous mode
[ 1010.138202][ T8750] veth1_vlan: left promiscuous mode
[ 1010.154443][ T8750] veth0_vlan: left promiscuous mode
[ 1012.863645][ T8750] team0 (unregistering): Port device team_slave_1 removed
[ 1012.943754][T13453] loop3: detected capacity change from 0 to 128
[ 1012.967435][ T8750] team0 (unregistering): Port device team_slave_0 removed
[ 1013.070842][ T8750] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1013.189930][ T8750] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1014.574790][T13459] loop3: detected capacity change from 0 to 512
[ 1014.600269][T13459] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1014.623963][T13459] EXT4-fs (loop3): 1 orphan inode deleted
[ 1014.629854][T13459] EXT4-fs (loop3): 1 truncate cleaned up
[ 1014.637043][T13459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1014.775413][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1016.036449][ T8750] bond0 (unregistering): Released all slaves
[ 1016.538619][T13230] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1016.584037][T13230] 8021q: adding VLAN 0 to HW filter on device team0
[ 1016.725574][ T3471] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1016.732889][ T3471] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1016.800465][ T3471] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1016.807757][ T3471] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1017.752113][T13489] loop3: detected capacity change from 0 to 512
[ 1017.822494][T13489] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1516: casefold flag without casefold feature
[ 1017.969432][T13489] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1516: couldn't read orphan inode 15 (err -117)
[ 1018.134220][T13489] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1019.144384][   T27] audit: type=1804 audit(1761059296.566:672): pid=13503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1516" name="/newroot/65/file0/bus" dev="loop3" ino=18 res=1 errno=0
[ 1019.454538][   T27] audit: type=1800 audit(1761059296.566:673): pid=13503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1516" name="bus" dev="loop3" ino=18 res=0 errno=0
[ 1019.544907][T13230] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1019.752459][T13230] veth0_vlan: entered promiscuous mode
[ 1019.800021][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1019.864507][T13230] veth1_vlan: entered promiscuous mode
[ 1019.864850][T13507] loop7: detected capacity change from 0 to 512
[ 1019.892908][T13507] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1019.925015][T13507] EXT4-fs (loop7): 1 orphan inode deleted
[ 1019.930950][T13507] EXT4-fs (loop7): 1 truncate cleaned up
[ 1019.937968][T13507] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1020.089958][T13230] veth0_macvtap: entered promiscuous mode
[ 1020.091773][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1020.103047][T13230] veth1_macvtap: entered promiscuous mode
[ 1020.127912][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1020.139227][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1020.150008][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1020.160686][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1020.172030][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1020.198462][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1020.231068][T13230] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1020.310700][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1020.321367][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1020.366068][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1020.413347][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1020.550986][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1020.792155][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1021.090183][T13230] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1021.250807][T13230] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1021.537532][T13230] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1021.911478][T13230] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1022.071294][T13230] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1022.936684][ T3451] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1022.977002][ T3451] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1023.013763][ T3451] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1023.043711][ T3451] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1023.959908][T13553] loop3: detected capacity change from 0 to 512
[ 1024.031699][T13553] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1024.091664][T13553] EXT4-fs (loop3): 1 orphan inode deleted
[ 1024.124938][T13553] EXT4-fs (loop3): 1 truncate cleaned up
[ 1024.160212][T13553] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1024.182105][T13559] overlayfs: failed to clone upperpath
[ 1024.469749][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1029.375082][T13594] Bluetooth: MGMT ver 1.22
[ 1031.658524][T13615] loop7: detected capacity change from 0 to 512
[ 1031.668653][T13615] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1031.712028][T13615] EXT4-fs (loop7): 1 orphan inode deleted
[ 1031.717843][T13615] EXT4-fs (loop7): 1 truncate cleaned up
[ 1031.725045][T13615] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1031.859782][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1032.537978][T13631] Invalid ELF header magic: != ELF
[ 1033.105995][T13628] loop7: detected capacity change from 0 to 8192
[ 1036.973553][T13677] loop3: detected capacity change from 0 to 512
[ 1036.987994][T13677] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1037.981215][T13677] EXT4-fs (loop3): 1 orphan inode deleted
[ 1037.987062][T13677] EXT4-fs (loop3): 1 truncate cleaned up
[ 1037.994157][T13677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1038.084999][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1043.218512][   T23] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[ 1043.458572][   T23] usb 3-1: Using ep0 maxpacket: 16
[ 1043.477580][   T23] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[ 1043.503030][   T23] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[ 1043.538073][   T23] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[ 1043.580039][   T23] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1043.600173][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1043.623210][   T23] usb 3-1: SerialNumber: syz
[ 1043.642603][T13701] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1043.901137][T13701] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1043.938640][   T23] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1045.060337][ T5784] usb 3-1: USB disconnect, device number 13
[ 1047.692085][T13774] loop2: detected capacity change from 0 to 512
[ 1047.834169][T13774] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1047.915475][T13774] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1048.252143][T13784] syz.3.1565[13784] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1048.252287][T13784] syz.3.1565[13784] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1049.845904][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1051.344234][T13801] loop7: detected capacity change from 0 to 512
[ 1051.437961][T13801] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.1572: casefold flag without casefold feature
[ 1051.459087][T13801] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1572: couldn't read orphan inode 15 (err -117)
[ 1051.555142][T13801] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1053.161639][T13826] loop2: detected capacity change from 0 to 512
[ 1053.250240][T13826] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1576: casefold flag without casefold feature
[ 1053.326291][T13826] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1576: couldn't read orphan inode 15 (err -117)
[ 1053.429148][T13826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1053.643256][T13835] overlayfs: failed to clone upperpath
[ 1053.678709][   T27] audit: type=1804 audit(1761059331.136:674): pid=13812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1572" name="/newroot/133/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1053.764815][   T27] audit: type=1800 audit(1761059331.136:675): pid=13812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1572" name="bus" dev="loop7" ino=18 res=0 errno=0
[ 1054.077037][T13839] Invalid ELF header magic: != ELF
[ 1054.288416][   T27] audit: type=1804 audit(1761059331.416:676): pid=13839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1576" name="/newroot/12/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1054.346664][T13812] Invalid ELF header magic: != ELF
[ 1054.429669][   T27] audit: type=1800 audit(1761059331.416:677): pid=13839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1576" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1054.766165][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1054.885124][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.891727][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.898746][   T23] libceph: connect (1)[c::]:6789 error -101
[ 1055.904881][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1055.922555][T13854] ceph: No mds server is up or the cluster is laggy
[ 1056.099458][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1057.647404][T13876] loop7: detected capacity change from 0 to 4096
[ 1057.860447][T13876] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1058.750095][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1058.832503][T13905] loop2: detected capacity change from 0 to 512
[ 1058.866843][T13905] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1591: casefold flag without casefold feature
[ 1058.966604][T13905] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1591: couldn't read orphan inode 15 (err -117)
[ 1059.077421][T13905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1059.480408][T13899] Invalid ELF header magic: != ELF
[ 1059.607303][T13916] loop7: detected capacity change from 0 to 256
[ 1059.629540][T13916] FAT-fs (loop7): Unrecognized mount option "shortoame=winnt" or missing value
[ 1061.791835][   T27] audit: type=1804 audit(1761059339.256:678): pid=13913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1591" name="/newroot/16/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1061.990936][T13932] loop7: detected capacity change from 0 to 1024
[ 1062.003024][T13932] EXT4-fs: inline encryption not supported
[ 1062.009230][T13932] EXT4-fs: Ignoring removed i_version option
[ 1062.059640][   T27] audit: type=1800 audit(1761059339.256:679): pid=13913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1591" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1062.274063][T13932] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1062.556308][T13932] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1062.830172][T13932] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4031: comm syz.7.1592: Allocating blocks 497-513 which overlap fs metadata
[ 1062.884287][T13932] EXT4-fs (loop7): pa ffff888078e2b0e8: logic 256, phys. 385, len 8
[ 1062.893273][T13932] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1
[ 1063.304629][T13913] Invalid ELF header magic: != ELF
[ 1064.568916][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1066.440393][T13960] sit0: Caught tx_queue_len zero misconfig
[ 1067.320657][   T23] libceph: connect (1)[c::]:6789 error -101
[ 1067.412320][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1067.539759][T13951] ceph: No mds server is up or the cluster is laggy
[ 1067.548598][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1069.973598][T13993] loop3: detected capacity change from 0 to 8
[ 1070.189329][T13992] loop7: detected capacity change from 0 to 4096
[ 1070.835814][T13992] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1071.092456][T13993] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1071.100621][T13993] SQUASHFS error: Failed to read block 0x0: -5
[ 1071.108108][T13993] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1071.117543][T13993] SQUASHFS error: Failed to read block 0x0: -5
[ 1071.942796][   T27] audit: type=1800 audit(1761059349.406:680): pid=13993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1601" name="file2" dev="loop3" ino=3 res=0 errno=0
[ 1072.071892][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1072.224692][T14011] loop2: detected capacity change from 0 to 512
[ 1072.285507][T14011] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1607: casefold flag without casefold feature
[ 1072.442245][T14011] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1607: couldn't read orphan inode 15 (err -117)
[ 1072.495363][T14011] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1073.625625][   T27] audit: type=1804 audit(1761059351.036:681): pid=14020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1607" name="/newroot/20/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1073.647908][   T27] audit: type=1800 audit(1761059351.036:682): pid=14020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1607" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1074.039783][T14020] Invalid ELF header magic: != ELF
[ 1074.219679][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1075.561091][T14042] loop7: detected capacity change from 0 to 512
[ 1075.765677][T14042] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.1611: casefold flag without casefold feature
[ 1075.812754][T14042] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1611: couldn't read orphan inode 15 (err -117)
[ 1075.891032][T14042] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1079.298918][   T27] audit: type=1804 audit(1761059354.366:683): pid=14055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1611" name="/newroot/142/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1079.435229][T14055] Invalid ELF header magic: != ELF
[ 1079.685346][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1079.808463][   T27] audit: type=1800 audit(1761059354.366:684): pid=14055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1611" name="bus" dev="loop7" ino=18 res=0 errno=0
[ 1081.000642][T14077] loop7: detected capacity change from 0 to 512
[ 1081.125083][T14077] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1081.225465][T14077] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1087.584071][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1087.796863][T14115] loop3: detected capacity change from 0 to 512
[ 1087.824758][T14115] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1627: casefold flag without casefold feature
[ 1087.940017][T14115] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1627: couldn't read orphan inode 15 (err -117)
[ 1088.098952][T14115] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1089.264013][   T27] audit: type=1804 audit(1761059366.596:685): pid=14130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1627" name="/newroot/94/file0/bus" dev="loop3" ino=18 res=1 errno=0
[ 1089.503495][T14130] Invalid ELF header magic: != ELF
[ 1089.595839][   T27] audit: type=1800 audit(1761059366.596:686): pid=14130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1627" name="bus" dev="loop3" ino=18 res=0 errno=0
[ 1089.782498][T14137] loop2: detected capacity change from 0 to 512
[ 1089.833915][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1090.010013][T14137] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1090.046385][T14137] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1091.685293][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1097.445361][T14232] loop7: detected capacity change from 0 to 256
[ 1097.580363][T14234] overlayfs: failed to clone upperpath
[ 1098.265148][T14237] loop3: detected capacity change from 0 to 512
[ 1098.474891][T14237] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1098.530685][T14237] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1099.742218][T14244] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1101.010500][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1103.238471][   T27] audit: type=1326 audit(1761059380.696:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14264 comm="syz.3.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1103.286965][   T27] audit: type=1326 audit(1761059380.696:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14264 comm="syz.3.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1103.311826][   T27] audit: type=1326 audit(1761059380.696:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14264 comm="syz.3.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1103.334528][   T27] audit: type=1326 audit(1761059380.696:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14264 comm="syz.3.1651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1103.428573][ T5914] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1103.609000][ T5914] usb 3-1: Using ep0 maxpacket: 32
[ 1103.626108][ T5914] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[ 1103.638316][ T5914] usb 3-1: config 0 has no interface number 0
[ 1103.661339][ T5914] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1103.691489][ T5914] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1103.714769][ T5914] usb 3-1: Product: syz
[ 1103.728644][ T5914] usb 3-1: Manufacturer: syz
[ 1103.741922][ T5914] usb 3-1: SerialNumber: syz
[ 1103.779111][ T5914] usb 3-1: config 0 descriptor??
[ 1103.819128][ T5914] smsc95xx v2.0.0
[ 1103.964203][T14275] overlayfs: failed to clone upperpath
[ 1104.768848][ T5914] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1104.798360][ T5914] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1105.013694][ T5914] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1105.026706][ T5914] smsc95xx: probe of 3-1:0.67 failed with error -71
[ 1105.065637][ T5914] usb 3-1: USB disconnect, device number 14
[ 1108.914585][T14340] loop3: detected capacity change from 0 to 512
[ 1109.009262][T14340] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1109.239336][T14340] EXT4-fs (loop3): 1 orphan inode deleted
[ 1109.245147][T14340] EXT4-fs (loop3): 1 truncate cleaned up
[ 1109.305499][T14340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1109.721143][T14355] Invalid ELF header magic: != ELF
[ 1111.959628][T14345] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1112.054326][T14345] EXT4-fs (loop3): Remounting filesystem read-only
[ 1113.445855][ T5802] Bluetooth: hci0: command 0x0406 tx timeout
[ 1115.888334][   T27] audit: type=1326 audit(1761059393.266:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14420 comm="syz.7.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[ 1115.950549][   T27] audit: type=1326 audit(1761059393.266:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14420 comm="syz.7.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[ 1115.975101][   T27] audit: type=1326 audit(1761059393.286:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14420 comm="syz.7.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[ 1116.008385][   T27] audit: type=1326 audit(1761059393.286:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14420 comm="syz.7.1679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab3558efc9 code=0x7ffc0000
[ 1116.334051][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.341567][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1120.998049][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1121.247270][T14480] 9pnet_fd: Insufficient options for proto=fd
[ 1122.737502][T14519] loop2: detected capacity change from 0 to 512
[ 1122.984909][T14519] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1123.049413][T14519] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1123.154056][T14528] loop3: detected capacity change from 0 to 512
[ 1123.366797][T14528] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1123.447298][T14528] EXT4-fs (loop3): 1 orphan inode deleted
[ 1123.453257][T14528] EXT4-fs (loop3): 1 truncate cleaned up
[ 1123.471875][T14528] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1124.496824][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1125.137017][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1125.429923][T14544] loop3: detected capacity change from 0 to 16
[ 1125.460717][T14544] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1125.777236][T14553] loop7: detected capacity change from 0 to 1024
[ 1125.816901][T14553] EXT4-fs: Ignoring removed orlov option
[ 1125.861566][T14553] EXT4-fs (loop7): stripe (2) is not aligned with cluster size (16), stripe is disabled
[ 1126.080583][T14553] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1126.367949][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1127.977836][T14592] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[ 1131.316246][T14624] loop7: detected capacity change from 0 to 8192
[ 1134.723389][T14661] loop3: detected capacity change from 0 to 512
[ 1134.855089][T14661] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1720: casefold flag without casefold feature
[ 1134.975904][T14661] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1720: couldn't read orphan inode 15 (err -117)
[ 1135.051059][T14661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1135.589848][   T27] audit: type=1804 audit(1761059413.036:695): pid=14665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1720" name="/newroot/113/file0/bus" dev="loop3" ino=18 res=1 errno=0
[ 1135.653843][T14667] loop7: detected capacity change from 0 to 512
[ 1135.689810][T14665] Invalid ELF header magic: != ELF
[ 1135.841820][   T27] audit: type=1800 audit(1761059413.036:696): pid=14665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1720" name="bus" dev="loop3" ino=18 res=0 errno=0
[ 1135.914870][T14667] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1135.968016][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1136.009700][T14667] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1137.178592][T12298] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1137.266125][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1137.378373][T12298] usb 4-1: Using ep0 maxpacket: 16
[ 1137.385955][T12298] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[ 1137.418295][T12298] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[ 1137.428106][T12298] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[ 1137.488021][T12298] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1137.507416][T12298] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1137.548138][T12298] usb 4-1: SerialNumber: syz
[ 1137.578852][T14676] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1137.687200][T14677] Invalid ELF header magic: != ELF
[ 1137.703997][T14692] loop7: detected capacity change from 0 to 128
[ 1137.755572][T14692] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1137.808354][T12298] cdc_ether: probe of 4-1:1.0 failed with error -22
[ 1137.824608][T14692] ext4 filesystem being mounted at /172/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1137.838735][T12298] usb 4-1: USB disconnect, device number 11
[ 1139.125288][T10922] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1139.329463][T14704] loop3: detected capacity change from 0 to 8192
[ 1140.764320][T14719] loop2: detected capacity change from 0 to 512
[ 1141.239900][T14719] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1731: casefold flag without casefold feature
[ 1141.328798][T14719] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1731: couldn't read orphan inode 15 (err -117)
[ 1141.434381][T14719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1141.788188][T14728] Invalid ELF header magic: != ELF
[ 1141.802246][   T27] audit: type=1804 audit(1761059419.236:697): pid=14728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1731" name="/newroot/48/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1141.874810][   T27] audit: type=1800 audit(1761059419.236:698): pid=14728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1731" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1142.070314][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1142.451483][T14741] loop2: detected capacity change from 0 to 512
[ 1142.783446][T14741] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1734: casefold flag without casefold feature
[ 1143.169173][T14741] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1734: couldn't read orphan inode 15 (err -117)
[ 1143.235300][T14741] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1143.534637][ T7058] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1143.605692][   T27] audit: type=1804 audit(1761059421.066:699): pid=14749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1734" name="/newroot/49/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1143.643360][T14749] Invalid ELF header magic: != ELF
[ 1143.689268][   T27] audit: type=1800 audit(1761059421.066:700): pid=14749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1734" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1143.934945][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1143.988937][ T7058] usb 4-1: Using ep0 maxpacket: 16
[ 1143.996288][ T7058] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[ 1144.028400][ T7058] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[ 1145.018698][ T7058] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[ 1145.121497][ T7058] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1145.172432][ T7058] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1145.221673][ T7058] usb 4-1: SerialNumber: syz
[ 1145.259671][T14739] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1146.440061][ T7058] usb 4-1: can't set config #1, error -71
[ 1146.459948][ T7058] usb 4-1: USB disconnect, device number 12
[ 1146.903132][T14778] Invalid ELF header magic: != ELF
[ 1146.954809][T14770] loop3: detected capacity change from 0 to 8192
[ 1147.849506][T14787] loop2: detected capacity change from 0 to 512
[ 1147.918453][T14787] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1148.237448][T14787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1148.299109][T14787] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1150.728902][T14803] xt_socket: unknown flags 0x50
[ 1151.668379][   T27] audit: type=1107 audit(1761059428.766:701): pid=14797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 1151.725086][   T27] audit: type=1107 audit(1761059428.796:702): pid=14780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 1151.837810][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1151.951518][   T27] audit: type=1326 audit(1761059429.416:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.019874][   T27] audit: type=1326 audit(1761059429.416:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.042733][   T27] audit: type=1326 audit(1761059429.416:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.161018][   T27] audit: type=1326 audit(1761059429.416:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.703060][   T27] audit: type=1326 audit(1761059429.436:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.826918][   T27] audit: type=1326 audit(1761059429.466:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.852284][   T27] audit: type=1326 audit(1761059429.466:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1152.941247][   T27] audit: type=1326 audit(1761059429.466:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14808 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1154.228379][T11863] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1154.428458][T11863] usb 3-1: Using ep0 maxpacket: 16
[ 1154.441543][T11863] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[ 1154.464679][T11863] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[ 1154.495765][T11863] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[ 1154.539948][T11863] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1154.558370][T11863] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1154.586878][T11863] usb 3-1: SerialNumber: syz
[ 1154.601548][T14813] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1154.859172][T11863] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1154.894048][T11863] usb 3-1: USB disconnect, device number 15
[ 1155.544532][T14854] loop2: detected capacity change from 0 to 512
[ 1155.603046][T14854] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1754: casefold flag without casefold feature
[ 1155.678828][T14854] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1754: couldn't read orphan inode 15 (err -117)
[ 1155.728785][T14854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1156.213965][T14870] Invalid ELF header magic: != ELF
[ 1156.487201][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1157.360659][T14887] syz.2.1762[14887] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1157.360798][T14887] syz.2.1762[14887] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1157.559391][T14894] loop3: detected capacity change from 0 to 1024
[ 1157.617360][T14894] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1157.677157][T14894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1157.702481][T14909] binder: 14906:14909 unknown command 0
[ 1157.727150][T14909] binder: 14906:14909 ioctl c0306201 2000000003c0 returned -22
[ 1158.704329][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1158.963657][T14927] loop3: detected capacity change from 0 to 512
[ 1159.083513][T14927] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.1767: casefold flag without casefold feature
[ 1159.141748][T14927] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1767: couldn't read orphan inode 15 (err -117)
[ 1159.182924][T14927] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1159.665179][T14936] Invalid ELF header magic: != ELF
[ 1159.707105][   T27] kauditd_printk_skb: 15 callbacks suppressed
[ 1159.707122][   T27] audit: type=1804 audit(1761059437.106:726): pid=14936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1767" name="/newroot/124/file0/bus" dev="loop3" ino=18 res=1 errno=0
[ 1159.960677][   T27] audit: type=1800 audit(1761059437.106:727): pid=14936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1767" name="bus" dev="loop3" ino=18 res=0 errno=0
[ 1160.096540][T14941] loop7: detected capacity change from 0 to 512
[ 1160.109633][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1160.211047][T14941] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.1770: casefold flag without casefold feature
[ 1160.336004][T14941] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.1770: couldn't read orphan inode 15 (err -117)
[ 1160.397393][T14941] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1160.644011][T14948] loop3: detected capacity change from 0 to 1024
[ 1160.657779][T14948] EXT4-fs: Ignoring removed i_version option
[ 1160.744027][T14948] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1161.618137][T14948] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:478: comm syz.3.1771: Invalid block bitmap block 0 in block_group 0
[ 1161.634527][T14948] Quota error (device loop3): write_blk: dquota write failed
[ 1161.642292][T14948] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[ 1161.652871][T14948] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1771: Failed to acquire dquot type 0
[ 1161.672428][T14948] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.1771: Freeing blocks not in datazone - block = 0, count = 4096
[ 1161.695235][T14948] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.1771: Invalid inode bitmap blk 0 in block_group 0
[ 1161.712996][T14948] EXT4-fs error (device loop3) in ext4_free_inode:363: Corrupt filesystem
[ 1161.744092][   T27] audit: type=1804 audit(1761059438.706:728): pid=14951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1770" name="/newroot/180/file0/bus" dev="loop7" ino=18 res=1 errno=0
[ 1161.784662][T14948] EXT4-fs (loop3): 1 orphan inode deleted
[ 1161.799041][T14948] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1162.650980][T14951] Invalid ELF header magic: != ELF
[ 1162.924201][   T27] audit: type=1800 audit(1761059438.706:729): pid=14951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1770" name="bus" dev="loop7" ino=18 res=0 errno=0
[ 1163.809575][ T8750] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8
[ 1163.854935][ T8750] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:17: Failed to release dquot type 0
[ 1163.908599][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1163.925021][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1166.578776][T14973] overlayfs: failed to resolve './bus': -2
[ 1168.586566][T14992] Invalid ELF header magic: != ELF
[ 1171.971268][T15035] overlayfs: failed to resolve './bus': -2
[ 1177.106045][T15071] Invalid ELF header magic: != ELF
[ 1177.779237][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.785605][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1179.156088][T15097] overlayfs: failed to resolve './bus': -2
[ 1180.187456][T15112] loop2: detected capacity change from 0 to 256
[ 1181.000444][T15112] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[ 1182.927817][T15103] Invalid ELF header magic: != ELF
[ 1184.668039][T15146] syz.2.1806[15146] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1184.668194][T15146] syz.2.1806[15146] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1188.641504][T15174] loop3: detected capacity change from 0 to 8192
[ 1192.621325][T15207] loop3: detected capacity change from 0 to 512
[ 1192.801414][T15207] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1192.902523][T15207] ext4 filesystem being mounted at /135/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1193.290944][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1194.268738][ T5867] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1194.597174][T15233] loop7: detected capacity change from 0 to 1024
[ 1194.604787][T15233] EXT4-fs: inline encryption not supported
[ 1194.641478][T15233] EXT4-fs: Ignoring removed i_version option
[ 1194.648077][ T5867] usb 4-1: device descriptor read/64, error -71
[ 1194.674215][T15233] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1194.823692][T15233] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1194.948404][ T5867] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[ 1195.338597][ T5867] usb 4-1: device descriptor read/64, error -71
[ 1195.466631][ T5867] usb usb4-port1: attempt power cycle
[ 1195.547955][T15233] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4031: comm syz.7.1824: Allocating blocks 497-513 which overlap fs metadata
[ 1195.809968][T15233] EXT4-fs (loop7): pa ffff88805be712b8: logic 256, phys. 385, len 8
[ 1195.818103][T15233] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1
[ 1196.494383][ T5867] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 1196.539215][ T5867] usb 4-1: device descriptor read/8, error -71
[ 1197.545146][T15292] loop3: detected capacity change from 0 to 512
[ 1197.656204][T15292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1197.673771][T15292] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1198.826474][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1200.142155][T15323] loop2: detected capacity change from 0 to 512
[ 1200.297552][T15323] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1837: casefold flag without casefold feature
[ 1200.401049][T15323] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1837: couldn't read orphan inode 15 (err -117)
[ 1200.486715][T15323] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1200.746970][   T27] audit: type=1804 audit(1761059478.196:730): pid=15323 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1837" name="/newroot/77/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1200.790075][T15323] Invalid ELF header magic: != ELF
[ 1200.858802][   T27] audit: type=1800 audit(1761059478.196:731): pid=15323 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1837" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1200.930322][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1202.535903][   T27] audit: type=1326 audit(1761059479.996:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15346 comm="syz.3.1841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1202.647987][   T27] audit: type=1326 audit(1761059479.996:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15346 comm="syz.3.1841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1202.719699][   T27] audit: type=1326 audit(1761059480.036:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15346 comm="syz.3.1841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1202.822468][   T27] audit: type=1326 audit(1761059480.036:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15346 comm="syz.3.1841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1202.878380][   T27] audit: type=1326 audit(1761059480.036:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15346 comm="syz.3.1841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effcd78efc9 code=0x7ffc0000
[ 1202.960832][T15353] loop3: detected capacity change from 0 to 128
[ 1203.064792][T15353] syz.3.1843: attempt to access beyond end of device
[ 1203.064792][T15353] loop3: rw=2049, sector=145, nr_sectors = 89 limit=128
[ 1203.112668][T15351] loop2: detected capacity change from 0 to 8192
[ 1203.329565][T15353] syz.3.1843: attempt to access beyond end of device
[ 1203.329565][T15353] loop3: rw=2049, sector=241, nr_sectors = 408 limit=128
[ 1203.525855][T15353] syz.3.1843: attempt to access beyond end of device
[ 1203.525855][T15353] loop3: rw=524288, sector=241, nr_sectors = 256 limit=128
[ 1203.558495][T15353] syz.3.1843: attempt to access beyond end of device
[ 1203.558495][T15353] loop3: rw=0, sector=241, nr_sectors = 8 limit=128
[ 1203.677162][T15352] syz.3.1843: attempt to access beyond end of device
[ 1203.677162][T15352] loop3: rw=0, sector=241, nr_sectors = 8 limit=128
[ 1203.861866][T15357] syz.3.1843: attempt to access beyond end of device
[ 1203.861866][T15357] loop3: rw=0, sector=241, nr_sectors = 1 limit=128
[ 1203.931021][T15352] syz.3.1843: attempt to access beyond end of device
[ 1203.931021][T15352] loop3: rw=0, sector=241, nr_sectors = 1 limit=128
[ 1204.022039][T15352] buffer_io_error: 1 callbacks suppressed
[ 1204.022063][T15352] Buffer I/O error on dev loop3, logical block 241, async page read
[ 1204.105737][T15352] syz.3.1843: attempt to access beyond end of device
[ 1204.105737][T15352] loop3: rw=0, sector=242, nr_sectors = 1 limit=128
[ 1204.176908][T15352] Buffer I/O error on dev loop3, logical block 242, async page read
[ 1204.223973][T15352] syz.3.1843: attempt to access beyond end of device
[ 1204.223973][T15352] loop3: rw=0, sector=243, nr_sectors = 1 limit=128
[ 1204.262094][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1204.281850][T15352] Buffer I/O error on dev loop3, logical block 243, async page read
[ 1204.299759][T15352] syz.3.1843: attempt to access beyond end of device
[ 1204.299759][T15352] loop3: rw=0, sector=244, nr_sectors = 1 limit=128
[ 1204.313542][T15352] Buffer I/O error on dev loop3, logical block 244, async page read
[ 1204.322193][T15352] Buffer I/O error on dev loop3, logical block 245, async page read
[ 1204.330444][T15352] Buffer I/O error on dev loop3, logical block 246, async page read
[ 1204.348330][T15352] Buffer I/O error on dev loop3, logical block 247, async page read
[ 1204.356416][T15352] Buffer I/O error on dev loop3, logical block 248, async page read
[ 1204.438423][T15353] Buffer I/O error on dev loop3, logical block 241, async page read
[ 1204.446645][T15353] Buffer I/O error on dev loop3, logical block 242, async page read
[ 1207.480264][T15403] loop3: detected capacity change from 0 to 8192
[ 1208.085970][T15388] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1849'.
[ 1209.728946][T15437] netlink: 96 bytes leftover after parsing attributes in process `syz.7.1857'.
[ 1220.306715][   T27] audit: type=1326 audit(1761059497.766:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.359378][   T27] audit: type=1326 audit(1761059497.766:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.425135][   T27] audit: type=1326 audit(1761059497.806:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.494203][   T27] audit: type=1326 audit(1761059497.806:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.580258][   T27] audit: type=1326 audit(1761059497.806:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.620338][T15551] loop2: detected capacity change from 0 to 512
[ 1220.654227][T15551] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1220.674969][   T27] audit: type=1326 audit(1761059497.806:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.706338][   T27] audit: type=1326 audit(1761059497.806:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.731617][   T27] audit: type=1326 audit(1761059497.806:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.754173][   T27] audit: type=1326 audit(1761059497.816:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.776811][   T27] audit: type=1326 audit(1761059497.816:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15545 comm="syz.2.1873" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2aab18efc9 code=0x7ffc0000
[ 1220.781199][T15551] EXT4-fs (loop2): 1 truncate cleaned up
[ 1220.869732][T15551] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1221.398881][T12283] IPVS: starting estimator thread 0...
[ 1221.548656][T15561] IPVS: using max 15 ests per chain, 36000 per kthread
[ 1221.824320][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1222.203594][T15568] loop2: detected capacity change from 0 to 8192
[ 1223.403898][T15591] loop3: detected capacity change from 0 to 128
[ 1224.896362][T15606] overlayfs: missing 'lowerdir'
[ 1229.039956][T15635] loop2: detected capacity change from 0 to 512
[ 1230.919878][T15649] loop3: detected capacity change from 0 to 1024
[ 1230.986924][T15649] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1230.987949][T15635] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1230.999433][T15649] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1231.037002][T15635] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1231.341073][T15661] loop7: detected capacity change from 0 to 512
[ 1231.433669][T15662] overlayfs: missing 'lowerdir'
[ 1232.377635][T15661] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1232.390909][T15661] ext4 filesystem being mounted at /207/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1232.925829][T15649] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.1893: Freeing blocks not in datazone - block = 0, count = 16
[ 1233.029937][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1233.339006][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1234.930196][T15680] loop2: detected capacity change from 0 to 512
[ 1234.944503][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1234.983860][T15680] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1236.788544][T15680] EXT4-fs (loop2): 1 truncate cleaned up
[ 1236.809815][T15680] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1239.198368][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.204982][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.547680][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1239.998695][T15708] loop2: detected capacity change from 0 to 512
[ 1240.067950][T15708] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1240.120574][T15708] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1240.544413][T15721] overlayfs: missing 'lowerdir'
[ 1241.202471][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1243.492942][T15745] input: syz0 as /devices/virtual/input/input13
[ 1245.592276][T15760] loop7: detected capacity change from 0 to 1024
[ 1245.620025][T15760] EXT4-fs: quotafile must be on filesystem root
[ 1246.812639][T15770] overlayfs: missing 'lowerdir'
[ 1247.948721][T15775] loop2: detected capacity change from 0 to 8192
[ 1252.305229][T15800] syz.5.1919[15800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1252.305450][T15800] syz.5.1919[15800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1252.645966][T15829] loop2: detected capacity change from 0 to 512
[ 1252.859939][T15829] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1252.992230][T15829] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1253.544226][T15849] overlayfs: missing 'lowerdir'
[ 1254.133433][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1260.079809][T15905] loop2: detected capacity change from 0 to 512
[ 1260.225922][T15905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1260.325170][T15905] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1260.821785][T15920] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1260.831240][T15920] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1261.485785][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1265.857275][T15961] loop3: detected capacity change from 0 to 512
[ 1266.053285][T15961] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1266.137830][T15963] loop7: detected capacity change from 0 to 8192
[ 1266.245781][T15971] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1266.255182][T15971] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1266.493461][T15961] EXT4-fs (loop3): 1 truncate cleaned up
[ 1266.804355][T15961] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1268.178417][T12282] IPVS: starting estimator thread 0...
[ 1268.229858][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1268.278838][T15978] IPVS: using max 17 ests per chain, 40800 per kthread
[ 1272.924920][T16017] loop3: detected capacity change from 0 to 512
[ 1273.669092][T16017] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1273.787906][T16017] EXT4-fs (loop3): 1 truncate cleaned up
[ 1273.838807][T16017] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1273.926753][T16027] Invalid ELF header magic: != ELF
[ 1274.763242][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1275.019010][T16032] loop7: detected capacity change from 0 to 8192
[ 1275.198102][T16043] loop3: detected capacity change from 0 to 512
[ 1275.555710][T16043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1275.568870][T16043] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1277.974966][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1280.539952][T16085] loop2: detected capacity change from 0 to 512
[ 1280.588363][T16085] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1280.619997][T16085] EXT4-fs (loop2): 1 truncate cleaned up
[ 1281.109401][T16085] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1281.634506][T16096] loop3: detected capacity change from 0 to 512
[ 1281.660927][T16096] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1281.697131][T16096] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1281.959762][T16096] EXT4-fs (loop3): 1 truncate cleaned up
[ 1282.008943][T16096] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1282.271635][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1282.611040][T16103] syz.3.1972[16103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1282.611798][T16103] syz.3.1972[16103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1283.986041][T16110] loop2: detected capacity change from 0 to 512
[ 1284.205720][T16110] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.1974: casefold flag without casefold feature
[ 1284.297580][T16110] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1974: couldn't read orphan inode 15 (err -117)
[ 1284.404062][T16110] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1284.840161][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1285.264981][   T27] kauditd_printk_skb: 8 callbacks suppressed
[ 1285.265023][   T27] audit: type=1804 audit(1761059562.716:755): pid=16110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1974" name="/newroot/116/file0/bus" dev="loop2" ino=18 res=1 errno=0
[ 1285.656335][T16110] Invalid ELF header magic: != ELF
[ 1285.785869][   T27] audit: type=1800 audit(1761059562.716:756): pid=16110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1974" name="bus" dev="loop2" ino=18 res=0 errno=0
[ 1287.148822][T16137] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1287.469421][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1287.502837][T16147] loop7: detected capacity change from 0 to 512
[ 1287.524169][T16147] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1287.625846][T16147] EXT4-fs (loop7): 1 truncate cleaned up
[ 1287.657217][T16147] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1288.414930][ T9024] IPVS: starting estimator thread 0...
[ 1288.538832][T16167] IPVS: using max 16 ests per chain, 38400 per kthread
[ 1290.159105][ T5836] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[ 1290.377495][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1290.401832][ T5836] usb 4-1: config index 0 descriptor too short (expected 28277, got 36)
[ 1290.441774][ T5836] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1290.486006][ T5836] usb 4-1: config 0 has no interfaces?
[ 1290.501844][ T5836] usb 4-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[ 1290.553210][ T5836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1290.611095][ T5836] usb 4-1: config 0 descriptor??
[ 1295.194382][    T9] usb 4-1: USB disconnect, device number 17
[ 1296.679060][T16273] loop2: detected capacity change from 0 to 512
[ 1296.765979][T16273] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1296.929356][T16273] EXT4-fs (loop2): 1 truncate cleaned up
[ 1296.936386][T16273] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1297.791202][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1298.286543][T16290] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1298.293617][T16290] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1298.300430][T16290] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1298.307295][T16290] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[ 1298.314680][T16290] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1298.321334][T16290] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[ 1298.328364][T16290] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1298.334989][T16290] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1298.342414][T16290] comedi comedi3: 8255: I/O port conflict (0x9,4)
[ 1298.350605][T16290] comedi comedi3: 8255: I/O port conflict (0x6,4)
[ 1298.358465][T16290] comedi comedi3: 8255: I/O port conflict (0x4,4)
[ 1298.365113][T16290] comedi comedi3: 8255: I/O port conflict (0x3,4)
[ 1298.371986][T16290] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4)
[ 1298.379938][T16290] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[ 1300.638902][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.645267][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1302.688677][T16333] loop3: detected capacity change from 0 to 512
[ 1302.835097][T16332] syz_tun: entered allmulticast mode
[ 1302.879183][T16333] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1303.986479][T16333] EXT4-fs (loop3): 1 truncate cleaned up
[ 1304.214247][T16333] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1304.343468][T16347] loop2: detected capacity change from 0 to 512
[ 1304.587413][T16350] dvmrp1: entered allmulticast mode
[ 1305.148318][T16347] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2009: casefold flag without casefold feature
[ 1305.190466][T16347] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2009: couldn't read orphan inode 15 (err -117)
[ 1305.212874][T16347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1305.259153][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1305.274353][ T5805] Bluetooth: hci1: unexpected event for opcode 0x200b
[ 1307.169618][T16375] loop3: detected capacity change from 0 to 512
[ 1307.230082][T16375] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1307.268402][T16375] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1307.425463][T16375] EXT4-fs (loop3): 1 truncate cleaned up
[ 1307.455365][T16375] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1308.993580][T16385] syz.3.2014[16385] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1308.994378][T16385] syz.3.2014[16385] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1309.352233][ T5805] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1309.379119][ T5805] Bluetooth: hci1: Injecting HCI hardware error event
[ 1309.392401][ T5805] Bluetooth: hci1: hardware error 0x00
[ 1311.872782][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1312.112207][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1312.142603][T16386] Bluetooth: hci3: unexpected event for opcode 0x0c7d
[ 1312.293568][T16395] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2017'.
[ 1312.303956][T16395] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1312.311536][T16395] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1313.372508][ T5805] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1320.851558][T16453] loop2: detected capacity change from 0 to 512
[ 1320.867560][T16453] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1321.001717][T16453] EXT4-fs (loop2): 1 truncate cleaned up
[ 1321.009103][T16453] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1322.806391][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1326.403371][T16503] overlayfs: failed to clone upperpath
[ 1328.271813][T16524] loop7: detected capacity change from 0 to 512
[ 1328.355055][T16524] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1328.503053][T16524] EXT4-fs (loop7): 1 truncate cleaned up
[ 1328.554454][T16524] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1329.586835][T10922] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1330.311282][T16549] 9pnet_virtio: no channels available for device syz
[ 1332.787148][T16575] overlayfs: failed to clone upperpath
[ 1335.057265][T16590] vlan2: entered allmulticast mode
[ 1335.510023][T16598] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[ 1335.538426][T16598] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[ 1335.546916][T16598] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[ 1336.779767][T16617] team0: Caught tx_queue_len zero misconfig
[ 1340.616449][T16641] loop2: detected capacity change from 0 to 512
[ 1340.698777][T16641] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1340.832207][T16641] EXT4-fs (loop2): 1 truncate cleaned up
[ 1340.849567][T16641] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1342.001766][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1343.416642][T16682] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2069'.
[ 1347.918338][ T5805] Bluetooth: hci0: command 0x0406 tx timeout
[ 1348.332314][T16708] 9pnet_virtio: no channels available for device syz
[ 1348.637473][T16713] loop2: detected capacity change from 0 to 512
[ 1348.752328][T16713] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1348.807694][T16713] EXT4-fs (loop2): 1 truncate cleaned up
[ 1348.854028][T16713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1349.730895][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1350.110229][ T5802] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1350.122404][ T5802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1350.138777][ T5802] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1350.156843][ T5802] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1350.173179][ T5802] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1350.184037][ T5802] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1351.423241][T16560] Set syz1 is full, maxelem 65536 reached
[ 1351.833637][T16724] chnl_net:caif_netlink_parms(): no params data found
[ 1354.308504][ T5802] Bluetooth: hci2: command tx timeout
[ 1354.764942][T16767] loop2: detected capacity change from 0 to 512
[ 1354.793676][T16560] syz_tun (unregistering): left allmulticast mode
[ 1354.800397][T16767] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1354.899964][T16767] EXT4-fs (loop2): 1 truncate cleaned up
[ 1354.927373][T16767] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1355.279676][T16724] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1355.298335][T16724] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1355.305640][T16724] bridge_slave_0: entered allmulticast mode
[ 1355.328759][T16724] bridge_slave_0: entered promiscuous mode
[ 1355.964777][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1355.993299][ T8756] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1356.121309][T16724] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1356.163235][T16724] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1356.191174][T16724] bridge_slave_1: entered allmulticast mode
[ 1356.246624][T16724] bridge_slave_1: entered promiscuous mode
[ 1356.299691][T16787] loop2: detected capacity change from 0 to 512
[ 1356.391380][ T5805] Bluetooth: hci2: command tx timeout
[ 1356.420069][T16787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1356.486617][T16787] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1356.553127][ T8756] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1356.727754][T16786] vlan0: entered allmulticast mode
[ 1358.305174][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1358.322921][ T8756] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1358.468315][ T5805] Bluetooth: hci2: command tx timeout
[ 1358.483235][T16724] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1358.594292][T16807] overlayfs: failed to clone upperpath
[ 1359.439609][ T8756] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1359.711225][T16724] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1360.645691][ T5805] Bluetooth: hci2: command tx timeout
[ 1360.937352][T16724] team0: Port device team_slave_0 added
[ 1360.987232][T16827] loop3: detected capacity change from 0 to 512
[ 1360.995598][T16827] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1361.013215][T16724] team0: Port device team_slave_1 added
[ 1361.058709][T16827] EXT4-fs (loop3): 1 truncate cleaned up
[ 1361.065818][T16827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1361.274521][T16724] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1361.294350][T16724] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1361.375272][T16724] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1361.394313][T16724] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1361.685886][T16724] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1361.937765][T16724] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1362.058681][T12136] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1362.079484][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1362.085869][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.238764][T16724] hsr_slave_0: entered promiscuous mode
[ 1362.272574][T16724] hsr_slave_1: entered promiscuous mode
[ 1362.330718][T16724] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1362.360598][T16724] Cannot create hsr debugfs directory
[ 1362.852671][ T8756] tipc: Left network mode
[ 1363.065500][T16854] vlan0: entered allmulticast mode
[ 1366.575184][T16886] loop2: detected capacity change from 0 to 512
[ 1366.615974][T16886] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1366.731029][T16886] EXT4-fs (loop2): 1 truncate cleaned up
[ 1366.769711][T16886] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1367.824259][T13230] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1368.535393][T16908] overlayfs: failed to clone upperpath
[ 1423.519153][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.525541][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 1476.793531][ T5805] Bluetooth: hci2: command 0x0406 tx timeout
[ 1521.428308][   T29] INFO: task jbd2/sda1-8:5126 blocked for more than 143 seconds.
[ 1521.436112][   T29]       Not tainted syzkaller #0
[ 1521.447056][ T1287] ieee802154 phy0 wpan0: encryption failed: -22