last executing test programs:

12.533465763s ago: executing program 1 (id=2736):
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x335})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x40505331, &(0x7f0000000040))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000001e80))
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0x80045300, 0x0)
tkill(r0, 0x7)

10.732350621s ago: executing program 1 (id=2744):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYRES16=0x0, @ANYRES64=0x0, @ANYRES32=0x0, @ANYRESOCT, @ANYRES8, @ANYBLOB="e1cc9e585bf1ccbca5939bcef3ab754c3b730034e20162", @ANYRESOCT, @ANYRES16, @ANYRESDEC], 0x1, 0x1d2, &(0x7f0000000580)="$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")
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000080)={@remote, 0x16, r3})
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x56, &(0x7f0000000300)=@string={0x56, 0x3, "4f512758cd70d4acb68be8180f6158ca28dc5677e09d9bff9eadd64d51fb756ac85c0970cc8910eabf327a798f3e818d3f30fbe1370d747590bbd151d2c25b3f44550df4f47490c0283a31f4e9ee7c1f0b76a6ef"}}, {0x0, 0x0}]})
syz_usb_connect$uac1(0x2, 0x9f, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8d, 0x3, 0x1, 0x0, 0x40, 0x3, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x0, 0x1}, [@processing_unit={0xc, 0x24, 0x7, 0x5, 0x0, 0x0, "32341681c7"}, @output_terminal={0x9, 0x24, 0x3, 0x0, 0x0, 0x4, 0x6}, @selector_unit={0xa, 0x24, 0x5, 0x0, 0x0, "e0182c1423"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x9, 0x3, 0x1}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x0, 0x4, 0xa1}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x1, 0x3f, 0x0, {0x7, 0x25, 0x1, 0x2, 0xff, 0x3f}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x3ff, 0x0, 0x4, 0x9, {0x7, 0x25, 0x1, 0x80, 0x84, 0x1}}}}}}}]}}, &(0x7f00000006c0)={0xa, &(0x7f00000004c0)={0xa, 0x6, 0x201, 0x81, 0x40, 0x4, 0x20, 0x81}, 0x29, &(0x7f0000000500)={0x5, 0xf, 0x29, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0xf7, "79f03953c4c96fe6b1d67b8b584cc085"}, @ssp_cap={0x10, 0x10, 0xa, 0x6, 0x1, 0xc, 0xf00, 0x101, [0xc000]}]}, 0x4, [{0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x415}}, {0x9d, &(0x7f0000000580)=@string={0x9d, 0x3, "79594b8573ba1de807f914061bb486a9eeb5549fd83515f82e0ca4117d5ecd579cf2a3eafef7377079eb0ecbf1b89b7a7dd3f19e9d890fe3648f133d8272af8bcd089bd8594252b1872d5a6286907b9542e69738c76ff4da43850d9423d6322609bc995eb8b7b088fd0910d90259ac61a382107a555f6cbedf657fae87a95e5a3336f40b91e28bfeca08fe7e43e2139e2a1b34eefdf6f454730039"}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0xc1a}}, {0x3e, &(0x7f0000000680)=@string={0x3e, 0x3, "a162a8057c983cc4c9206ba7e83958361307aac221a037db83269f2d9458f0e1fc84a4f2230f3e9d90a6275173d68b06f6dc97ca15d80e9efad8aae5"}}]})
sendto$packet(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}, 0x1, 0x0, 0x0, 0x20000004}, 0x4)
r6 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r6, 0x0, 0x4)
getdents(r6, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c0000001800010000000000000000000200000000000008000000000c00090008000000", @ANYRES32=0x0, @ANYBLOB="63fe1680080004000000000008000500e0000001ffa0604497a43ddefd8e486ecc5de8255062b4c317f5603d94cbb7270b1f697b72117d10e0e87de262642be68fb0112dc1060000000000000075479c30873c801bb4fd8f3a44bdf14d96ee8ded3ecd009f88f3889d87e408dd8641aed478b9390860626dbdb032ad7ed7807d39b4d67b99284965195415c1e4d1fdd0f67ee9210dad496ec3e381e5602755eacc174bf24d4cff97c22ca5a253f0524f8aa3c2fb90c071814af5f01984b9c5e08d7f7acee27edfeb"], 0x3c}}, 0x0)

9.897635744s ago: executing program 4 (id=2748):
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@dioread_lock}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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")
r2 = creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x366e14749b5fdc4f)
statx(r2, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, 0x0, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setfsuid(r3)
rename(&(0x7f0000000200)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r4 = eventfd2(0x0, 0x0)
r5 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendmsg$sock(r5, &(0x7f0000000cc0)={&(0x7f0000000240)=@un=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000002c0)="d8cfca2020f1bd019e5843e9b6a33e6a68fb415b2a632998fcb675b0", 0x1c}], 0x1, &(0x7f0000000c80)=[@timestamping={{0x14, 0x1, 0x25, 0x1000}}], 0x18}, 0xc091)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000140)={0x0, r4})
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x1})

8.123711189s ago: executing program 4 (id=2753):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x42, 0x80)
msgget(0x2, 0x217)
semop(0x0, &(0x7f0000000400), 0x0)
msgrcv(0x0, 0x0, 0x0, 0x2, 0x0)
msgctl$IPC_INFO(0x0, 0x3, 0x0)
r0 = shmget$private(0x0, 0x2000, 0x100, &(0x7f0000ffd000/0x2000)=nil)
shmctl$IPC_RMID(r0, 0x0)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
r1 = msgget(0x1, 0x501)
msgsnd(r1, &(0x7f0000000680)=ANY=[], 0xe8, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)
semget(0x1, 0x0, 0x0)
msgctl$IPC_RMID(r1, 0x0)

7.848647723s ago: executing program 3 (id=2755):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x5}, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000df00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

7.848147863s ago: executing program 4 (id=2756):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x22701, 0x0)
write$binfmt_aout(r2, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000ffff00"})
r3 = syz_open_pts(r2, 0x0)
r4 = dup3(r3, r2, 0x0)
read$FUSE(r4, &(0x7f00000041c0)={0x2020}, 0x2020)
read$FUSE(r4, &(0x7f0000006200)={0x2020}, 0x2020)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000400)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x89}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@data_err_abort}, {@data_err_abort}]}, 0x1, 0x5fe, &(0x7f0000000c40)="$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")
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r5 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCCONS(r5, 0x541d)

7.490343484s ago: executing program 1 (id=2759):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000100)={0x30, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x25}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000011}, 0x20008000)

6.598568272s ago: executing program 3 (id=2760):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0xf}}, {@remote}, {@multicast2}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

6.5166645s ago: executing program 4 (id=2761):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/35, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000340)={0x1, 0x0, [{0x7, 0x0, 0x1}]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

6.469639924s ago: executing program 1 (id=2763):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede-generic)\x00'}, 0xfe7a)
r1 = accept$alg(r0, 0x0, 0x0)
dup(r1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x140a5c3, &(0x7f00000000c0), 0x12, 0x4b1, &(0x7f0000000a00)="$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")
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000040)={@loopback}, 0x20)
r4 = dup(r2)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800006005"])
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f00000004c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x8000, &(0x7f0000000380)={[{@gid}, {@nobarrier}, {@nodecompose}, {@force}, {@barrier}]}, 0x1, 0x6a9, &(0x7f0000000c80)="$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")
syz_emit_ethernet(0xae, &(0x7f0000000280)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x78, 0x88, 0x0, @empty, @local, {[@srh={0x0, 0x4, 0x4, 0x2, 0x1, 0x0, 0x2, [@mcast1, @dev]}, @hopopts={0x0, 0x6, '\x00', [@jumbo, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic, @calipso={0x7, 0x18, {0x0, 0x4, 0x0, 0x0, [0x0, 0x0]}}]}], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
splice(r5, 0x0, r6, 0x0, 0x408cd, 0x0)

5.437740084s ago: executing program 2 (id=2765):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_mount_image$erofs(&(0x7f0000000200), &(0x7f0000000100)='./file1\x00', 0x810801, &(0x7f0000000140)=ANY=[], 0x4, 0x208, &(0x7f0000000640)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r4, 0x0, 0xff39, 0x3)

5.305562065s ago: executing program 1 (id=2766):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$dmmidi(0x0, 0x2, 0x8901)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
write$binfmt_aout(r1, &(0x7f00000001c0)={{0x108, 0x2, 0x7, 0x32f, 0x12c, 0x7, 0x1a3, 0x7}, "68414d3d125d120619b851c2bea0ac", ['\x00', '\x00', '\x00', '\x00']}, 0x42f)
fdatasync(r1)
syz_usb_disconnect(r0)

4.602248347s ago: executing program 4 (id=2768):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000000000107d1ece31000000000001090224000100aca264a93718589b58000002090400000203000000092100000001220b004195b2e8c1142b5309a0ef16cc1d8ed7f4040e69a0be8e4287ea5a"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r0, &(0x7f0000000040), 0xf)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50}, 0x50)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x419, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000000f800b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_usb_control_io(r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newtaction={0xcc, 0x30, 0xffff, 0x0, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x2}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xcc}}, 0x0)

4.487229987s ago: executing program 0 (id=2769):
socket$kcm(0x10, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f000801}, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0xfffff000, 0xd, 0x0, &(0x7f00000000c0)="61df712bc884fed5722780b6c2", 0x0, 0x8000, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x50)
listen(0xffffffffffffffff, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x541b, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
pipe2$9p(&(0x7f0000000cc0), 0x0)
epoll_create1(0x0)
connect$netrom(0xffffffffffffffff, &(0x7f0000000300)={{0x6, @rose, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r0, 0xffffffffffffffff, 0x0)

4.471875899s ago: executing program 2 (id=2771):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x5}, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000df00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

4.471591219s ago: executing program 3 (id=2772):
sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, 0x0, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x1408a, &(0x7f00000005c0)=ANY=[@ANYRESDEC=r2], 0x6, 0x2b3, &(0x7f0000001400)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x1, 0x42, 0x40, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000140), 0x1000, r3}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000280)={0x0, &(0x7f0000001200)=""/119, &(0x7f00000002c0), &(0x7f0000000140), 0x7, r3}, 0x38)

4.277365096s ago: executing program 0 (id=2773):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x41, 0x51b, &(0x7f0000000100)="$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")
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[], 0x1, 0x37f, &(0x7f0000000440)="$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")
r1 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
fcntl$setstatus(r2, 0x4, 0x4c00)
dup3(r2, r1, 0x0)
io_setup(0x6, &(0x7f0000000240)=<r3=>0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, "9a45f284b495a86f9746c97f091739e9b0978edeca500a23eb326db6e50275d2cb224958f2df083ae6f1bb8d2483534692ddbe9a7f0179f155275d5f5edf4041", "17b137058ea26b5e78afc281dfe04591e879fb0645d9bf0867d0faddbf22c239ebe77c0732e9314d5b0eeeda5dc6b10ed8975bff00000000000000c7bef40feb", "6f089760d405f5971952f48100144fc9852c627ff339cfc7900048d3e1edce4f"})
io_submit(r3, 0x3f0a, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x8, 0x0, 0x0, r1, &(0x7f0000000000), 0x200a07, 0x20000}])

3.214463409s ago: executing program 0 (id=2774):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3d)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0x0, 0x2100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f00000002c0)={[{@huge_always}]})
chdir(&(0x7f0000000600)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f00000001c0)=@urb_type_iso={0x4, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

2.360556583s ago: executing program 2 (id=2775):
timer_create(0x3, 0x0, &(0x7f0000000540))
timer_settime(0x0, 0x0, &(0x7f0000000580)={{0x77359400}}, &(0x7f00000005c0))
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wg0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x20000400)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xc0, &(0x7f0000000640)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe3b, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={r2}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x2f00020b, 0x809, 0x2f000000, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00'})
signalfd(r0, &(0x7f0000000800)={[0x8000000000000000]}, 0x8)

2.105689935s ago: executing program 2 (id=2776):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r2)
sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r3, 0x125, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x24}}, 0x0)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

2.014479604s ago: executing program 0 (id=2777):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = userfaultfd(0x800)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0x13, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x46)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0xa, 0x0, 0xd, 0x2}, 0x10}}, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xbc)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_emit_ethernet(0x6a, &(0x7f0000000500)={@local, @random, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0cbb05", 0x30, 0x2f, 0x0, @private1, @local, {[], @time_exceed={0x3, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "0120d2", 0x0, 0x0, 0x0, @mcast2, @remote}}}}}}}, 0x0)

1.93998499s ago: executing program 3 (id=2778):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x71}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x4, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xf, 0x4, 0x4, 0xdfd3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
request_key(0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)={0x30, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x4}, @NL80211_ATTR_CQM_RSSI_THOLD={0x4, 0x1, [0x0]}]}]}, 0x30}}, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
pselect6(0x517, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x2, 0x700}, &(0x7f0000000240)={0x0, 0x989680}, &(0x7f00000002c0)={&(0x7f0000000280), 0x8})
r7 = fcntl$dupfd(r5, 0x0, r6)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000300)={r0, &(0x7f0000000240), &(0x7f0000000100)=@tcp=r7, 0x3}, 0x20)

1.867370077s ago: executing program 2 (id=2779):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x50)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
dup(0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, 0x0, 0xa4000, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
r1 = open(&(0x7f0000000040)='./file0\x00', 0x42082, 0x0)
write$FUSE_IOCTL(r1, &(0x7f0000000100)={0x20}, 0xfdef)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x2a442, 0x0)
fallocate(r2, 0x0, 0xc00, 0x40002)
creat(&(0x7f0000000180)='./file0\x00', 0x0)

1.799700303s ago: executing program 0 (id=2780):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r3, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.614446368s ago: executing program 1 (id=2781):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0xf}}, {@remote}, {@multicast2}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.614278418s ago: executing program 3 (id=2782):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r3, &(0x7f0000000500)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000440), 0x1000a)
sendfile(r3, r4, &(0x7f0000000000), 0x20920c57)

244.158258ms ago: executing program 3 (id=2783):
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x2000000, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
ioctl$SIOCSIFHWADDR(r1, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x40, r5, 0xb7a006d1969b963b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @probe_request={{{}, {}, @broadcast, @device_b}, @void, @void, @void, @void, @val={0x72, 0x6}}}]}, 0x40}}, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="02000000000a"})

95.446912ms ago: executing program 0 (id=2784):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_getnetconf={0x14, 0x52, 0x311}, 0x14}}, 0x0)
read(r3, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
keyctl$chown(0x4, 0x0, 0x0, 0x0)

284.32µs ago: executing program 4 (id=2785):
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x9, 0x4, 0x4, 0x7ff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000980)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d955970100e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229cf17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a40415e67750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418df2b80669584b754c97169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928b9976d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfb7e12d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca30844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3604], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="057e30aae10df4f97559054b9a301ecfe91b645115e1421774006df60cb393573839b0078ce169ec2fde0afea66b5bbefa9d4f3cd8c2458336ceb1f0efe647d6d7b1cdbd12c9b8e3a822cbd51494bf79a1dbe5c22338ce37ed467a1d3d616564cbb81faa2e935b2697c12efb0ed141fa2eaad4747725c4bf20f8975e402b03eb77d1aa3f10f512397b5037b1b4cd4b7c08c03dc5e52a066e5982969fa044125ae251f46c26e2536cc8b77e8edb251378be4beedfb8dca0d449123f57677ca3da5bdebf91b195f1a5d49d7c292f20f58d490de36d8ee0e8a86bd04c3165549465cbee7891fc747d7def370ce644db894b56bd53af0d0e261bcfa6bf72a684dafc5bcafe07ece74cbd1d5fa32716dd03f7acd4f32d935438c91e033beaf49e3963e13d05e7a8334a858639636799f04a9033193e7d18a2a4b20bcc96811bb5efe476db70a76b7456ac4e71f3e89c00da0c7761c188570c7902bf2fee1be273be8a9f7a2d7508ef2188d3ba1db4fa9d1533d2f2a288cdfe3b0c50908d56ba69e81386e7e979e9d7ff78685ffb8de6baea2451762736a2bbafa11d541790b0564aef9b0b80fa24832090b84341a9fdf712d3296f911020f8021eda8130befaaab01cbe91dfc5768e6ff31ec50dd88596832a9f5fd4f558d367f40e454d3c97ad16a7f30b93629ee2def77b99f8a17c157529b0782fd847a4c75a2302ca96bbdcff660c2cca753e1a8c60dbcfb319a1594565a2e15bb6124316e196e3cafaf1a29eef84a0908d1dc80af7e333c65736699f1254addf2ab582f5c87c4f6ca234d7ca9673dc29444044b95abdaea958274e39aeb163ee2d05bc2ade5c33a0466e14fbdf8aa70ca2964c06ee5bc57b894b0143a7a503cc43574a07958940b029678df44d6c82fa2e6937ea6aeb5b8f33c21628e3b0d623c23c2e5a3546194fea742d90c1d61f343a005b9e58c3e8292b256fd0ecca81cda433f3bb0ed633607f0b635cdd8b4919bfa37c1e99df087d3f8f3ba5dec7930657eb3a4d8febb5234e048881fbfc499fe5eb6a0ce34546f7010ae2291e6731d0798ca451387a123998e68f6f577ba4e556bb9a119011a191a6bbcf55beb1fb0b8252deeed5721b271b964534a04462720c4c03e8ea7f120cfa1be630e7fc680d1f6e067075c72f642babcacf6b00cd3fdb9f3200e4ff8935b17ebe222053c78c3752666088017c2150dd014b9578af6adb15527a483eff5bb623710ca7b37ed49ff7cf1525f296af6f27846524e4aaea7476a2d08dceeca84a1ab11e2767abff12d10deaf63681dcabe9b1fb9ebe207d8e3793dba9a73a02ebea4e3a072397a88c47795d5e88b2040c9fe3f96f66f8f7d593547c8fc8f4e75a1c20962ecf2dd1e7bddf896f2a6c5f37a8784e2bc5b10cef2feab3b6eee7430908eeadd372248041a09b0c29385cd7a75754d2c429e72bf5fdac34097bbbbb3790f86399c60cb5054fbeb8eb1241608b506beb135091c18110c1d10d9a80f4adb11a6fd3001957cae0b4f8f730cc4fa4a7328e23f390caab014cfeec0ebfd0e14021f47fe330a68680678d23e7ca1ff18e7e242f4c1e3cca51dec73c58b596c2a92267ee76d3657c1e2b34102b09fa4c59c2619148440bf26802c6f858b8eee6d8c697bad2c4d5a0f76c6a4cdd3b8fdc21e447920491ef40578b68a7a5dfda04fa235fac01ad4e824b627137dc48807100e52ec5ae2f3a3fd84d68b824033b4f0ee28a9e72333b4e209ae905d0781e4fe8116e03b1ca5c3b1ea84974cabaa0214ed15bfe01e974491e8a20f9d03ed1b73799b083f3a65e809c3ff3cf126288fc1627409d46f78b5fe8b8ba0b3ddc3ac79aecd6eee2e0cc59826e5798f48f80f0c7f549b3a656e9acbc5e51bdc3becef93533166c1d9ffe4335ec973d3d27ce5987d150f554c4095650528578fe4858b670b0786f23c886612191f89ec57970dbc0e33cd62b57a08fa940b339577fd12d07dec2ac50e9e0b27f0716b3233803153389a95df956637af8d9778e27bce49ab0a832978712a074d3f7516ad512ed0d9b43049b5990c841a7b7146a24c62fb70645b8d85b6c8863d5c6aab03638ffa4e30c8de24383cf320eee735a4fd37262d473076f495da8b2f0f028b8f178c238010738d6afb1dc2e48089e80f6a7658ad3496f1a1f7f78abdcf934c733d22abb0671a0d41b9b33a5faf99d7b82166e27df0f97a7953dcc1fb364478200253757e8311ba61cb4c78a380cdd820553c7296816210f64b34619966f1540a407c8d6e8e30788909de19ede4116d09a14ce26ad59957add80b90602855c0134ba7fe8afd4493f7cd9ced61fda7d0ae02505c046acf68d68ecd9b1507a4d4eba4c2c834777b2c3c5a8b3c06677fe468072dcab48c1ac9deec30265c7f6c5864df89e25bba52715c82e9921db601b3935f5047b8cc07351b9965b1a1f6ef36c1fba89d9d96e332eacc1e8a78e09d7d6ba30845866449ed5264f763735d4e7cc133dba4b296b2dd9331efea01e5b3d05f38055e41c49993d679ef133b9b1af435fd0ac5fad33f571c76d02c40d4e301110b4442aa134364f0456da0cf362b2c27ebd667c0969ae09dad18becba9d6918fb1e741f685735cc7078f0e6328181a83da67516fac31522f9d9fc64a4b769e57e76bfff6f9867fa2fee1e7dddd11128322210e44eeef6db7269dfa1bfbd9099dd6f8219d585c22c20483251447772719a6115ccb690609de352989610a138110c884562b65de3cf63c3ebe9adfeb53c6e4ecc637c98b60161f71952b84c6fc4cea6af0ed533144bde4f8fbab2d3ffe0b2a5d0c55ec9979ea85a25045ad3a84becf0e891b89c1a83178d7368aea4bdfa0ebd46b8e110a2972c8ac96e10ac630e89f8d76bf35b03b5ecd393d1986fc61318e08ef02721e5f2cd2fe098ebcd1bd30a8f87b2a5650b51dd50d0d78ab7fe66490f5827372f1779d3d389e9fa66bd0296f0203af010d8f76783837cdde2555a90be577626a12de47d4da638efd0017750a230485f6ade34a27284d85dd87f9db8a832c571106d8296629418777b4d933fa049f0f4e5958c193e889305074091be14c66a4bf02cdfe1e8d26a5d21fa78c5628a7ee3d7a0c550296b2f0625e2dd18d45f2d45bee6746d4462c92bc3cf50503c7479bd121393821afe1cd7144ea37f4e8e5ee21f739024ad25af9430dee006b76617725556ff8a820b767fa821629819732f086a5fdf2ccb4edae0aceb3d6dea698e798ead905a2eef9065d633b007271e93101a71cbe385f56e32b3a8fb081c5c1ab09b729f89294a0007df3a3b8e93686020d993b812c6f85fe1618db897cd67be6cd5053dc8490bbebee133d140503c4aa51eea0c156523a1d81ae849dbe5a273bfc0de94836f8160ea9f146147fc02dd7b55dca6a2a43692268ee98f51fcd2d3faa76071d9716e877b2a3dcb51a51d5359a2ee705da52b43306f1f3caf33342fc281bc9c58d1ce05ecdeca371e3a788542f8fa999e4d8e10e66f0b6053d7d4cfc6acb815628bc2409b3dec01726121c267b3ee85fd61bbbdda68ae2c13026863e4a54b93d956fe692707a179411c841ca7d2f33a5223181b18b7ba2eebdd7c2a8dec3ac2a317b5fbd996e8598c394ee627308f0e887480a8dcd59b0256b636f4c62566501a733fa74232945ba1d9e2bae347391bf9ae2da4d3af2b262b772421fd3a5cab46862ea6049f5c9c76dd8549ce0e6c31c792b81b6b21f0bcca18bb2fa6a9d4d6e0a837bb119e2e002a69d6ca95a4b2acc463076c2e05731ef0cfaea84387a6baf6737cc14a25f5329ea924090311213344625a69ee382dd4bc72e00e63329956f3e021092585c9affa06a95bd0ef653ae9ff0abed5ee561ada4f83d8ef202d9c0b2225ebe8660cc408859d45e0332f4f78f6a339bce9d12ca2bc5116a8fd4007c485f5c1c41af96c41d96db35411842d7babc05c8b228066dccb9b67f348974363be521e41fa94d2034a0bc1e87360a80606e1e1bfa8e6399601b30bf93ac41129869158bc2b791b50e51519133ab58afd4023d4d721129b1307f054103a47c49e0524ac4df511c3409fa62d8b5c1a897794600f53efdcc987e06bffd77c9fc75fb7221ef29ed2f7e3e8abcb4a1875b85bd5176a6fba9a361d8684876508443bd50e630f4c684002b15930cf81d740b880eed25d22d8de8c00066790df084fea7c5021184a210a6d24f9bc862c4e3eafbb1782fa240ecfa5959d7a681bae84e8a96a5ff45dea4f9e16dd2cff2dccc6cf4042b44b7ad1f55dc1db5998ed40a409c0e67e1e64fab423d2c00fabb8976d9dacf0c82530e356a99f75082f3411adddfe4ab1ad3b55599fa15450dd5feee23591f1ce398e4c5ae8aad71ad26ea189c333c8467d1eaba9589bb8c41bbfe8c0c173e5446bc06b578c1db849fabe5fcd8fe0fca94bdc799b53b897249826037499e8b6213d640724fda1bcc9341ac61fbea02c8f39a53c496902d5c7922f678a273cdf5ffff38ea028ae19dc72f0b0688f2b9b7d5a9c04153c10ff4168cf9f243dea03b336be778f6c79d67a2d0ade82863eaf95d6fc7f745569864f369f4b39177c356c8c393bded485df28622f01251e58f3d39498520ff90e6c670f0dce5b494cb1d78dfad108406dc5857086d386bd42bd03fe716f049407e5e55caa0e73e96c1a4f6d5791ce7195b2ce72de52ed617ecefaeeabfa9350af49d1d91f9a4b97dc0808869b916f34ee242c40fe8c8aee57b6ddb69f9a10636e481dfa059ef001bad7020266f0d74b14edce6c18ffef854768a60885bad798658a6b9d0b438c483ba159346d5ce0771f53ff18e0bd47d8583bd56237f8da2747ac7eb2a87b6e26c4820d4fe18b76e06bb6e0c0cdf478b4aecd381c2a6ca9f10ec433f0aca63a66d04f70557baf9f2844005351a21664c2430fb0002cd03bcf0b2004068a2567f91a9fbee8c6d948fb35d48527b23e1398ce9f535e2b0b33c2bc31ab737ba4b980f46f5d424e33892c8093f3cd18510a3157afc023f63ad3ba999e950747c78c06ab141a26d74ffc049a6f76c465f9f9f03a8d339a8e61fef26a5239fbc11c01a87800c81efd7b9f28ee2ab2ed88a383f5013bfd6671ea3086121b235a0cc45ccb300c02588895f8d13ec7e00a3aaaa8b0e739f666fd1b13a90b23998704859c9c76108ed7ecdc63770e6ebaa0aeb9208b92ec4e948ac7fc81cc6f305f06c2f2d8c9267463af92e185ff627eed54313fa2ee0bff2cfa8be411982fd19fa88db5ec99f238f88782f8c7a957bef14f79351b63799a4cce160357c068987a5516b04c79644c140850cddc8bd5541fcca9e30826aad864240f434bd1fc67b58e3d664f782e9e46edcb34e2db98a39c23e334e51c71c9fa466470992cc1fbc36c3c8ff4340be67f9b85a74c9114cb9fe5ca4dcbb641ea17a54ba4658aeaa515109e117625a6196dd66d3584d293b468fce63b5a9c4b9461700c74ae955539bfbbe3eccfa7d9c9f737792a9d4b978baa2e92819e88340b73c88c2900b723248b18ae9414cb37a64ef8cb8ca85cda9677d9f1e71a6b70fe3ad17f2d13c1df48d93bfa50fd939a72ea26f9fbeaa6f8af2eec91b04a8fa7dc14fec0f54fcd1c5c848b4432f979f10e661cd2d7f8ff669ce99f9813fc5440fbbeb35f1a5e5115f5ca35dcc270bdbcae07a9ae8e22aabf8178379dee08874ec7840de27815890a88fc9a3bcfa88a33f9baef9af0ae01b2bd34a907f1151cb14bc8b396bc43a60f884f425e4a04348cc645aae68db49980139ddad0fed303e40b124fd654b36c961a56c44cc3686a7529b1f1ee47da3a0f1158542337df15780444790a2ff1b57e062f0db66730c9f98de395f939f44188225211c514447f67fcbf320a34c43ce09ed272bb992db3a35ae2c3c491c36f2de88984129fcea1ffd235aff7bef7fa95d65894db9a5f1b348efcb571a81b3d73ccd07cbef052389001e4d456800e05ca53bcf3485ce05791ff65a9f7913416ae26972f34f51a3270580b81307ce31c98eda06f3b35890ce317e79a16d728cd0bb6a3835667555c0c5138cfa5305a91db1f873b2a75b82ffcb27616ee67777708f7dc2ed9ddbeb38a60f446d3ac88ded25265c25ef38b0755a9d34bab5e669b6501d8c9787aae7eced9945cad3d4d1c32fa68b48a1d773750f814631db3e088c1b5e7ffa854ea1343d94ec1343918d7a1c5a095bb72b00eb3bff210aeec0b8a581a2a13429b83a193f4d447059265b63c4b8f8ea1b9494f65e79844d956c5d80780849dc086506e9eba002e682a1bae1543f8289588c574bb6ca9a2e57b908aaffed23ecf3536abaf96fe08291f3d70773288b4698e972b0187385dfff4cba59175814e75e7e5146205c7f2d2f749583b393f46c448c152d8be50d60ed8d8bdb30fc7925656a0f90b1de967c729980815e5f19ed453fbefcff67832cb90d753410a0b18eb7504600b11b0360c3d3594d48d832160d357afc1f17dc71dccabef7bbcf1fdd55b48cb02135c32650ab07b902f36b48be9376b2dd68343eacfe80d9dab3205a393a4c6ffd405f6db323dea11be4f22ce50df1e0cfec9e9b1e23acb94d66ea787d08f615a7c7288cdf1921a13a85d885e47cf1067d89ebad5b92ce5c9da255f8d74bd2d5b78366f998cc35bf35e45d06128f1c5984fabee7542642bbf6d981b60759d3e7900e5b3d1d7310f90df0c88a600ff2f39932bf7411e61c692c9444dc9ae0dff28c0b94292c430ac4464e83ce8a29b886f45c98b8396667740c5be51e592eac0250d6e479505d36e930ca3a32cb671d58707d25b10e2660cd5e661b08e268c8bf1b3cbceb2d995a2a6fdfe5475cccc965f71baa7c84054e3bb6cbcb7167b06c708cd72ad4301e943dd1b2b2c325f682be3eaae730a8ed8bc3134b28d1ce04543bc66a529744561c42d25e65c7b5cc2a17875ebf35e53aa46e1edec29ff8d046a7e01459d9639c10d1df998cd9a12d7e50b2dc71ee7338cf71beb72d5020dc69eeafc354bf822d65ee0328eb07d04ac0d266fdb53227a158411da5ded254b3c359ee710e0278e1a06f06002538e108450fd6b11949fdc618a29baf34f232aa192230ddb318aa6d59d122257e50713fe73e6c0059399589c382dc901a8c3381139436f7331b69f457bbb38ed54daaa07a52cceb053c32690836c664b73d86261216b8610fc7b4d53dd3e5d9bcb3e25528e132911cac37e7f2618274c733b5ae02f9c27638d9e11988f1dfbb281ffd8cddf8558a481861cbe9d53a4ad8282d3587449cd51759ca397eda122d286e117d01539359870b94c98a3ce383ed1d280bcceb228acf73193e87fd3650e4dfd563cc55bfbc8626a41293cc90ef76e28e2dedaf968602d2997ae1c2752a0febe3a78f3756d40201ae13074091238324422caabe22c66b7866065264261fc2c3e0569493468d1c1c36259aedd5f078a231e72decd70f4de8532f6753287435296f33a096bc1c8b0ebb68c9f783881e45ac54159ec1c2f9e1f5cb48f96729a62d1b4fdaa89ef5de8741bca04e953534dc977e881a61281812af435206378eff173d7929ab4967e511bdc14e6a783ab647a4c257a4fcd6ba38ef32bc48a00643416d7e34f7465b3e6240589d854db4d9714e998f2edf3a03986598a52aaf647d938f4a8e07c1c29615803af6cd403d261ad6da3c1c804034b4a4eef3ea1cc8db39d9e171b3f6dd074388577a4eb901c25c8031e4592cea80b6354850657f53b2acd910ec2c5a7db6abb0153e051dadfbcdf047e35591b96b5657ca55d99ef6fb48e07c34321cd20c40b30a646132f8afcb9426fe84a790567fb847076a8762ca29cfb037e0c948edc12122a1160a55d465f5c912406a10dc0d3c1156cd207e9ffe906d267c9c870521934e1c56af460c0ad0dea9c929acf85768e22bb65eca6e25e4ec8e6edb7a6215e8c7e5fdb56c7131b156ab6a78fc808f8f17a2708ff68b37778c00b3b546004fb2b2c588d8ca8276d281026bfe896698569814410422f27421b8fc5c09d47635f17ddf6b9f56a203c991514678c18a4afabe1eeca6fce1187fffcb6ebdacfc6cac9750766ed40c80e7eceb342a3fa6f86d014949f9d111bfd96e2a39d364f2e2722f2d9ab0577befe26055890161d780e52eff4022461c1d3b019b86af28c4f02fd1f7496d8c141344ad5756bcdc45158f3af7aac227c8853f607cae412db6fa924c039859fe455857bd5fde66cc1b773c12f516401a31c80d750079247c128a103361e7f0a392d21b4b1b594307ff6b37e5a242666209ec517561e04645b92e7cf3cff1a6c76c900d12d9556e2962c535401b1e61fa85e06551ed678703fb3bf8590f2608ae3c278b8d1ac286af38061afbbc3cb27ee7adc6ad299151cd00a84506e6a97648ff99f2a9d35d8421e71589437406fa8e6def8ce34c9abe5de3481c492887176d4485dac794b84567d5ebaf68d0007cb2256a0f1ce4318f6891f750fa9696fed3525059688cf973e70d688b1759cd0f3dfb0b2a7078174b978767cbdbfc3f7d5850e2f7772e2bd6e3ed69ef13cc141238b5ee04b6615e33c42fcd6cf979a0ac848458b713b9a988c1e3fc32f2a182fc0cab2e6933e9aa5c2d77db8c6a1802b43bd8220ff0ca92229fc26a44761d00eeebec834e5f7d382b4f58a2759c56e53b163dae034ffa1970acc57165746e575470e13c4044f392ae4bea93e7d666256436507bb987a247785301274d4f262f94989cdc94b209b7499bd0cb4437525b72be79c87c6076533e4a14799a60bd3563d46ee4767108bed7e637cfed6f3139637bb01f36385dc5873eed726fbec9a87da294cc11db8b49fe45b798ae74e1a8cb0f2907eb0178d2baf5f0f88f654baab9f147741945c496ddea1cfed65a82e913a131c4ac7bb6f0d8d5d28225dab8a33c6e60c0d2b2d5dbd8c35089f13f9a2ae81ec9addaefea9b8ddabc8cdeb6437381ce346db6e14d9d1e8bb4662b508d61da77fc8d9ebebceb1c23be5d0a7bba4a48c0591333ab7779bae78ff23c4bbf8a8cf30f3120a5b63a047064d7ed7d37191cf39b6d1e8ffe3b47379767bd691cb855a9c938e9a0235a5ec9c316a6dceca63fa5fe6df0b9f0d6b38add216aaf2726d3377ab827b00b4cbf490708a0f679b8cd7caadb3dee40cc98f778917d6a6263fcc0747bf75fd676d84abb7d10087da323f95c2571139fd4c9826ad5db6ee4c246b9da20592cae11f9264bd2945aa1a427b2acefb514a2daafbbae35ff761eb1e3b98b4a1dfca348b8c4ff96325a618d677180ceb7e916654ecc2deecb4e61d01080f44b98776b1b43aebeffe2c14006dd1d78c8babf1179f42fd20d87654d3246d41e9dc633eac1741be44f8d751d8c9fd57316fe06d60872939b7a2906bb27a299a3408a51d74e5d98417f05f85fc1b332e103e79203e9fe344dc1d1572de39d914c5270c839870d2b33da5a6efc08c4f0c8227cc35a7f77c6a55f80ceef90e217c80e5ecb4c236685f5219787b01612cfbac90794e8269c07fb7ca4f7dba4defb2aae2b37f7b1696e78de15dbb1b6d4ee0cc4c0fae274b2c2de9343862de1d9847515ad235b1837daa9b814f19e895ae3966ed262e3e7add9f19009e6b61462917b29502b67e124c43538a6bcab7296529e01bb26ab8b3ef094ed057383c4f92790b6f705ae9d943c4e8dad84f6ef82b54d062713c16960fb475d74d46a1b16062563da3391cc6ff5185162c31ff7339e4837e38adab8ab911abaaa006e313dd19a1f92b4f7bede4525b154e1b9f796136a85f3602da011ae2232be902347e08ce0bbf3d23d91c4aac11c8824caafa1d1ff0343ce655802c1915f3ae7c0c670b18e56e139be66a33613afcb3b1928613b3afba9d635070af678216d57023d1911f0eb7ebddefc96f0efd8e9dc10e8a87a68393e19733ef900c6264722940750ae16f664e445414e85e98570303c6d87d7f265cfae0a1e9314fc14674c2871c0d59bbe2eddaf9330a4e2a28673af73910d6cb90790f800e89d55a2930910a8430ade9551819d83d5ea6da4e58326b7ce555d01da86ea78200f0219ec92473da95cd5a632c525ca9fbcddebb8168881cdb2f5da787d0e31881e2b17d78184f3a0bed8662486d3937dab275d050b9dd5a2ce904208a91a467afc33e10fb6c1ca788a5ef30d6e8b615ec0ae1503fea7006569559b7b155c31b196b85881c5671173c06fc5373e9fd973e7111ed45874609bf3c88c6db732210a3ea04cb68662bbc2048bb55d811482af5c658e29bd18c57ffa25e88d7297cd20d4c2b13007cfae89f4dcd90177a0806a2ceb2095333b58f828c093b9bf63cd07e3d56a446fd12e755fd651211bc160948836939c17623b317b9e935307044bab2c11879a62288e7ecbbb97f10f52516f517b7b8e44cff5964fdfaf8044065056b48db13b1365004c336afa3535af1242c9b7271b8b1ba2213fcbb80926bcd394815cd7c27e3aeb2348dc45f5e06e32f5bd56d1c472f41b564ec0939cd012028412883cc098d086fd43858747b746be72b979d175f6a6447fc5908616dec7fc6c962e12e96e09bd068acd2fcf0ce1cc26d9f82b2b91bc9aafcbf8435011f73b6a8ea1bb2f3289b23236136b31656600762feff53e607df8cf3c9a7f257b212630c19f142e4cf5094250b629cabb145c77f1f14ad60ab7617078f810a766cfa341fb7c16086609bc0a768fb1cd782606f32b83a0a55d883269a05b80275612dc571cb993ea9e447b4d32570d412203ab4c8b050b63bb5ac0f8d6f4e9a1644e4b622587b2ae125c2093bd363493d58544d6303a0de17780fcd83e993aa83f4432274eee1e6333fcdc77bcfdea95b8b9ed787723e35b71f1dbe89ff1e3e6fde146c05b6fe9eae52b472624e412253a63e7fcf1b77dbff7509eec5a55501e222f66bd84d36663cd244fa1556bd34b4c9957a93a71e63961ffc7700c5545acdd3e79da41e1cfaca0956d4978222cda23a574d691dbb6c6bd083c70c2782c045bbbe0fcaa10efbc002af6832e3fa7dda0ec8ff6ded69302d55d5a62a7ec213f16ecc5e3304a83103d1c2b21e04e3f5f3730339a630a407e8cc6a5afd2f2ed78ff992035a3783a2708195a46e565a9113be8c228ccaae3510363b475732ad48fe8ff34801f4c35132359d4c5c5bff65141f4a8684d462cf5d97b44496440fff3f7a28d28bbaa8e6db2a6064cbe9fca4679afe8ca6dd27a25c56f3e58165040f19a0455199a0ece4583f060979427f2f3495f40a83bc6ee3eaadab18705d464662b8aba9c7aa2f29114f7acc247548a85bd44723064abeee18f7f558f6d0d74fa08103dd906124454745d23005c425b260b0034372123b642a0cbebbc1a0bcf0cfc3639876eceac5f9734057ff659cfd35b1a3eaa768b86d66244aabc23a45676a59d492614f1c0011c9253e53fc7bb3e20d303afdb5b6614dcc7bbf72a339e414672aac23c2e2983083f08dbc34e3452def00f402598b6aaa4f0d896d1648b1442621993b7d0c930560cb6152b9ce59f94356726816a224fca84da5dbde6675d20f546a3e4635e82ff9575cac9160e6819f", 0x2000, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000380), 0xce4, r0}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x401, r0, 0x0, 0x100000000000000}, 0x38)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x5, 0x7, @loopback}]}]}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}, @IFLA_TARGET_NETNSID={0x8}]}, 0x58}}, 0x0)
r5 = dup(r3)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

0s ago: executing program 2 (id=2786):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x22, 0x4, 0x0, 0x0, 0x88, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x0, 0x8, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private=0xa010102}, {@multicast1}, {@dev={0xac, 0x14, 0x14, 0xfe}, 0x658}, {@rand_addr=0x64010100}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x4, 0x0, 0x3, 0x8}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)

kernel console output (not intermixed with test programs):

p1: p208 start 16908804 is beyond EOD, truncated
[  988.599130][T15476] loop1: p209 size 50331648 extends beyond EOD, truncated
[  988.607771][T15476] loop1: p210 start 16908804 is beyond EOD, truncated
[  988.614804][T15476] loop1: p211 size 50331648 extends beyond EOD, truncated
[  988.623556][T15476] loop1: p212 start 16908804 is beyond EOD, truncated
[  988.631147][T15476] loop1: p213 size 50331648 extends beyond EOD, truncated
[  988.642879][T15476] loop1: p214 start 16908804 is beyond EOD, truncated
[  988.649749][T15476] loop1: p215 size 50331648 extends beyond EOD, truncated
[  988.658543][T15476] loop1: p216 start 16908804 is beyond EOD, truncated
[  988.665335][T15476] loop1: p217 size 50331648 extends beyond EOD, truncated
[  988.674038][T15476] loop1: p218 start 16908804 is beyond EOD, truncated
[  988.681007][T15476] loop1: p219 size 50331648 extends beyond EOD, truncated
[  988.689826][T15476] loop1: p220 start 16908804 is beyond EOD, truncated
[  988.696869][T15476] loop1: p221 size 50331648 extends beyond EOD, truncated
[  988.705324][T15476] loop1: p222 start 16908804 is beyond EOD, truncated
[  988.712206][T15476] loop1: p223 size 50331648 extends beyond EOD, truncated
[  988.721207][T15476] loop1: p224 start 16908804 is beyond EOD, truncated
[  988.728366][T15476] loop1: p225 size 50331648 extends beyond EOD, truncated
[  988.737406][T15476] loop1: p226 start 16908804 is beyond EOD, truncated
[  988.744207][T15476] loop1: p227 size 50331648 extends beyond EOD, truncated
[  988.755103][T15476] loop1: p228 start 16908804 is beyond EOD, truncated
[  988.762075][T15476] loop1: p229 size 50331648 extends beyond EOD, truncated
[  988.770787][T15476] loop1: p230 start 16908804 is beyond EOD, truncated
[  988.777715][T15476] loop1: p231 size 50331648 extends beyond EOD, truncated
[  988.786526][T15476] loop1: p232 start 16908804 is beyond EOD, truncated
[  988.793462][T15476] loop1: p233 size 50331648 extends beyond EOD, truncated
[  988.802203][T15476] loop1: p234 start 16908804 is beyond EOD, truncated
[  988.809325][T15476] loop1: p235 size 50331648 extends beyond EOD, truncated
[  988.818186][T15476] loop1: p236 start 16908804 is beyond EOD, truncated
[  988.824975][T15476] loop1: p237 size 50331648 extends beyond EOD, truncated
[  988.834243][T15476] loop1: p238 start 16908804 is beyond EOD, truncated
[  988.841433][T15476] loop1: p239 size 50331648 extends beyond EOD, truncated
[  988.850289][T15476] loop1: p240 start 16908804 is beyond EOD, truncated
[  988.859026][T15476] loop1: p241 size 50331648 extends beyond EOD, truncated
[  988.867600][T15476] loop1: p242 start 16908804 is beyond EOD, truncated
[  988.874392][T15476] loop1: p243 size 50331648 extends beyond EOD, truncated
[  988.883136][T15476] loop1: p244 start 16908804 is beyond EOD, truncated
[  988.890274][T15476] loop1: p245 size 50331648 extends beyond EOD, truncated
[  988.899469][T15476] loop1: p246 start 16908804 is beyond EOD, truncated
[  988.906356][T15476] loop1: p247 size 50331648 extends beyond EOD, truncated
[  988.914957][T15476] loop1: p248 start 16908804 is beyond EOD, truncated
[  988.921883][T15476] loop1: p249 size 50331648 extends beyond EOD, truncated
[  988.930809][T15476] loop1: p250 start 16908804 is beyond EOD, truncated
[  988.938397][T15476] loop1: p251 size 50331648 extends beyond EOD, truncated
[  988.947234][T15476] loop1: p252 start 16908804 is beyond EOD, truncated
[  988.954028][T15476] loop1: p253 size 50331648 extends beyond EOD, truncated
[  988.963588][T15476] loop1: p254 start 16908804 is beyond EOD, truncated
[  988.972497][T15476] loop1: p255 size 50331648 extends beyond EOD, truncated
[  989.465645][ T7498] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  989.527312][T15549] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2234'.
[  989.996316][ T7498] usb 4-1: New USB device found, idVendor=06cd, idProduct=010c, bcdDevice= a.f0
[  990.045081][ T7498] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  990.155197][ T7498] usb 4-1: Product: syz
[  990.176218][ T7498] usb 4-1: Manufacturer: syz
[  990.196239][ T7498] usb 4-1: SerialNumber: syz
[  990.239244][ T7498] usb 4-1: config 0 descriptor??
[  990.281870][ T7498] keyspan 4-1:0.0: Keyspan 1 port adapter converter detected
[  990.291448][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 84
[  990.314235][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81
[  990.322266][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 82
[  990.350965][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1
[  990.395833][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2
[  990.414632][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 83
[  990.424040][ T7498] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 3
[  990.440781][ T7498] usb 4-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  990.484141][T13769] udevd[13769]: inotify_add_watch(7, /dev/loop1p41, 10) failed: No such file or directory
[  990.497471][T15541] udevd[15541]: inotify_add_watch(7, /dev/loop1p43, 10) failed: No such file or directory
[  990.510802][T12530] udevd[12530]: inotify_add_watch(7, /dev/loop1p39, 10) failed: No such file or directory
[  990.533523][T15539] udevd[15539]: inotify_add_watch(7, /dev/loop1p53, 10) failed: No such file or directory
[  990.548792][T13125] udevd[13125]: inotify_add_watch(7, /dev/loop1p57, 10) failed: No such file or directory
[  990.589074][T15543] udevd[15543]: inotify_add_watch(7, /dev/loop1p61, 10) failed: No such file or directory
[  990.602384][T15540] udevd[15540]: inotify_add_watch(7, /dev/loop1p59, 10) failed: No such file or directory
[  990.629524][T12603] udevd[12603]: inotify_add_watch(7, /dev/loop1p49, 10) failed: No such file or directory
[  990.638565][T12553] udevd[12553]: inotify_add_watch(7, /dev/loop1p47, 10) failed: No such file or directory
[  990.642105][T15542] udevd[15542]: inotify_add_watch(7, /dev/loop1p45, 10) failed: No such file or directory
[  991.565130][T15558] loop1: detected capacity change from 0 to 512
[  991.727683][T15558] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.2237: inode #1: comm syz.1.2237: iget: illegal inode #
[  991.806971][T15558] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2237: error while reading EA inode 1 err=-117
[  991.851043][T15558] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.2237: inode #1: comm syz.1.2237: iget: illegal inode #
[  991.889074][T15558] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2237: error while reading EA inode 1 err=-117
[  991.927385][T15558] EXT4-fs (loop1): 1 orphan inode deleted
[  991.933145][T15558] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  992.091832][T15558] EXT4-fs error (device loop1): ext4_lookup:1860: inode #2: comm syz.1.2237: deleted inode referenced: 15
[  992.104769][ T3718] bond0 (unregistering): Released all slaves
[  992.234868][T15545] device ip6gretap0 entered promiscuous mode
[  992.264334][T15545] device ip6gretap0 left promiscuous mode
[  992.489424][T12725] EXT4-fs (loop1): unmounting filesystem.
[  992.568652][ T6777] usb 4-1: USB disconnect, device number 27
[  992.626061][ T6777] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  992.655997][ T6777] keyspan 4-1:0.0: device disconnected
[  992.902002][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  992.908409][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  993.075728][T15581] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2240'.
[  993.125654][  T152] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  993.243616][T15367] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  993.334338][T15367] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  993.375824][  T152] usb 2-1: Using ep0 maxpacket: 16
[  993.392254][T15367] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  993.438293][T15367] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  993.523020][  T152] usb 2-1: New USB device found, idVendor=0582, idProduct=007d, bcdDevice=a3.85
[  993.539372][  T152] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  993.580744][  T152] usb 2-1: config 0 descriptor??
[  993.653441][  T152] usb 2-1: interface 1 not found
[  993.746481][T15367] 8021q: adding VLAN 0 to HW filter on device bond0
[  993.810492][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  993.819020][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  993.870454][T15367] 8021q: adding VLAN 0 to HW filter on device team0
[  993.895698][  T152] usb 2-1: USB disconnect, device number 18
[  993.931048][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  993.960313][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  993.967845][T15595] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  993.979335][ T3762] bridge0: port 1(bridge_slave_0) entered blocking state
[  993.986494][ T3762] bridge0: port 1(bridge_slave_0) entered forwarding state
[  994.061578][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  994.090098][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  994.113487][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  994.161037][ T3762] bridge0: port 2(bridge_slave_1) entered blocking state
[  994.168225][ T3762] bridge0: port 2(bridge_slave_1) entered forwarding state
[  994.213789][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  994.243312][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  994.269826][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  994.301010][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  994.343728][T15367] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  994.382130][T15367] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  994.429443][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  994.440271][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  994.490035][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  994.549451][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  994.589850][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  994.613608][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  994.634537][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  994.674161][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  995.382436][T15625] loop4: detected capacity change from 0 to 128
[  996.406069][T15625] vxfs: WRONG superblock magic 7b3185b5 at 1
[  996.633376][T15625] vxfs: unsupported VxFS version (-1232326277)
[  996.901868][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  996.945807][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  996.990340][T15367] 8021q: adding VLAN 0 to HW filter on device batadv0
[  997.051927][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  997.072768][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  997.132408][T15367] device veth0_vlan entered promiscuous mode
[  997.210300][T15367] device veth1_vlan entered promiscuous mode
[  997.256890][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  997.293794][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  997.366383][T15649] xt_CT: You must specify a L4 protocol and not use inversions on it
[  997.564169][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  997.948593][T15367] device veth0_macvtap entered promiscuous mode
[  997.972739][T15367] device veth1_macvtap entered promiscuous mode
[  997.993695][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  998.004387][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  998.060046][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  998.080838][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  998.106155][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  998.272215][T15656] rdma_op ffff888027bc11f0 conn xmit_rdma 0000000000000000
[  998.435394][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  998.445824][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  998.457395][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  998.736009][T15367] batman_adv: batadv0: Interface activated: batadv_slave_0
[  999.361126][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  999.374306][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  999.390415][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  999.402390][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  999.411387][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  999.420484][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  999.428780][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  999.437871][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  999.449936][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  999.487230][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  999.548737][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  999.561058][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  999.574980][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  999.591305][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  999.604347][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  999.641574][T15367] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  999.702698][T15367] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  999.760453][T15367] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1000.100655][ T3637] Bluetooth: hci0: command 0x0406 tx timeout
[ 1000.120621][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1000.131358][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1000.144892][T15367] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1000.174073][T15367] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1000.190434][T15367] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1000.200710][T15367] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1000.279598][T15673] loop1: detected capacity change from 0 to 1024
[ 1000.301537][T15673] hfsplus: extend alloc file! (8192,65536,366)
[ 1000.516785][T15677] loop3: detected capacity change from 0 to 512
[ 1001.316006][T15375] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1001.326511][T15375] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1001.337511][T15677] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1001.343071][T15375] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1001.368036][T15677] ext4 filesystem being mounted at /14/bus supports timestamps until 2038 (0x7fffffff)
[ 1001.385766][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1001.404204][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1001.463351][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1001.560122][T15677] EXT4-fs error (device loop3): ext4_validate_block_bitmap:420: comm syz.3.2260: bg 0: bad block bitmap checksum
[ 1001.648311][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_set:427: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1001.712141][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1001.753571][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 0
[ 1002.539045][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1002.609228][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 2048
[ 1002.629502][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1002.677556][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 4096
[ 1002.702205][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1002.735095][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 6144
[ 1002.766914][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1002.788932][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 8192
[ 1002.815236][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1002.831827][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 10240
[ 1002.855706][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1002.873380][T15701] sd 0:0:1:0: device reset
[ 1002.925394][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 12288
[ 1002.969253][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1003.015603][T15058] EXT4-fs error (device loop3): ext4_readdir:220: inode #11: comm syz-executor: path /14/bus/lost+found: directory fails checksum at offset 14336
[ 1003.085979][T15058] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 1003.188097][T15058] EXT4-fs error (device loop3): ext4_empty_dir:3137: inode #11: comm syz-executor: Directory block failed checksum
[ 1004.826231][T15719] rdma_op ffff88805b3cd1f0 conn xmit_rdma 0000000000000000
[ 1006.164985][T15730] loop2: detected capacity change from 0 to 8192
[ 1006.183067][T15730] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1006.652143][T15730] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[ 1006.795951][T15730] FAT-fs (loop2): Filesystem has been set read-only
[ 1006.834458][T15730] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[ 1006.894374][T15730] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[ 1007.180332][T15058] EXT4-fs (loop3): unmounting filesystem.
[ 1007.237104][T15746] loop4: detected capacity change from 0 to 1024
[ 1007.344245][T15746] hfsplus: extend alloc file! (8192,65536,366)
[ 1007.414206][T15749] loop1: detected capacity change from 0 to 2048
[ 1007.457858][  T102] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1007.520839][T15749] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1007.581760][T15749] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1007.678231][T15749] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 15 with max blocks 1 with error 28
[ 1007.746906][T15749] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1007.746906][T15749] 
[ 1007.810776][  T102] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1007.832246][T15749] EXT4-fs (loop1): Total free blocks count 0
[ 1007.861175][T15749] EXT4-fs (loop1): Free/Dirty block details
[ 1007.891260][T15749] EXT4-fs (loop1): free_blocks=2415919104
[ 1007.906803][T15749] EXT4-fs (loop1): dirty_blocks=16
[ 1007.935059][T15749] EXT4-fs (loop1): Block reservation details
[ 1007.957340][T15749] EXT4-fs (loop1): i_reserved_data_blocks=1
[ 1007.959136][  T102] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.083788][T15375] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[ 1008.137441][  T102] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.367933][T15769] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2283'.
[ 1008.671431][ T3642] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1008.691023][ T3642] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1008.887138][ T3642] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1008.909315][ T3642] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1008.923017][ T3642] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1008.932329][ T3642] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1009.219271][T15773] loop1: detected capacity change from 0 to 2048
[ 1009.237263][T15778] batman_adv: batadv0: Adding interface: wlan1
[ 1009.243464][T15778] batman_adv: batadv0: The MTU of interface wlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1009.339728][T15778] batman_adv: batadv0: Interface activated: wlan1
[ 1009.552400][T15773]  loop1: p3 < > p4 < >
[ 1009.575554][T15773] loop1: partition table partially beyond EOD, truncated
[ 1009.603252][T15784] batman_adv: batadv0: Interface deactivated: wlan1
[ 1009.627767][T15782] loop4: detected capacity change from 0 to 4096
[ 1009.634388][T15773] loop1: p3 start 4284289 is beyond EOD, truncated
[ 1009.675425][ T3091]  loop1: p3 < > p4 < >
[ 1009.682877][ T3091] loop1: partition table partially beyond EOD, truncated
[ 1009.701339][T15782] ntfs: (device loop4): map_mft_record_page(): Mft record 0x1 is corrupt.  Run chkdsk.
[ 1009.712521][ T3091] loop1: p3 start 4284289 is beyond EOD, truncated
[ 1009.720939][T15782] ntfs: (device loop4): map_mft_record(): Failed with error code 5.
[ 1009.732659][T15782] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1009.788671][T15782] ntfs: (device loop4): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1009.900349][T15782] ntfs: (device loop4): ntfs_read_locked_inode(): Inode is not in use!
[ 1009.949982][T15782] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1009.994366][T12530] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1010.016025][T15782] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1010.028683][T15784] batman_adv: batadv0: Removing interface: wlan1
[ 1010.032067][T12530] udevd[12530]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[ 1010.158774][T15782] ntfs: (device loop4): load_and_init_attrdef(): Failed to initialize attribute definition table.
[ 1010.444352][T15782] ntfs: (device loop4): ntfs_fill_super(): Failed to load system files.
[ 1010.946130][T15785] �: renamed from pim6reg1
[ 1011.802218][ T3637] Bluetooth: hci3: command tx timeout
[ 1013.189391][T15767] chnl_net:caif_netlink_parms(): no params data found
[ 1013.855823][ T3637] Bluetooth: hci3: command tx timeout
[ 1013.884468][T15840] loop4: detected capacity change from 0 to 512
[ 1013.904821][T15840] EXT4-fs (loop4): Unsupported encryption level 9
[ 1013.962864][T15838] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1015.278721][T15832] loop4: detected capacity change from 0 to 512
[ 1015.812478][ T3642] Bluetooth: hci0: command 0x0406 tx timeout
[ 1015.823081][T15853] loop1: detected capacity change from 0 to 256
[ 1015.832203][T15832] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1016.427311][ T3642] Bluetooth: hci3: command tx timeout
[ 1016.473293][T15853] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 1016.575886][T15832] EXT4-fs: failed to create workqueue
[ 1016.584494][T15832] EXT4-fs (loop4): mount failed
[ 1017.243365][T15767] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1017.251181][T15767] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1017.260036][T15767] device bridge_slave_0 entered promiscuous mode
[ 1017.292866][T15767] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1017.310866][T15767] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1017.321212][T15767] device bridge_slave_1 entered promiscuous mode
[ 1017.448024][T15767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1018.498478][ T3637] Bluetooth: hci3: command tx timeout
[ 1018.640393][T15767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1019.464079][T15902] loop1: detected capacity change from 0 to 128
[ 1019.503212][T15901] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1019.523248][T15902] ext4: Unknown parameter 'smackfsfloor'
[ 1019.575781][T15767] team0: Port device team_slave_0 added
[ 1019.756996][T15767] team0: Port device team_slave_1 added
[ 1019.830640][T15767] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1019.855612][T15767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1019.944643][T15767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1020.384796][  T102] device hsr_slave_0 left promiscuous mode
[ 1020.579983][  T102] device hsr_slave_1 left promiscuous mode
[ 1020.660105][  T102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1020.765766][  T102] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1020.827900][  T102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1020.845592][  T102] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1020.871866][  T102] device bridge_slave_1 left promiscuous mode
[ 1020.888506][  T102] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1020.898233][T15926] loop4: detected capacity change from 0 to 2048
[ 1020.919093][  T102] device bridge_slave_0 left promiscuous mode
[ 1020.967663][  T102] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1020.975916][T12530] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1021.154346][  T102] device veth1_macvtap left promiscuous mode
[ 1021.159511][T15926] loop4: detected capacity change from 0 to 2048
[ 1021.184435][  T102] device veth0_macvtap left promiscuous mode
[ 1021.189196][T15931] loop1: detected capacity change from 0 to 4096
[ 1021.199488][  T102] device veth1_vlan left promiscuous mode
[ 1021.221545][T15931] ntfs: (device loop1): map_mft_record_page(): Mft record 0x1 is corrupt.  Run chkdsk.
[ 1021.237041][T15931] ntfs: (device loop1): map_mft_record(): Failed with error code 5.
[ 1021.249075][  T102] device veth0_vlan left promiscuous mode
[ 1021.255033][T15926]  loop4: p3 < > p4 < >
[ 1021.259721][T15926] loop4: partition table partially beyond EOD, truncated
[ 1021.286598][T15926] loop4: p3 start 4284289 is beyond EOD, truncated
[ 1021.295858][T15931] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1021.394933][T15931] ntfs: (device loop1): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1021.435960][T15931] ntfs: (device loop1): ntfs_read_locked_inode(): Inode is not in use!
[ 1021.467909][T15931] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1021.529658][T15931] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1021.605817][T15931] ntfs: (device loop1): load_and_init_attrdef(): Failed to initialize attribute definition table.
[ 1021.623481][T15931] ntfs: (device loop1): ntfs_fill_super(): Failed to load system files.
[ 1021.872803][T15946] input: syz0 as /devices/virtual/input/input30
[ 1022.133287][T15952] loop2: detected capacity change from 0 to 1024
[ 1022.156875][T15952] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1022.513660][T15952] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1023.104351][T15960] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2313'.
[ 1023.594153][T15367] EXT4-fs (loop2): unmounting filesystem.
[ 1024.081790][  T102] team0 (unregistering): Port device team_slave_1 removed
[ 1024.180176][  T102] team0 (unregistering): Port device team_slave_0 removed
[ 1024.244771][  T102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1024.405231][  T102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1025.918988][T15986] loop2: detected capacity change from 0 to 512
[ 1026.048050][T15986] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1026.110957][T15986] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.2319: invalid indirect mapped block 4294967295 (level 1)
[ 1026.133217][T15986] EXT4-fs (loop2): Remounting filesystem read-only
[ 1026.164915][T15986] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.2319: invalid indirect mapped block 4294967295 (level 1)
[ 1026.180925][T15986] EXT4-fs (loop2): 2 truncates cleaned up
[ 1026.186769][T15986] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1027.064295][T15367] EXT4-fs (loop2): unmounting filesystem.
[ 1027.066646][T15995] loop4: detected capacity change from 0 to 736
[ 1028.047274][T16001] loop2: detected capacity change from 0 to 512
[ 1028.054556][T16001] ext4: Unknown parameter 'noacl'
[ 1028.119918][T12530] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1029.070692][  T102] bond0 (unregistering): Released all slaves
[ 1029.186341][T15767] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1029.193317][T15767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1029.233256][T15767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1029.262291][T15929] �: renamed from pim6reg1
[ 1029.371980][T15767] device hsr_slave_0 entered promiscuous mode
[ 1029.401447][T15767] device hsr_slave_1 entered promiscuous mode
[ 1029.413790][T15767] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1029.430370][T15767] Cannot create hsr debugfs directory
[ 1031.936124][T16049] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[ 1032.525880][T16051] loop1: detected capacity change from 0 to 512
[ 1032.580163][T16051] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1032.845138][T16051] EXT4-fs (loop1): 1 orphan inode deleted
[ 1032.869160][T16051] EXT4-fs (loop1): 1 truncate cleaned up
[ 1032.895087][T16051] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1033.720124][T16073] (syz.4.2335,16073,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[ 1033.729000][T16073] (syz.4.2335,16073,1):ocfs2_fill_super:1176 ERROR: status = -22
[ 1034.947873][T15767] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1035.107278][T15767] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1035.129406][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1035.160869][T15767] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1035.190635][T15767] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1035.398604][T15767] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1035.451745][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1035.460852][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1035.473768][T15767] 8021q: adding VLAN 0 to HW filter on device team0
[ 1035.484632][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1035.500750][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1035.512951][  T102] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1035.520135][  T102] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1035.525607][ T5734] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1035.534634][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1035.547503][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1035.562874][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1035.574374][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1035.581560][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1035.607118][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1035.623647][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1035.643897][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1035.658142][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1035.668521][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1035.684409][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1035.693516][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1035.709661][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1035.723282][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1035.743601][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1035.752856][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1035.764197][T15767] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1035.905849][ T5734] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1035.914717][ T5734] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1036.004984][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1036.012854][ T5734] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1036.023184][ T5734] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1036.032010][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1036.040483][ T5734] usb 2-1: Manufacturer: syz
[ 1036.050750][T15767] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1036.068269][ T5734] usb 2-1: config 0 descriptor??
[ 1036.101507][T15767] device veth0_vlan entered promiscuous mode
[ 1036.118584][T15767] device veth1_vlan entered promiscuous mode
[ 1036.127096][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1036.135808][ T5734] igorplugusb 2-1:0.0: incorrect number of endpoints
[ 1036.150264][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1036.166282][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1036.189492][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1036.212442][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1036.264781][T15767] device veth0_macvtap entered promiscuous mode
[ 1036.309107][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1036.330169][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1036.343582][ T5738] usb 2-1: USB disconnect, device number 19
[ 1036.386218][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1036.412666][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1036.430126][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1036.449777][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1036.466572][T15767] device veth1_macvtap entered promiscuous mode
[ 1036.504643][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1036.540850][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.561959][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1036.582797][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.603248][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1036.623082][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.635009][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1036.655945][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.678222][T15767] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1036.696487][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1036.720983][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1036.750156][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1036.771336][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.825140][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1036.855555][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.905580][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1036.949558][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1036.971685][T15767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1036.992662][T15767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1037.026592][T15767] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1037.036631][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1037.051588][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1037.101575][T16134] netlink: 'syz.1.2345': attribute type 4 has an invalid length.
[ 1037.200989][T15767] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.213805][T16134] loop1: detected capacity change from 0 to 8
[ 1037.230361][T15767] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.275521][T15767] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.304712][T15767] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.348911][T12530] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1037.469586][T16148] loop4: detected capacity change from 0 to 256
[ 1037.480592][ T4518] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[ 1037.590622][T16148] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1037.671256][T16148] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[ 1037.686833][T16148] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[ 1037.694612][T16148] UDF-fs: Scanning with blocksize 512 failed
[ 1037.710806][T16148] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1037.733480][T16148] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1037.996061][ T4518] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1038.096833][ T4518] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1038.287031][ T7190] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1038.312446][ T7190] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1038.320335][ T4518] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1038.356670][ T4518] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1038.378533][  T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1038.385197][ T4518] usb 3-1: Manufacturer: syz
[ 1038.395178][  T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1038.411341][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1038.422979][ T4518] usb 3-1: config 0 descriptor??
[ 1038.457785][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1038.655599][ T4518] rc_core: IR keymap rc-hauppauge not found
[ 1038.661643][ T4518] Registered IR keymap rc-empty
[ 1038.682042][T16139] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2346'.
[ 1038.696795][ T4518] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[ 1038.737843][ T4518] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input31
[ 1038.809562][ T4518] usb 3-1: USB disconnect, device number 22
[ 1039.467768][T16163] loop3: detected capacity change from 0 to 32768
[ 1041.617520][T16215] �: renamed from pim6reg1
[ 1041.863876][T16215] loop3: detected capacity change from 0 to 4096
[ 1041.949961][T16215] ntfs: (device loop3): map_mft_record_page(): Mft record 0x1 is corrupt.  Run chkdsk.
[ 1042.007182][T16215] ntfs: (device loop3): map_mft_record(): Failed with error code 5.
[ 1042.056285][T16215] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[ 1042.104672][T16215] ntfs: (device loop3): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[ 1042.130572][T16215] ntfs: (device loop3): ntfs_read_locked_inode(): Inode is not in use!
[ 1042.162837][T16215] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1042.251554][T16215] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1042.268907][T16215] ntfs: (device loop3): load_and_init_attrdef(): Failed to initialize attribute definition table.
[ 1042.281256][T16215] ntfs: (device loop3): ntfs_fill_super(): Failed to load system files.
[ 1042.687062][T16233] kvm [16231]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x5500000800
[ 1042.820339][T16244] loop4: detected capacity change from 0 to 256
[ 1042.967092][T16244] exfat: Bad value for 'dmask'
[ 1043.402426][T16250] loop3: detected capacity change from 0 to 164
[ 1045.789632][T16284] loop3: detected capacity change from 0 to 256
[ 1045.812322][T16282] loop4: detected capacity change from 0 to 512
[ 1045.868789][T16282] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[ 1045.914542][T12530] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1046.004214][T16282] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.2372: iget: bad i_size value: -67835469387268086
[ 1046.030517][T16287] loop1: detected capacity change from 0 to 256
[ 1046.073775][T16282] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.2372: couldn't read orphan inode 15 (err -117)
[ 1046.125993][T16282] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1046.144802][T16282] ext2 filesystem being mounted at /53/file0 supports timestamps until 2038 (0x7fffffff)
[ 1046.148807][T16287] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2374'.
[ 1046.212852][T16282] EXT4-fs error (device loop4): ext4_add_entry:2484: inode #2: comm syz.4.2372: Directory hole found for htree leaf block 0
[ 1046.362761][T16299] batman_adv: batadv0: Adding interface: ip6gretap1
[ 1046.397012][T16299] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.445534][T16299] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[ 1046.964474][T16299] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2377'.
[ 1046.981665][T16299] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1046.999595][T16299] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1047.012671][T16299] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1047.040199][T16299] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1047.070463][T16299] batman_adv: batadv0: Removing interface: ip6gretap1
[ 1047.087546][T14865] EXT4-fs (loop4): unmounting filesystem.
[ 1049.794758][T16335] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1051.227430][T16351] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1051.717391][T16345] loop1: detected capacity change from 0 to 1024
[ 1051.733826][T16356] loop3: detected capacity change from 0 to 512
[ 1051.782760][T16356] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[ 1051.833684][T16356] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz.3.2389: iget: bad i_size value: -67835469387268086
[ 1051.852373][T16356] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.2389: couldn't read orphan inode 15 (err -117)
[ 1051.865304][T16356] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1051.882614][T16356] ext2 filesystem being mounted at /8/file0 supports timestamps until 2038 (0x7fffffff)
[ 1051.914727][T16356] EXT4-fs error (device loop3): ext4_add_entry:2484: inode #2: comm syz.3.2389: Directory hole found for htree leaf block 0
[ 1052.143623][T16350] syz.0.2386 (16350): /proc/16346/oom_adj is deprecated, please use /proc/16346/oom_score_adj instead.
[ 1052.501332][T16359] loop4: detected capacity change from 0 to 32768
[ 1053.647567][   T26] audit: type=1326 audit(1726048474.201:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1053.782037][   T26] audit: type=1326 audit(1726048474.201:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1053.835624][   T26] audit: type=1326 audit(1726048474.221:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1053.837121][T16383] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2398'.
[ 1053.906128][   T26] audit: type=1326 audit(1726048474.231:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1053.961289][   T26] audit: type=1326 audit(1726048474.231:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1054.026136][   T26] audit: type=1326 audit(1726048474.231:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1054.085659][   T26] audit: type=1326 audit(1726048474.231:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1054.114753][T15767] EXT4-fs (loop3): unmounting filesystem.
[ 1054.333152][   T26] audit: type=1326 audit(1726048474.231:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1054.358978][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.365271][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.398746][T16379] loop4: detected capacity change from 0 to 32768
[ 1054.454255][   T26] audit: type=1326 audit(1726048474.231:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1054.743424][   T26] audit: type=1326 audit(1726048474.231:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16380 comm="syz.0.2397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1054.993722][T16384] dccp_close: ABORT with 32 bytes unread
[ 1055.946428][T16405] loop1: detected capacity change from 0 to 128
[ 1056.046317][T16379] XFS (loop4): Mounting V5 Filesystem
[ 1056.066420][T16405] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1056.118684][T16405] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038 (0x7fffffff)
[ 1056.258957][ T3637] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1056.267706][ T3637] Bluetooth: hci1: Injecting HCI hardware error event
[ 1056.278468][ T3642] Bluetooth: hci1: hardware error 0x00
[ 1056.326544][T16379] XFS (loop4): Ending clean mount
[ 1056.343475][T16379] XFS (loop4): Quotacheck needed: Please wait.
[ 1056.351328][T16395] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1056.441141][T16379] XFS (loop4): Quotacheck: Done.
[ 1056.527817][T14865] XFS (loop4): Unmounting Filesystem
[ 1056.740146][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1056.872224][T16424] loop1: detected capacity change from 0 to 2048
[ 1056.931629][T16424] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[ 1056.950300][T16424] UDF-fs: Scanning with blocksize 512 failed
[ 1056.970071][T16424] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1058.218902][T16436] loop1: detected capacity change from 0 to 16
[ 1058.250097][T16436] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1058.335609][ T3642] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1058.350936][T16436] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[ 1058.665962][T16436] syz.1.2408: attempt to access beyond end of device
[ 1058.665962][T16436] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[ 1059.014798][T16439] syz.1.2408: attempt to access beyond end of device
[ 1059.014798][T16439] loop1: rw=0, sector=34359739344, nr_sectors = 8 limit=16
[ 1059.278517][T16445] loop1: detected capacity change from 0 to 512
[ 1059.310725][T16445] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[ 1059.420849][T16445] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz.1.2410: iget: bad i_size value: -67835469387268086
[ 1060.215996][T16445] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.2410: couldn't read orphan inode 15 (err -117)
[ 1060.258849][T16445] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1060.299312][T16445] ext2 filesystem being mounted at /146/file0 supports timestamps until 2038 (0x7fffffff)
[ 1060.321192][T16457] netlink: 'syz.3.2414': attribute type 25 has an invalid length.
[ 1060.329313][T16457] netlink: 'syz.3.2414': attribute type 8 has an invalid length.
[ 1060.353820][T16457] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2414'.
[ 1060.364915][T16457] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2414'.
[ 1060.388156][T16445] EXT4-fs error (device loop1): ext4_add_entry:2484: inode #2: comm syz.1.2410: Directory hole found for htree leaf block 0
[ 1062.156385][ T3642] Bluetooth: hci2: command 0x0406 tx timeout
[ 1063.260849][T16482] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2422'.
[ 1064.035629][  T152] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[ 1064.293073][T16497] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1066.327609][   T26] kauditd_printk_skb: 4 callbacks suppressed
[ 1066.327625][   T26] audit: type=1326 audit(1726048486.881:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1066.336125][  T152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1066.465637][  T152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1066.465950][   T26] audit: type=1326 audit(1726048486.881:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1066.523036][  T152] usb 4-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[ 1066.570289][  T152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1066.788530][  T152] usb 4-1: config 0 descriptor??
[ 1066.805042][   T26] audit: type=1326 audit(1726048486.881:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1066.839977][  T152] usb 4-1: can't set config #0, error -71
[ 1066.872580][  T152] usb 4-1: USB disconnect, device number 28
[ 1066.914583][   T26] audit: type=1326 audit(1726048486.881:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1067.100241][   T26] audit: type=1326 audit(1726048486.881:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1067.558431][   T26] audit: type=1326 audit(1726048486.881:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1067.991439][   T26] audit: type=1326 audit(1726048486.881:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1068.162525][   T26] audit: type=1326 audit(1726048486.881:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1068.184893][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1068.307644][   T26] audit: type=1326 audit(1726048486.881:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16500 comm="syz.0.2426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b92b7def9 code=0x7ffc0000
[ 1068.953895][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1070.108578][T16544] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1070.527836][T16551] loop3: detected capacity change from 0 to 512
[ 1070.991123][T16553] loop1: detected capacity change from 0 to 1024
[ 1071.006399][T16553] EXT4-fs: Ignoring removed nobh option
[ 1071.040875][T16553] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1071.052491][T16551] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1071.064451][T16551] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038 (0x7fffffff)
[ 1071.130978][T16551] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[ 1071.199603][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1071.305429][T16569] loop2: detected capacity change from 0 to 1024
[ 1071.387110][T16565] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[ 1071.406126][T16565] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 1071.406126][T16565] 
[ 1071.406968][T16569] EXT4-fs: Ignoring removed orlov option
[ 1071.421606][T16565] EXT4-fs (loop3): Total free blocks count 0
[ 1071.421832][T16569] EXT4-fs: Ignoring removed bh option
[ 1071.433207][T16565] EXT4-fs (loop3): Free/Dirty block details
[ 1071.439358][T16565] EXT4-fs (loop3): free_blocks=65281
[ 1071.444728][T16565] EXT4-fs (loop3): dirty_blocks=23
[ 1071.450261][T16565] EXT4-fs (loop3): Block reservation details
[ 1071.456353][T16565] EXT4-fs (loop3): i_reserved_data_blocks=23
[ 1071.656758][T16569] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1071.711216][T16573] loop1: detected capacity change from 0 to 512
[ 1071.739203][T15767] EXT4-fs (loop3): unmounting filesystem.
[ 1071.777166][T16573] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 2: comm syz.1.2444: invalid block
[ 1071.858439][T16573] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2444: invalid indirect mapped block 10 (level 1)
[ 1071.894152][T16573] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2444: invalid indirect mapped block 8 (level 1)
[ 1071.941648][T16573] EXT4-fs (loop1): 1 truncate cleaned up
[ 1071.955777][T16573] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1072.589848][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1072.624895][T15367] EXT4-fs (loop2): unmounting filesystem.
[ 1072.853425][ T3642] Bluetooth: hci3: unexpected event 0x09 length: 13 > 3
[ 1072.989961][T16586] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1073.771405][T16580] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1077.016252][ T3637] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1077.026132][ T3637] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1077.034186][ T3637] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1077.046969][ T3637] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1077.055571][ T3637] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1077.062863][ T3637] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1077.367621][T16616] chnl_net:caif_netlink_parms(): no params data found
[ 1077.537435][T16634] binder: 16631:16634 ioctl c018620b 20000380 returned -14
[ 1077.624801][T16616] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1077.667715][T16616] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1077.688513][T16616] device bridge_slave_0 entered promiscuous mode
[ 1077.702277][T16616] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1077.709886][T16616] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1077.718929][T16616] device bridge_slave_1 entered promiscuous mode
[ 1077.753258][T16616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1077.764991][T16616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1077.819157][T16616] team0: Port device team_slave_0 added
[ 1077.833378][T16616] team0: Port device team_slave_1 added
[ 1077.867841][T16616] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1077.874938][T16616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1077.909987][T16616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1077.930769][T16616] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1077.938424][T16616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1077.966303][T16616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1077.977236][ T5734] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[ 1077.999310][ T4517] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[ 1078.055059][T16616] device hsr_slave_0 entered promiscuous mode
[ 1078.064212][T16616] device hsr_slave_1 entered promiscuous mode
[ 1078.074420][T16616] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1078.085331][T16616] Cannot create hsr debugfs directory
[ 1078.144058][T16640] device pim6reg1 entered promiscuous mode
[ 1078.195919][T16642] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2465'.
[ 1078.245675][ T4517] usb 4-1: Using ep0 maxpacket: 32
[ 1078.346958][ T5734] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1078.365829][ T4517] usb 4-1: config 0 has an invalid interface number: 103 but max is 1
[ 1078.372792][ T5734] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1078.374002][ T4517] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1078.399753][ T5734] usb 5-1: New USB device found, idVendor=056a, idProduct=0315, bcdDevice= 0.00
[ 1078.406374][ T4517] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1078.413995][ T5734] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1078.424034][ T4517] usb 4-1: config 0 has no interface number 0
[ 1078.431753][ T5734] usb 5-1: config 0 descriptor??
[ 1078.433727][ T4517] usb 4-1: config 0 interface 103 has no altsetting 0
[ 1079.147856][ T3637] Bluetooth: hci1: command tx timeout
[ 1079.483412][T16616] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1079.609236][ T5734] wacom 0003:056A:0315.0023: Unknown device_type for 'HID 056a:0315'. Assuming pen.
[ 1079.672958][ T5734] wacom 0003:056A:0315.0023: hidraw0: USB HID v8.00 Device [HID 056a:0315] on usb-dummy_hcd.4-1/input0
[ 1079.722440][ T5734] input: Wacom Intuos Pro M Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0315.0023/input/input33
[ 1079.815654][ T4517] usb 4-1: string descriptor 0 read error: -22
[ 1079.822213][ T4517] usb 4-1: New USB device found, idVendor=04e8, idProduct=689a, bcdDevice=44.10
[ 1079.851995][ T4517] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1079.871913][ T4517] usb 4-1: config 0 descriptor??
[ 1079.899425][ T5734] usb 5-1: USB disconnect, device number 19
[ 1079.901515][T16616] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.089225][T16616] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.215940][T16616] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.240499][T16664] loop1: detected capacity change from 0 to 4096
[ 1080.244577][ T3679] usb 4-1: USB disconnect, device number 29
[ 1080.262564][T16664] ntfs: (device loop1): parse_ntfs_boot_sector(): Mft record size (8192) exceeds the PAGE_SIZE on your system (4096).  This is not supported.  Sorry.
[ 1080.295569][T16664] ntfs: (device loop1): ntfs_fill_super(): Unsupported NTFS filesystem.
[ 1080.529851][T16616] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1080.540255][T16616] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1080.550350][T16616] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1080.560633][T16616] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1080.633722][T16616] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1080.653114][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1080.664013][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1080.675418][T16616] 8021q: adding VLAN 0 to HW filter on device team0
[ 1080.688136][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1080.697454][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1080.708909][ T7190] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1080.716055][ T7190] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1080.735394][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1080.743855][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1080.754607][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1080.764418][ T7190] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1080.771561][ T7190] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1080.780584][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1080.796671][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1080.818420][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1080.832017][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1080.855415][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1080.874483][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1080.901500][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1080.911148][T16666] loop1: detected capacity change from 0 to 32768
[ 1080.920402][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1080.939085][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1080.958705][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1080.991319][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1081.010619][T16616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1081.163311][T16666] XFS (loop1): Mounting V5 Filesystem
[ 1081.216121][ T3642] Bluetooth: hci1: command tx timeout
[ 1081.295087][ T6777] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1081.593429][T16666] XFS (loop1): Ending clean mount
[ 1081.726136][ T6777] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1081.739567][T16666] XFS (loop1): Quotacheck needed: Please wait.
[ 1081.863912][ T3694] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1081.874262][ T3694] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1081.888596][T16616] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1081.928251][ T6777] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1081.962124][T16666] XFS (loop1): Quotacheck: Done.
[ 1081.972487][ T3694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1081.990901][ T3694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1082.016062][ T6777] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1082.025164][ T6777] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1082.033849][ T6777] usb 5-1: SerialNumber: syz
[ 1082.043675][ T9266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1082.060448][ T9266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1082.080070][ T9266] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1082.089046][ T9266] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1082.106307][T16616] device veth0_vlan entered promiscuous mode
[ 1082.125868][T12725] XFS (loop1): Unmounting Filesystem
[ 1082.139910][T16616] device veth1_vlan entered promiscuous mode
[ 1082.190852][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1082.199599][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1082.209278][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1082.218215][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1082.230434][T16616] device veth0_macvtap entered promiscuous mode
[ 1082.249050][T16616] device veth1_macvtap entered promiscuous mode
[ 1082.281526][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1082.281549][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.281560][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1082.281574][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.281585][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1082.281598][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.281609][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1082.281622][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.282894][T16616] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1082.283014][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1082.283617][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1082.284248][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1082.284867][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1082.299989][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1082.300017][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.300029][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1082.300042][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.300053][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1082.300066][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.300109][T16616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1082.300123][T16616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.301252][T16616] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1082.303111][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1082.303773][ T3762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1082.310403][T16616] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.310438][T16616] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.310466][T16616] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.310494][T16616] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1083.173885][ T3718] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1083.173971][ T3718] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1083.196146][T16688] tty tty1: ldisc open failed (-12), clearing slot 0
[ 1083.298878][ T3637] Bluetooth: hci1: command tx timeout
[ 1083.303441][ T7190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1083.304599][ T3718] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1083.321490][ T7190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1083.351485][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1083.400892][ T6777] usb 5-1: skipping empty audio interface (v1)
[ 1083.484028][ T6777] snd-usb-audio: probe of 5-1:1.0 failed with error -22
[ 1083.508323][ T6777] usb 5-1: USB disconnect, device number 20
[ 1083.529460][T12530] udevd[12530]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1083.977649][T16708] loop2: detected capacity change from 0 to 256
[ 1084.016975][T16708] exfat: Bad value for 'uid'
[ 1084.305650][ T5734] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1084.860086][T12530] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1084.878382][T16708] loop2: detected capacity change from 0 to 1024
[ 1084.884255][T12530] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1084.894221][T16708] EXT4-fs: Ignoring removed orlov option
[ 1084.904432][T16714] loop1: detected capacity change from 0 to 2048
[ 1084.914159][T16700] loop3: detected capacity change from 0 to 40427
[ 1084.923895][T12530] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1084.932243][ T5734] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1084.932321][T16700] F2FS-fs (loop3): invalid crc value
[ 1084.956435][T16708] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1084.978545][ T5734] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1084.995183][ T5734] usb 5-1: New USB device found, idVendor=5143, idProduct=0522, bcdDevice= 0.00
[ 1085.004543][T16714] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1085.010938][T16708] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1085.014003][ T5734] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1085.025746][T16700] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1085.031664][ T5734] usb 5-1: config 0 descriptor??
[ 1085.132925][T16700] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[ 1085.173968][T16616] EXT4-fs (loop2): unmounting filesystem.
[ 1085.375940][ T3637] Bluetooth: hci1: command tx timeout
[ 1086.816833][ T5734] hid (null): global environment stack underflow
[ 1086.843500][ T5734] hid-generic 0003:5143:0522.0024: global environment stack underflow
[ 1086.873732][ T5734] hid-generic 0003:5143:0522.0024: item 0 1 1 11 parsing failed
[ 1086.900108][ T5734] hid-generic: probe of 0003:5143:0522.0024 failed with error -22
[ 1087.003738][T15767] syz-executor: attempt to access beyond end of device
[ 1087.003738][T15767] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1087.136693][ T6777] usb 5-1: USB disconnect, device number 21
[ 1087.140552][T16735] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[ 1087.260135][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1089.919883][ T5734] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[ 1090.408443][T16772] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2501'.
[ 1090.595872][ T5734] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[ 1090.625522][ T5734] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1090.646238][ T5734] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 142, changing to 11
[ 1090.667702][ T5734] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 33
[ 1090.691083][ T5734] usb 3-1: New USB device found, idVendor=28bd, idProduct=1903, bcdDevice= 0.00
[ 1090.705612][ T5734] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1090.732860][ T5734] usb 3-1: config 0 descriptor??
[ 1090.999646][T16769] dccp_invalid_packet: P.Data Offset(0) too small
[ 1091.035671][ T3719] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1091.272222][ T5734] input: HID 28bd:1903 Mouse as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:28BD:1903.0025/input/input37
[ 1091.276096][ T3719] usb 2-1: Using ep0 maxpacket: 32
[ 1091.374048][ T5734] uclogic 0003:28BD:1903.0025: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:1903] on usb-dummy_hcd.2-1/input0
[ 1091.484199][ T4518] usb 3-1: USB disconnect, device number 23
[ 1091.575712][ T3719] usb 2-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[ 1091.584954][ T3719] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1091.593142][ T3719] usb 2-1: Product: syz
[ 1091.597453][ T3719] usb 2-1: Manufacturer: syz
[ 1091.602046][ T3719] usb 2-1: SerialNumber: syz
[ 1091.610789][ T3719] usb 2-1: config 0 descriptor??
[ 1091.657367][ T3719] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[ 1091.861819][T16785] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1091.881226][T16785] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1091.915152][T16785] device dummy0 entered promiscuous mode
[ 1091.963924][T16785] device dummy0 left promiscuous mode
[ 1092.016542][T16799] loop4: detected capacity change from 0 to 2048
[ 1092.311077][T16799] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1092.419992][T16799] ext4 filesystem being mounted at /80/bus supports timestamps until 2038 (0x7fffffff)
[ 1092.775682][ T3719] gspca_ov534_9: reg_w failed -110
[ 1092.907845][T16807] netlink: 'syz.2.2520': attribute type 1 has an invalid length.
[ 1092.975307][T14865] EXT4-fs (loop4): unmounting filesystem.
[ 1093.683152][T16816] xt_socket: unknown flags 0x50
[ 1094.415611][ T3719] gspca_ov534_9: Unknown sensor 0000
[ 1094.415681][ T3719] ov534_9: probe of 2-1:0.0 failed with error -22
[ 1094.566022][ T3719] usb 2-1: USB disconnect, device number 20
[ 1094.995986][T16827] loop2: detected capacity change from 0 to 4096
[ 1095.048922][T16830] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2515'.
[ 1095.066206][T16827] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1095.181120][T16839] loop3: detected capacity change from 0 to 512
[ 1095.250059][T16839] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.2516: inode #1: comm syz.3.2516: iget: illegal inode #
[ 1095.311281][T16839] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.2516: error while reading EA inode 1 err=-117
[ 1095.331107][T16839] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.2516: inode #1: comm syz.3.2516: iget: illegal inode #
[ 1095.348804][T16839] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.2516: error while reading EA inode 1 err=-117
[ 1095.365494][T16839] EXT4-fs (loop3): 1 orphan inode deleted
[ 1095.371503][T16839] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1095.924669][T16837] EXT4-fs error (device loop3): ext4_lookup:1860: inode #2: comm syz.3.2516: deleted inode referenced: 15
[ 1096.004826][T16616] EXT4-fs (loop2): unmounting filesystem.
[ 1096.110867][T15767] EXT4-fs (loop3): unmounting filesystem.
[ 1096.493281][T16862] loop3: detected capacity change from 0 to 32768
[ 1096.503608][T16862] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.2525 (16862)
[ 1096.537333][T16862] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1096.547566][T16862] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[ 1096.556931][T16862] BTRFS info (device loop3): using free space tree
[ 1097.118513][T16871] infiniband syz2: set active
[ 1097.123234][T16871] infiniband syz2: added team_slave_1
[ 1097.129093][T16871] rdma_rxe: unable to create cq
[ 1097.133990][T16871] infiniband syz2: Couldn't create ib_mad CQ
[ 1097.140105][T16871] infiniband syz2: Couldn't open port 1
[ 1097.159898][T16871] RDS/IB: syz2: added
[ 1097.163999][T16871] smc: adding ib device syz2 with port count 1
[ 1097.170811][T16871] smc:    ib device syz2 port 1 has pnetid 
[ 1097.711156][   T26] audit: type=1326 audit(1726048518.266:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1097.715684][T16862] BTRFS info (device loop3): enabling ssd optimizations
[ 1098.542835][T15767] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1098.581882][   T26] audit: type=1326 audit(1726048518.296:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1098.612376][   T26] audit: type=1326 audit(1726048518.296:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1098.765639][   T26] audit: type=1326 audit(1726048518.296:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1098.825517][T16651] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1098.841777][   T26] audit: type=1326 audit(1726048518.296:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1098.902407][   T26] audit: type=1326 audit(1726048518.296:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1098.966308][   T26] audit: type=1326 audit(1726048518.536:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1099.085702][T16651] usb 2-1: Using ep0 maxpacket: 8
[ 1099.106790][   T26] audit: type=1326 audit(1726048518.536:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16874 comm="syz.2.2526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f8f7def9 code=0x7ffc0000
[ 1099.387125][T16651] usb 2-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1
[ 1099.403608][T16651] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1099.424523][T16651] usb 2-1: Product: syz
[ 1099.428816][T16651] usb 2-1: Manufacturer: syz
[ 1099.433429][T16651] usb 2-1: SerialNumber: syz
[ 1099.449270][T16651] usb 2-1: config 0 descriptor??
[ 1099.504105][T16651] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[ 1100.487750][ T2035] usb 2-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[ 1100.497854][T16651] usb 2-1: USB disconnect, device number 21
[ 1100.508412][ T2035] usb 2-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[ 1100.600050][T16924] loop2: detected capacity change from 0 to 8192
[ 1100.640747][T16924] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1101.213313][T16931] loop4: detected capacity change from 0 to 2048
[ 1103.793247][T16965] loop1: detected capacity change from 0 to 512
[ 1103.811372][T16965] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[ 1103.925230][T16967] loop4: detected capacity change from 0 to 4096
[ 1103.971936][T16967] ntfs: (device loop4): parse_options(): Unrecognized mount option disabl�sparse.
[ 1104.075351][T16967] loop4: detected capacity change from 0 to 64
[ 1105.055154][T16971] loop1: detected capacity change from 0 to 40427
[ 1105.064350][T16971] F2FS-fs (loop1): Unrecognized mount option "errore" or missing value
[ 1105.108995][T13769] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1105.410038][T16983] 9pnet_fd: Insufficient options for proto=fd
[ 1105.503344][T16986] loop1: detected capacity change from 0 to 256
[ 1105.563888][T16989] device bond0 entered promiscuous mode
[ 1105.603752][T16989] device bond_slave_0 entered promiscuous mode
[ 1105.610619][T16989] device bond_slave_1 entered promiscuous mode
[ 1105.694658][T16989] bond0: (slave bond_slave_0): Releasing backup interface
[ 1105.716172][T16989] device bond_slave_0 left promiscuous mode
[ 1105.763467][T16987] device bond0 left promiscuous mode
[ 1105.787367][T16987] device bond_slave_1 left promiscuous mode
[ 1105.793438][T16997] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2552'.
[ 1107.340876][T17016] loop2: detected capacity change from 0 to 128
[ 1107.657075][T17016] FAT-fs (loop2): Unrecognized mount option "showexeC" or missing value
[ 1108.413014][T17036] loop4: detected capacity change from 0 to 1024
[ 1108.627750][T17036] hfsplus: xattr searching failed
[ 1108.782701][T17036] hfsplus: b-tree write err: -5, ino 3
[ 1110.520316][T17049] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2565'.
[ 1110.623085][T17060] loop3: detected capacity change from 0 to 47
[ 1110.637865][T17061] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1112.785002][   T26] audit: type=1326 audit(1726048532.106:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17063 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1113.556308][   T26] audit: type=1326 audit(1726048532.106:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17063 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1113.581087][   T26] audit: type=1326 audit(1726048532.106:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17063 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1113.604217][   T26] audit: type=1326 audit(1726048532.106:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17063 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1113.628382][   T26] audit: type=1326 audit(1726048532.106:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17063 comm="syz.1.2569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1113.723254][T17079] kernel read not supported for file / 
 (pid: 17079 comm: syz.4.2575)
[ 1113.732650][   T26] audit: type=1800 audit(1726048534.286:450): pid=17079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2575" name=2001 dev="mqueue" ino=118575 res=0 errno=0
[ 1113.882027][T17079] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2575'.
[ 1115.490393][T17102] loop3: detected capacity change from 0 to 512
[ 1115.555604][T17102] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1115.677191][T17102] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz.3.2578: casefold flag without casefold feature
[ 1115.768206][T17102] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.2578: couldn't read orphan inode 15 (err -117)
[ 1115.782837][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.782911][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.954118][T17115] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[ 1115.975489][T17115] Error parsing options; rc = [-22]
[ 1116.207549][T17102] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1117.921846][T17110] loop2: detected capacity change from 0 to 32768
[ 1118.032487][T17110] XFS (loop2): Mounting V5 Filesystem
[ 1118.176679][T17110] XFS (loop2): Ending clean mount
[ 1118.212011][T17110] XFS (loop2): Quotacheck needed: Please wait.
[ 1118.428735][T15767] EXT4-fs (loop3): unmounting filesystem.
[ 1118.488497][T17110] XFS (loop2): Quotacheck: Done.
[ 1118.710115][T17142] loop3: detected capacity change from 0 to 512
[ 1118.821101][T17142] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1118.847198][T17142] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038 (0x7fffffff)
[ 1118.853589][T17148] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1119.005197][T17148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1119.031854][T17148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1119.057497][T16616] XFS (loop2): Unmounting Filesystem
[ 1119.342620][T17148] infiniband syz2: set active
[ 1119.421606][T17152] batman_adv: batadv0: Adding interface: wlan1
[ 1119.439337][T17152] batman_adv: batadv0: The MTU of interface wlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1119.516379][T17152] batman_adv: batadv0: Interface activated: wlan1
[ 1119.525663][   T26] audit: type=1326 audit(1726048540.076:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.557367][T15767] EXT4-fs (loop3): unmounting filesystem.
[ 1119.568791][T17156] loop1: detected capacity change from 0 to 256
[ 1119.638253][   T26] audit: type=1326 audit(1726048540.106:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.677688][T17154] batman_adv: batadv0: Interface deactivated: wlan1
[ 1119.750212][   T26] audit: type=1326 audit(1726048540.106:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.806894][   T26] audit: type=1326 audit(1726048540.106:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.877858][   T26] audit: type=1326 audit(1726048540.106:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.902178][   T26] audit: type=1326 audit(1726048540.106:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.952941][   T26] audit: type=1326 audit(1726048540.106:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1119.978142][   T26] audit: type=1326 audit(1726048540.106:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1120.016911][   T26] audit: type=1326 audit(1726048540.106:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1120.041052][   T26] audit: type=1326 audit(1726048540.106:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17155 comm="syz.1.2591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2147f7def9 code=0x7ffc0000
[ 1120.200410][T17154] batman_adv: batadv0: Removing interface: wlan1
[ 1120.236961][T17165] netpci0: tun_chr_ioctl cmd 1074025677
[ 1120.256046][T17165] netpci0: linktype set to 805
[ 1120.535350][T17179] loop1: detected capacity change from 0 to 512
[ 1120.602492][T17179] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1120.732763][T17179] EXT4-fs (loop1): 1 truncate cleaned up
[ 1120.748427][T17179] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1120.870147][T12725] EXT4-fs (loop1): unmounting filesystem.
[ 1123.289601][T17226] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1123.501039][T17234] device syzkaller1 entered promiscuous mode
[ 1123.685945][T17236] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2610'.
[ 1123.698389][T17241] netlink: 'syz.4.2611': attribute type 4 has an invalid length.
[ 1126.175200][T17266] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2618'.
[ 1126.201830][T17266] loop4: detected capacity change from 0 to 1024
[ 1126.228006][T17266] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1126.460498][T17270] loop2: detected capacity change from 0 to 256
[ 1126.481706][T17269] loop1: detected capacity change from 0 to 2048
[ 1126.570535][T17269] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1128.487527][T12725] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1128.531317][T17270] loop2: detected capacity change from 0 to 512
[ 1128.582245][T17270] ext3: Unknown parameter 'obj_type'
[ 1128.731649][T17297] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1128.820458][T17304] device vlan2 entered promiscuous mode
[ 1128.843170][T17304] device team_slave_0 entered promiscuous mode
[ 1128.849456][T17304] device team_slave_1 entered promiscuous mode
[ 1128.875594][T17304] device team0 entered promiscuous mode
[ 1128.882833][ T3718] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[ 1128.891999][T17304] bond0: (slave vlan2): Enslaving as an active interface with an up link
[ 1128.927831][T17294] EXT4-fs (loop1): unmounting filesystem.
[ 1128.984642][T17297] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1129.662099][T17297] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1130.143903][T17297] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1130.768805][T17320] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2634'.
[ 1131.811318][T17297] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1131.838455][ T3650] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1131.849004][ T3650] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1131.870896][T17331] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1131.879374][T17297] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1131.892887][T17331] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1131.900571][T17331] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1131.903107][T17333] loop2: detected capacity change from 0 to 1024
[ 1131.917217][T17331] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1132.061345][T17297] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.148603][T17297] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.605203][ T7190] hfsplus: b-tree write err: -5, ino 3
[ 1133.215666][ T3642] Bluetooth: hci3: command 0x0406 tx timeout
[ 1134.018431][T17331] Bluetooth: hci4: command tx timeout
[ 1134.096783][T17327] chnl_net:caif_netlink_parms(): no params data found
[ 1134.116860][T17357] input: syz0 as /devices/virtual/input/input38
[ 1134.247836][T17327] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1134.380100][T17327] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1134.519565][T17327] device bridge_slave_0 entered promiscuous mode
[ 1134.693347][T17327] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.833744][T17327] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1135.001634][T17327] device bridge_slave_1 entered promiscuous mode
[ 1135.098102][T17370] loop4: detected capacity change from 0 to 256
[ 1135.119057][T17327] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1135.163099][T17327] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1135.286744][T17370] FAT-fs (loop4): Directory bread(block 64) failed
[ 1135.293386][T17370] FAT-fs (loop4): Directory bread(block 65) failed
[ 1135.334051][T17370] FAT-fs (loop4): Directory bread(block 66) failed
[ 1135.366271][T17370] FAT-fs (loop4): Directory bread(block 67) failed
[ 1135.372938][T17370] FAT-fs (loop4): Directory bread(block 68) failed
[ 1135.386434][T17370] FAT-fs (loop4): Directory bread(block 69) failed
[ 1135.479546][T17327] team0: Port device team_slave_0 added
[ 1135.507225][T17370] FAT-fs (loop4): Directory bread(block 70) failed
[ 1135.551223][T17370] FAT-fs (loop4): Directory bread(block 71) failed
[ 1135.648075][T17375] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1135.679081][T17370] FAT-fs (loop4): Directory bread(block 72) failed
[ 1135.745729][T17370] FAT-fs (loop4): Directory bread(block 73) failed
[ 1135.844455][T17375] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1136.083807][T17327] team0: Port device team_slave_1 added
[ 1136.084971][T17370] autofs4:pid:17370:autofs_fill_super: called with bogus options
[ 1136.097651][T17331] Bluetooth: hci4: command tx timeout
[ 1136.205934][T17377] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1136.217475][T17377] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1136.224915][T17377] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1136.534030][T17377] infiniband syz2: set active
[ 1137.035206][T17327] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1137.043276][T17327] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1137.127655][T17327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1137.141101][T17327] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1137.152838][T17327] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1137.229447][T17327] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1137.398708][T17327] device hsr_slave_0 entered promiscuous mode
[ 1137.425899][T17327] device hsr_slave_1 entered promiscuous mode
[ 1137.558367][T17327] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1137.685243][T17327] Cannot create hsr debugfs directory
[ 1138.175713][T17331] Bluetooth: hci4: command tx timeout
[ 1138.192148][   T26] kauditd_printk_skb: 27 callbacks suppressed
[ 1138.192162][   T26] audit: type=1800 audit(1726048558.746:488): pid=17399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2653" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1138.219216][ T7498] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1138.470791][T17327] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1138.505549][ T7498] usb 5-1: Using ep0 maxpacket: 32
[ 1138.598287][T17327] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1138.665667][ T7498] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1138.776770][T17327] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1138.874263][ T7498] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1138.887840][ T7498] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1138.898659][T17327] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1138.909758][ T7498] usb 5-1: Product: syz
[ 1138.935633][ T7498] usb 5-1: Manufacturer: syz
[ 1138.940256][ T7498] usb 5-1: SerialNumber: syz
[ 1138.946362][ T7498] usb 5-1: config 0 descriptor??
[ 1139.158830][T17327] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1139.187853][T17327] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1139.200336][ T5727] usb 5-1: USB disconnect, device number 22
[ 1139.236427][T17327] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1139.300260][T17327] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1139.899757][T17327] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1140.009863][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1140.038336][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1140.059697][T17327] 8021q: adding VLAN 0 to HW filter on device team0
[ 1140.134004][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1140.149712][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1140.163463][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1140.170592][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1140.184643][T17411] loop4: detected capacity change from 0 to 2048
[ 1140.187097][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1140.226182][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1140.243992][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1140.266052][ T3642] Bluetooth: hci4: command tx timeout
[ 1140.276072][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1140.283189][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1140.315931][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1140.334282][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1140.343633][T17411] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1140.406473][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1140.419293][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1140.428029][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1140.429860][T17411] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1140.436769][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1140.461538][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1140.470378][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1140.484463][T17327] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1140.496645][T17327] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1140.504860][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1140.514583][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1140.523201][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1140.530702][T17411] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 15 with max blocks 1 with error 28
[ 1140.586413][T17411] EXT4-fs (loop4): This should not happen!! Data will be lost
[ 1140.586413][T17411] 
[ 1140.605878][T17411] EXT4-fs (loop4): Total free blocks count 0
[ 1140.611888][T17411] EXT4-fs (loop4): Free/Dirty block details
[ 1140.619407][T17411] EXT4-fs (loop4): free_blocks=2415919104
[ 1140.625157][T17411] EXT4-fs (loop4): dirty_blocks=16
[ 1140.655695][T17411] EXT4-fs (loop4): Block reservation details
[ 1140.661707][T17411] EXT4-fs (loop4): i_reserved_data_blocks=1
[ 1140.761981][ T5322] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[ 1140.896061][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1140.903514][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1140.938419][T17327] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1140.990841][ T3748] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1141.021156][ T3748] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1141.066189][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1141.091033][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1141.130696][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1141.148116][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1141.158191][T17327] device veth0_vlan entered promiscuous mode
[ 1141.185721][   T41] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1141.193851][T17327] device veth1_vlan entered promiscuous mode
[ 1141.210591][T17427] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2660'.
[ 1141.226174][T17427] device bond_slave_0 entered promiscuous mode
[ 1141.233118][T17427] device bond_slave_1 entered promiscuous mode
[ 1141.240323][T17427] device macvtap1 entered promiscuous mode
[ 1141.246492][T17427] device bond0 entered promiscuous mode
[ 1141.253454][T17427] 8021q: adding VLAN 0 to HW filter on device macvtap1
[ 1141.278178][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1141.307369][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1141.322386][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1141.362988][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1141.374059][T17327] device veth0_macvtap entered promiscuous mode
[ 1141.416078][T17327] device veth1_macvtap entered promiscuous mode
[ 1141.435868][   T41] usb 5-1: Using ep0 maxpacket: 32
[ 1141.462636][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1141.478607][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.491652][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1141.504328][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.514849][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1141.526361][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.536452][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1141.547173][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.557155][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1141.567854][   T41] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1141.579368][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.589363][   T41] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1141.602475][T17327] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1141.610123][   T41] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1141.622082][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1141.632861][   T41] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1141.641796][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.653201][   T41] usb 5-1: config 0 descriptor??
[ 1141.660463][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1141.670958][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.681344][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1141.691822][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.702822][   T41] hub 5-1:0.0: USB hub found
[ 1141.725541][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1141.745446][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.755290][T17327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1141.774693][T17327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1141.794783][T17327] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1141.810615][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1141.821560][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1141.830489][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1141.839571][ T5322] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1141.849287][T17433] device syzkaller0 entered promiscuous mode
[ 1141.858786][T17327] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1141.868682][T17327] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1141.879164][T17327] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1141.887926][T17327] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1141.923701][   T41] hub 5-1:0.0: 1 port detected
[ 1142.066992][T15087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1142.078632][T15087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1142.143011][ T7190] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1142.170020][ T5322] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1142.203694][ T5322] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1142.240801][T15087] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1142.633489][T15846] hub 5-1:0.0: activate --> -90
[ 1143.016018][T15846] hub 5-1:0.0: hub_ext_port_status failed (err = 0)
[ 1143.376545][T15846] usb 5-1: USB disconnect, device number 23
[ 1143.653813][T17462] loop2: detected capacity change from 0 to 512
[ 1143.661570][T17462] EXT4-fs: Ignoring removed orlov option
[ 1143.687469][T17462] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1143.749394][T17462] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.2668: corrupted in-inode xattr
[ 1143.763310][T17462] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.2668: couldn't read orphan inode 15 (err -117)
[ 1143.786097][T17462] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1144.036807][T16616] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /39/bus: bad entry in directory: rec_len is smaller than minimal - offset=268, inode=0, rec_len=0, size=1024 fake=0
[ 1144.523688][T16616] EXT4-fs (loop2): unmounting filesystem.
[ 1144.573508][T17464] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1144.694476][T17464] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1144.707398][T17464] Bluetooth: hci0: Suspend notifier action (1) failed: -4
[ 1144.725933][T17464] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1144.732046][T17464] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1144.749842][T17464] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[ 1144.759696][T17464] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1144.779656][T17464] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1144.834605][T17464] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[ 1144.852333][T17464] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1144.865683][T17464] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1144.871675][T17464] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[ 1144.882902][T17464] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1144.889682][T17464] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1144.896387][T17464] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[ 1144.976799][T17482] loop3: detected capacity change from 0 to 2048
[ 1145.201954][T17482] loop3: detected capacity change from 0 to 2048
[ 1145.211316][ T4517] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1145.217578][T17494] loop2: detected capacity change from 0 to 64
[ 1145.326306][T17482]  loop3: p3 < > p4 < >
[ 1145.330543][T17482] loop3: partition table partially beyond EOD, truncated
[ 1145.346583][T17482] loop3: p3 start 4284289 is beyond EOD, truncated
[ 1145.428393][ T3091]  loop3: p3 < > p4 < >
[ 1145.432595][ T3091] loop3: partition table partially beyond EOD, truncated
[ 1145.450625][ T3091] loop3: p3 start 4284289 is beyond EOD, truncated
[ 1145.466837][ T4517] usb 5-1: Using ep0 maxpacket: 16
[ 1145.567288][T17498] hfs: request for non-existent node 1280 in B*Tree
[ 1145.574347][T17498] hfs: request for non-existent node 1280 in B*Tree
[ 1145.636406][ T4517] usb 5-1: New USB device found, idVendor=0582, idProduct=007d, bcdDevice=a3.85
[ 1145.750413][ T4517] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1145.935524][ T3642] Bluetooth: hci0: command 0x0406 tx timeout
[ 1146.050484][ T4517] usb 5-1: config 0 descriptor??
[ 1146.138167][ T4517] usb 5-1: interface 1 not found
[ 1146.948447][ T3642] Bluetooth: hci2: command 0x0406 tx timeout
[ 1146.957545][ T3637] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1146.964461][T17331] Bluetooth: hci3: command 0x0406 tx timeout
[ 1146.965305][ T3637] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1147.514981][ T6777] usb 5-1: USB disconnect, device number 24
[ 1148.035650][T17512] Bluetooth: hci0: command 0x0406 tx timeout
[ 1148.550552][T17530] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2687'.
[ 1149.056496][T17512] Bluetooth: hci3: command 0x0406 tx timeout
[ 1149.070359][ T3650] Bluetooth: hci2: command 0x0406 tx timeout
[ 1149.076571][ T3650] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1149.082656][T17512] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1149.093677][T17533] loop1: detected capacity change from 0 to 2048
[ 1149.263387][T17533] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1149.364473][T17327] EXT4-fs (loop1): unmounting filesystem.
[ 1150.625644][T17560] loop2: detected capacity change from 0 to 24
[ 1150.632589][T17560] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 1150.714387][T17560] romfs: bad initial checksum on dev loop2.
[ 1152.276379][T17614] loop3: detected capacity change from 0 to 1024
[ 1152.324368][T17614] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1153.680443][ T4519] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1153.925557][ T4519] usb 5-1: Using ep0 maxpacket: 32
[ 1154.045882][ T4519] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1154.076523][ T4519] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[ 1154.255935][ T4519] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1154.265005][ T4519] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1154.282323][ T4519] usb 5-1: Product: syz
[ 1154.286914][ T4519] usb 5-1: Manufacturer: syz
[ 1154.291521][ T4519] usb 5-1: SerialNumber: syz
[ 1154.315167][ T4519] usb 5-1: config 0 descriptor??
[ 1154.366568][ T4519] hub 5-1:0.0: bad descriptor, ignoring hub
[ 1154.382933][ T4519] hub: probe of 5-1:0.0 failed with error -5
[ 1154.413867][ T4519] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input39
[ 1154.442200][ T4519] usbtouchscreen 5-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -90
[ 1154.482637][ T4519] usbtouchscreen: probe of 5-1:0.0 failed with error -90
[ 1154.665616][ T5727] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[ 1154.685887][ T4519] usb 5-1: USB disconnect, device number 25
[ 1154.704608][T15846] kernel write not supported for file /uinput (pid: 15846 comm: kworker/1:0)
[ 1155.186947][ T5727] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1155.272573][ T5727] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1155.461909][ T5727] usb 3-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00
[ 1155.671997][ T5727] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1155.830587][ T5727] usb 3-1: config 0 descriptor??
[ 1156.134377][T17672] loop1: detected capacity change from 0 to 512
[ 1156.290430][T17672] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1156.640917][T17672] ext4 filesystem being mounted at /11/bus supports timestamps until 2038 (0x7fffffff)
[ 1156.677101][T17646] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2721'.
[ 1156.732224][T17646] loop2: detected capacity change from 0 to 256
[ 1156.869863][T17327] EXT4-fs (loop1): unmounting filesystem.
[ 1156.877559][T13769] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1156.891117][ T5727] wacom 0003:056A:0016.0026: Unknown device_type for 'HID 056a:0016'. Assuming pen.
[ 1156.930843][ T5727] wacom 0003:056A:0016.0026: hidraw0: USB HID v0.00 Device [HID 056a:0016] on usb-dummy_hcd.2-1/input0
[ 1157.005666][ T5727] input: Wacom Graphire4 6x8 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0016.0026/input/input40
[ 1157.273264][T17684] loop1: detected capacity change from 0 to 40427
[ 1157.292995][T17684] F2FS-fs (loop1): invalid crc value
[ 1157.347589][ T5727] usb 3-1: USB disconnect, device number 24
[ 1157.411648][T17684] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1157.504717][T17684] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[ 1159.535658][ T3650] Bluetooth: hci0: command tx timeout
[ 1159.543924][T17327] syz-executor: attempt to access beyond end of device
[ 1159.543924][T17327] loop1: rw=2051, sector=36912, nr_sectors = 8152 limit=40427
[ 1161.016645][T17327] syz-executor: attempt to access beyond end of device
[ 1161.016645][T17327] loop1: rw=2051, sector=45096, nr_sectors = 85976 limit=40427
[ 1161.046616][T17327] F2FS-fs (loop1): Issue discard(4614, 4614, 1019) failed, ret: -5
[ 1161.046659][T17327] F2FS-fs (loop1): Issue discard(5637, 5637, 10747) failed, ret: -5
[ 1161.169155][T17707] loop2: detected capacity change from 0 to 2048
[ 1161.184719][T17711] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2739'.
[ 1161.238301][T17707] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1161.261821][T17707] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1161.274003][T17707] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[ 1161.303660][T17707] UDF-fs: Scanning with blocksize 512 failed
[ 1161.333178][T17707] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1161.880337][ T2035] pvrusb2: request_firmware fatal error with code=-110
[ 1161.948893][ T2035] pvrusb2: Failure uploading firmware1
[ 1161.975676][ T2035] pvrusb2: Device initialization was not successful.
[ 1161.992297][ T2035] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[ 1162.005056][ T2035] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[ 1162.254191][T16651] pvrusb2: Device being rendered inoperable
[ 1162.532416][T17733] loop1: detected capacity change from 0 to 8
[ 1162.975535][T16651] usb 2-1: new full-speed USB device number 22 using dummy_hcd
[ 1163.781864][T17750] loop2: detected capacity change from 0 to 64
[ 1163.841060][T17749] loop4: detected capacity change from 0 to 1024
[ 1164.190516][T17749] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1165.035571][T16651] usb 2-1: not running at top speed; connect to a high speed hub
[ 1165.068547][T14865] EXT4-fs (loop4): unmounting filesystem.
[ 1165.125982][T16651] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1165.142870][T16651] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1165.355832][T16651] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1165.364987][T16651] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1165.393524][T16651] usb 2-1: Product: చ
[ 1165.405139][T16651] usb 2-1: Manufacturer: 她蕋멳龜ؔ됛ꦆ뗮齔㗘మᆤ幽埍瀷쬎룱窛퍽黱覝轤㴓犂讯࣍䉙녒ⶇ扚邆镻㢗濇蕃鐍혣☲밉庙랸袰৽夂憬芣稐录빬旟깿ꦇ婞㘳௴ﺋ࣊绾鸓ᬪ哴s
[ 1165.482383][T16651] usb 2-1: SerialNumber: 抡֨顼쐼⃉ꝫ㧨㙘ܓ슪ꀡ⚃⶟墔蓼༣鴾Ꚑ儧홳ڋ쪗鸎
[ 1165.576638][T16651] usb 2-1: can't set config #1, error -71
[ 1165.604878][T17779] loop4: detected capacity change from 0 to 1024
[ 1165.628641][T17779] EXT4-fs: Invalid want_extra_isize 137
[ 1165.660671][T16651] usb 2-1: USB disconnect, device number 22
[ 1165.698141][T12530] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1165.858389][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[ 1166.897994][T17801] loop1: detected capacity change from 0 to 512
[ 1167.151328][T12530] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1167.600085][T17801] loop1: detected capacity change from 0 to 1024
[ 1167.711900][T17797] kvm [17790]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x5500000800
[ 1167.765649][   T26] audit: type=1800 audit(1726048588.326:489): pid=17801 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2763" name="bus" dev="loop1" ino=26 res=0 errno=0
[ 1167.830901][T17797] kvm [17790]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x7100000800
[ 1167.888851][T17797] kvm [17790]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0xa600000000
[ 1167.941452][T17797] kvm [17790]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0xb200000000
[ 1168.073844][T17813] loop2: detected capacity change from 0 to 16
[ 1168.209499][T17813] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1168.233450][T17813] erofs: (device loop2): z_erofs_readahead: readahead error at page 12 @ nid 36
[ 1168.243276][T17813] erofs: (device loop2): z_erofs_readahead: readahead error at page 10 @ nid 36
[ 1168.253219][T17813] erofs: (device loop2): z_erofs_readahead: readahead error at page 6 @ nid 36
[ 1168.262433][T17813] erofs: (device loop2): z_erofs_readahead: readahead error at page 4 @ nid 36
[ 1168.273895][T17813] erofs: (device loop2): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[ 1168.283462][T17813] erofs: (device loop2): z_erofs_readahead: readahead error at page 0 @ nid 36
[ 1168.293444][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.293444][T17813] loop2: rw=524288, sector=296, nr_sectors = 16 limit=16
[ 1168.307452][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.307452][T17813] loop2: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[ 1168.321755][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.321755][T17813] loop2: rw=524288, sector=6520, nr_sectors = 16 limit=16
[ 1168.335823][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.335823][T17813] loop2: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[ 1168.350378][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.350378][T17813] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[ 1168.364355][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.364355][T17813] loop2: rw=524288, sector=720, nr_sectors = 16 limit=16
[ 1168.378402][T17813] syz.2.2765: attempt to access beyond end of device
[ 1168.378402][T17813] loop2: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[ 1168.785535][ T6777] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1169.018445][T17830] loop3: detected capacity change from 0 to 256
[ 1169.029192][T17830] FAT-fs (loop3): Unrecognized mount option "00000000000000000004" or missing value
[ 1170.916685][T16908] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1170.967564][T12530] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1171.226192][ T6777] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1171.234837][ T6777] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1171.245192][ T6777] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1171.256104][ T6777] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1171.269394][ T6777] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1171.305497][T16908] usb 5-1: Using ep0 maxpacket: 16
[ 1171.356107][T17850] netlink: 'syz.3.2778': attribute type 2 has an invalid length.
[ 1171.401509][ T6777] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1171.418518][ T6777] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1171.435832][T16908] usb 5-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[ 1171.455979][T16908] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1171.465016][ T6777] usb 2-1: Product: syz
[ 1171.474346][T17852] loop2: detected capacity change from 0 to 1024
[ 1171.480818][ T6777] usb 2-1: Manufacturer: syz
[ 1171.504343][T16908] usb 5-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00
[ 1171.545585][ T6777] usb 2-1: can't set config #1, error -71
[ 1171.551757][T16908] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1171.576311][ T6777] usb 2-1: USB disconnect, device number 23
[ 1172.959384][T16908] usb 5-1: config 0 descriptor??
[ 1173.008009][T17852] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1173.018106][T16908] usb 5-1: can't set config #0, error -71
[ 1173.042846][T16908] usb 5-1: USB disconnect, device number 26
[ 1173.101585][T17852] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[ 1173.165356][T16616] EXT4-fs (loop2): unmounting filesystem.
[ 1173.250230][T17871] ------------[ cut here ]------------
[ 1173.256258][T17871] WARNING: CPU: 1 PID: 17871 at kernel/softirq.c:376 __local_bh_enable_ip+0x1b3/0x1f0
[ 1173.265846][T17871] Modules linked in:
[ 1173.269752][T17871] CPU: 1 PID: 17871 Comm: syz.3.2783 Not tainted 6.1.109-syzkaller #0
[ 1173.277910][T17871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1173.287978][T17871] RIP: 0010:__local_bh_enable_ip+0x1b3/0x1f0
[ 1173.293983][T17871] Code: 04 25 28 00 00 00 48 3b 44 24 60 75 4a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b e9 d0 fe ff ff e8 3f 00 00 00 eb a2 <0f> 0b e9 02 ff ff ff 48 c7 c1 24 10 9a 8e 80 e1 07 80 c1 03 38 c1
[ 1173.313602][T17871] RSP: 0018:ffffc90005dff060 EFLAGS: 00010046
[ 1173.319686][T17871] RAX: 0000000000000000 RBX: 1ffff92000bbfe10 RCX: ffffc90005dff003
[ 1173.327670][T17871] RDX: 0000000000000005 RSI: 0000000000000200 RDI: ffffffff889b5606
[ 1173.335652][T17871] RBP: ffffc90005dff110 R08: dffffc0000000000 R09: fffffbfff1d33b6e
[ 1173.343633][T17871] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 1173.351615][T17871] R13: 1ffff1100c359420 R14: ffffc90005dff0a0 R15: 0000000000000200
[ 1173.359598][T17871] FS:  00007f2c1f2106c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1173.368534][T17871] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1173.375118][T17871] CR2: 00007f245e537a8c CR3: 000000007e4d5000 CR4: 00000000003526e0
[ 1173.383090][T17871] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1173.391069][T17871] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1173.399045][T17871] Call Trace:
[ 1173.402325][T17871]  <TASK>
[ 1173.405251][T17871]  ? __warn+0x15a/0x520
[ 1173.409423][T17871]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1173.414812][T17871]  ? report_bug+0x2af/0x500
[ 1173.419321][T17871]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1173.424703][T17871]  ? handle_bug+0x3d/0x70
[ 1173.429025][T17871]  ? exc_invalid_op+0x16/0x40
[ 1173.433781][T17871]  ? asm_exc_invalid_op+0x16/0x20
[ 1173.438816][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1173.443924][T17871]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1173.449299][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1173.454406][T17871]  ? _local_bh_enable+0xa0/0xa0
[ 1173.459267][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1173.464380][T17871]  __dev_queue_xmit+0x1790/0x3cf0
[ 1173.469414][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1173.474527][T17871]  ? netdev_core_pick_tx+0x320/0x320
[ 1173.479820][T17871]  ? __copy_skb_header+0x47b/0x600
[ 1173.484932][T17871]  ? memcpy+0x3c/0x60
[ 1173.488910][T17871]  ? __copy_skb_header+0x47b/0x600
[ 1173.494023][T17871]  ? __skb_clone+0x454/0x6c0
[ 1173.498616][T17871]  ? skb_clone+0x219/0x360
[ 1173.503051][T17871]  __netlink_deliver_tap+0x510/0x770
[ 1173.508361][T17871]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1173.513579][T17871]  netlink_deliver_tap+0x19d/0x1b0
[ 1173.518698][T17871]  netlink_broadcast+0xb71/0x10b0
[ 1173.523740][T17871]  genlmsg_multicast_netns+0x8e/0xc0
[ 1173.529025][T17871]  nl80211_frame_tx_status+0x8f1/0xe50
[ 1173.534492][T17871]  ? cfg80211_control_port_tx_status+0x1c0/0x1c0
[ 1173.540823][T17871]  ? do_raw_spin_unlock+0x137/0x8a0
[ 1173.546023][T17871]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1173.551916][T17871]  ? _raw_spin_unlock+0x40/0x40
[ 1173.556772][T17871]  ? ieee80211_report_used_skb+0x1173/0x1d60
[ 1173.562751][T17871]  ieee80211_report_used_skb+0x1534/0x1d60
[ 1173.568572][T17871]  ? ieee80211_handle_filtered_frame+0x750/0x750
[ 1173.574916][T17871]  ? _raw_spin_lock_irqsave+0xac/0x120
[ 1173.580392][T17871]  ? _raw_spin_lock_irqsave+0xdd/0x120
[ 1173.585851][T17871]  ? _raw_spin_lock+0x40/0x40
[ 1173.590538][T17871]  ? skb_queue_purge+0x192/0x1c0
[ 1173.595479][T17871]  ieee80211_free_txskb+0x20/0x30
[ 1173.600500][T17871]  ieee80211_do_stop+0x1123/0x1d70
[ 1173.605619][T17871]  ? ieee80211_sdata_stop+0x70/0x70
[ 1173.610811][T17871]  ? ieee80211_stop_vif_queues+0x157/0x1a0
[ 1173.616616][T17871]  ? ieee80211_check_concurrent_iface+0x6ff/0x790
[ 1173.623035][T17871]  ieee80211_if_change_type+0x4b5/0xaa0
[ 1173.628583][T17871]  ieee80211_change_iface+0x61/0x480
[ 1173.633865][T17871]  ? cfg80211_mlme_purge_registrations+0x1f6/0x230
[ 1173.640370][T17871]  cfg80211_change_iface+0x93b/0x11c0
[ 1173.645748][T17871]  __cfg80211_wext_siwmode+0x1b7/0x280
[ 1173.651213][T17871]  ? __cfg80211_wext_giwfreq+0x8d0/0x8d0
[ 1173.656848][T17871]  ? apparmor_capable+0x12e/0x190
[ 1173.661863][T17871]  ? full_name_hash+0x8f/0xe0
[ 1173.666539][T17871]  ioctl_standard_call+0xdb/0x280
[ 1173.671556][T17871]  ? __cfg80211_wext_giwfreq+0x8d0/0x8d0
[ 1173.677190][T17871]  ? __cfg80211_wext_giwfreq+0x8d0/0x8d0
[ 1173.682818][T17871]  wext_ioctl_dispatch+0x16f/0x460
[ 1173.687920][T17871]  ? wext_ioctl_dispatch+0x460/0x460
[ 1173.693215][T17871]  ? iw_handler_get_private+0x1e0/0x1e0
[ 1173.698776][T17871]  wext_handle_ioctl+0x15b/0x260
[ 1173.703723][T17871]  ? call_commit_handler+0xf0/0xf0
[ 1173.708848][T17871]  sock_ioctl+0x13b/0x770
[ 1173.713181][T17871]  ? sock_poll+0x410/0x410
[ 1173.717591][T17871]  ? __fget_files+0x28/0x4a0
[ 1173.722175][T17871]  ? __fget_files+0x435/0x4a0
[ 1173.726848][T17871]  ? __fget_files+0x28/0x4a0
[ 1173.731436][T17871]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1173.736366][T17871]  ? security_file_ioctl+0x7d/0xa0
[ 1173.741469][T17871]  ? sock_poll+0x410/0x410
[ 1173.745878][T17871]  __se_sys_ioctl+0xf1/0x160
[ 1173.750469][T17871]  do_syscall_64+0x3b/0xb0
[ 1173.754882][T17871]  ? clear_bhb_loop+0x45/0xa0
[ 1173.759556][T17871]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1173.765444][T17871] RIP: 0033:0x7f2c1e37def9
[ 1173.769852][T17871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1173.789450][T17871] RSP: 002b:00007f2c1f210038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1173.797863][T17871] RAX: ffffffffffffffda RBX: 00007f2c1e535f80 RCX: 00007f2c1e37def9
[ 1173.805824][T17871] RDX: 0000000020000000 RSI: 0000000000008b06 RDI: 0000000000000003
[ 1173.813784][T17871] RBP: 00007f2c1e3f09f6 R08: 0000000000000000 R09: 0000000000000000
[ 1173.821744][T17871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1173.829706][T17871] R13: 0000000000000000 R14: 00007f2c1e535f80 R15: 00007ffcdcd456b8
[ 1173.837709][T17871]  </TASK>
[ 1173.840726][T17871] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1173.847998][T17871] CPU: 1 PID: 17871 Comm: syz.3.2783 Not tainted 6.1.109-syzkaller #0
[ 1173.856231][T17871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1173.866277][T17871] Call Trace:
[ 1173.869549][T17871]  <TASK>
[ 1173.872471][T17871]  dump_stack_lvl+0x1e3/0x2cb
[ 1173.877154][T17871]  ? nf_tcp_handle_invalid+0x642/0x642
[ 1173.882610][T17871]  ? panic+0x764/0x764
[ 1173.886671][T17871]  ? 0xffffffffa00038c0
[ 1173.890819][T17871]  ? vscnprintf+0x59/0x80
[ 1173.895148][T17871]  panic+0x318/0x764
[ 1173.899038][T17871]  ? __warn+0x169/0x520
[ 1173.903184][T17871]  ? memcpy_page_flushcache+0xfc/0xfc
[ 1173.908560][T17871]  __warn+0x348/0x520
[ 1173.912536][T17871]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1173.917911][T17871]  report_bug+0x2af/0x500
[ 1173.922228][T17871]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1173.927597][T17871]  handle_bug+0x3d/0x70
[ 1173.931742][T17871]  exc_invalid_op+0x16/0x40
[ 1173.936232][T17871]  asm_exc_invalid_op+0x16/0x20
[ 1173.941075][T17871] RIP: 0010:__local_bh_enable_ip+0x1b3/0x1f0
[ 1173.947052][T17871] Code: 04 25 28 00 00 00 48 3b 44 24 60 75 4a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b e9 d0 fe ff ff e8 3f 00 00 00 eb a2 <0f> 0b e9 02 ff ff ff 48 c7 c1 24 10 9a 8e 80 e1 07 80 c1 03 38 c1
[ 1173.966649][T17871] RSP: 0018:ffffc90005dff060 EFLAGS: 00010046
[ 1173.972706][T17871] RAX: 0000000000000000 RBX: 1ffff92000bbfe10 RCX: ffffc90005dff003
[ 1173.980669][T17871] RDX: 0000000000000005 RSI: 0000000000000200 RDI: ffffffff889b5606
[ 1173.988630][T17871] RBP: ffffc90005dff110 R08: dffffc0000000000 R09: fffffbfff1d33b6e
[ 1173.996602][T17871] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 1174.004560][T17871] R13: 1ffff1100c359420 R14: ffffc90005dff0a0 R15: 0000000000000200
[ 1174.012533][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1174.017645][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1174.022745][T17871]  ? _local_bh_enable+0xa0/0xa0
[ 1174.027597][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1174.032701][T17871]  __dev_queue_xmit+0x1790/0x3cf0
[ 1174.037724][T17871]  ? __dev_queue_xmit+0x2d6/0x3cf0
[ 1174.042828][T17871]  ? netdev_core_pick_tx+0x320/0x320
[ 1174.048105][T17871]  ? __copy_skb_header+0x47b/0x600
[ 1174.053211][T17871]  ? memcpy+0x3c/0x60
[ 1174.057272][T17871]  ? __copy_skb_header+0x47b/0x600
[ 1174.062380][T17871]  ? __skb_clone+0x454/0x6c0
[ 1174.066971][T17871]  ? skb_clone+0x219/0x360
[ 1174.071383][T17871]  __netlink_deliver_tap+0x510/0x770
[ 1174.076671][T17871]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1174.081861][T17871]  netlink_deliver_tap+0x19d/0x1b0
[ 1174.086967][T17871]  netlink_broadcast+0xb71/0x10b0
[ 1174.091998][T17871]  genlmsg_multicast_netns+0x8e/0xc0
[ 1174.097274][T17871]  nl80211_frame_tx_status+0x8f1/0xe50
[ 1174.102735][T17871]  ? cfg80211_control_port_tx_status+0x1c0/0x1c0
[ 1174.109056][T17871]  ? do_raw_spin_unlock+0x137/0x8a0
[ 1174.114253][T17871]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1174.120135][T17871]  ? _raw_spin_unlock+0x40/0x40
[ 1174.124986][T17871]  ? ieee80211_report_used_skb+0x1173/0x1d60
[ 1174.130959][T17871]  ieee80211_report_used_skb+0x1534/0x1d60
[ 1174.136769][T17871]  ? ieee80211_handle_filtered_frame+0x750/0x750
[ 1174.143088][T17871]  ? _raw_spin_lock_irqsave+0xac/0x120
[ 1174.148542][T17871]  ? _raw_spin_lock_irqsave+0xdd/0x120
[ 1174.153995][T17871]  ? _raw_spin_lock+0x40/0x40
[ 1174.158662][T17871]  ? skb_queue_purge+0x192/0x1c0
[ 1174.163589][T17871]  ieee80211_free_txskb+0x20/0x30
[ 1174.168602][T17871]  ieee80211_do_stop+0x1123/0x1d70
[ 1174.173725][T17871]  ? ieee80211_sdata_stop+0x70/0x70
[ 1174.178911][T17871]  ? ieee80211_stop_vif_queues+0x157/0x1a0
[ 1174.184711][T17871]  ? ieee80211_check_concurrent_iface+0x6ff/0x790
[ 1174.191124][T17871]  ieee80211_if_change_type+0x4b5/0xaa0
[ 1174.196669][T17871]  ieee80211_change_iface+0x61/0x480
[ 1174.201950][T17871]  ? cfg80211_mlme_purge_registrations+0x1f6/0x230
[ 1174.208446][T17871]  cfg80211_change_iface+0x93b/0x11c0
[ 1174.213819][T17871]  __cfg80211_wext_siwmode+0x1b7/0x280
[ 1174.219275][T17871]  ? __cfg80211_wext_giwfreq+0x8d0/0x8d0
[ 1174.224906][T17871]  ? apparmor_capable+0x12e/0x190
[ 1174.229922][T17871]  ? full_name_hash+0x8f/0xe0
[ 1174.234590][T17871]  ioctl_standard_call+0xdb/0x280
[ 1174.239604][T17871]  ? __cfg80211_wext_giwfreq+0x8d0/0x8d0
[ 1174.245233][T17871]  ? __cfg80211_wext_giwfreq+0x8d0/0x8d0
[ 1174.250857][T17871]  wext_ioctl_dispatch+0x16f/0x460
[ 1174.255957][T17871]  ? wext_ioctl_dispatch+0x460/0x460
[ 1174.261229][T17871]  ? iw_handler_get_private+0x1e0/0x1e0
[ 1174.266767][T17871]  wext_handle_ioctl+0x15b/0x260
[ 1174.271695][T17871]  ? call_commit_handler+0xf0/0xf0
[ 1174.276812][T17871]  sock_ioctl+0x13b/0x770
[ 1174.281135][T17871]  ? sock_poll+0x410/0x410
[ 1174.285543][T17871]  ? __fget_files+0x28/0x4a0
[ 1174.290121][T17871]  ? __fget_files+0x435/0x4a0
[ 1174.294786][T17871]  ? __fget_files+0x28/0x4a0
[ 1174.299371][T17871]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1174.304297][T17871]  ? security_file_ioctl+0x7d/0xa0
[ 1174.309399][T17871]  ? sock_poll+0x410/0x410
[ 1174.313804][T17871]  __se_sys_ioctl+0xf1/0x160
[ 1174.318390][T17871]  do_syscall_64+0x3b/0xb0
[ 1174.322798][T17871]  ? clear_bhb_loop+0x45/0xa0
[ 1174.327478][T17871]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1174.333363][T17871] RIP: 0033:0x7f2c1e37def9
[ 1174.337766][T17871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1174.357360][T17871] RSP: 002b:00007f2c1f210038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1174.365764][T17871] RAX: ffffffffffffffda RBX: 00007f2c1e535f80 RCX: 00007f2c1e37def9
[ 1174.373727][T17871] RDX: 0000000020000000 RSI: 0000000000008b06 RDI: 0000000000000003
[ 1174.381687][T17871] RBP: 00007f2c1e3f09f6 R08: 0000000000000000 R09: 0000000000000000
[ 1174.389646][T17871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1174.397603][T17871] R13: 0000000000000000 R14: 00007f2c1e535f80 R15: 00007ffcdcd456b8
[ 1174.405578][T17871]  </TASK>
[ 1174.408709][T17871] Kernel Offset: disabled
[ 1174.413204][T17871] Rebooting in 86400 seconds..