last executing test programs:

12.560713545s ago: executing program 4 (id=829):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0x20000, 0x8000c61)
r4 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
writev(r4, &(0x7f0000000040)=[{&(0x7f0000000000)="d2", 0x1}], 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x41d9, 0x4)
recvmmsg(r0, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0)

11.377408491s ago: executing program 3 (id=837):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800040000000000050017"], 0x44}}, 0x0)

10.596056084s ago: executing program 3 (id=838):
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs$pagemap(0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x6, 0x10001, 0xd, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_BT_DEFER_SETUP(r6, 0x112, 0x7, &(0x7f0000000340)=0x1, &(0x7f00000003c0)=0x4)

9.212170488s ago: executing program 4 (id=841):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00000010004b0422000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002800800040000000000"], 0x4c}}, 0x0)

8.844390776s ago: executing program 1 (id=843):
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffc6e)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000100))

7.315015297s ago: executing program 0 (id=848):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, 0x0, 0x0)
io_setup(0x3, &(0x7f00000002c0)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r4, &(0x7f0000000040)="0a00ffff0000", 0x6}])
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

7.046258212s ago: executing program 3 (id=850):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x1)
mlock2(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x0)
mlock2(&(0x7f0000000000/0x8000)=nil, 0x8000, 0x0)

5.896960061s ago: executing program 3 (id=852):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x33e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xffff, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x10}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000006c0)={0x24, 0x0, 0x0, &(0x7f0000000780)={0x0, 0x22, 0x1, {[@local=@item_012={0x0, 0x2, 0xa}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000d40)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\a'], 0x0, 0x0, 0x0, 0x0}, 0x0)

5.433028982s ago: executing program 4 (id=853):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x18}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f40)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00bca75fdc7accc038baafb8c2ab7a5293"], 0x40}}, 0x0)

5.245613624s ago: executing program 0 (id=854):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="0002"], 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = epoll_create1(0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000000))
ioctl$BINDER_THREAD_EXIT(r4, 0x40046208, 0x0)

5.143757778s ago: executing program 1 (id=855):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000031c0000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, 0x0)
r8 = dup3(r7, r6, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f00006d2000/0x1000)=nil, 0x1000, 0x1, 0x11, r9, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000440), 0x0, 0xfeffffffffffff, 0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)

5.142701067s ago: executing program 3 (id=856):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x9, 0x3, 0x328, 0x100, 0xffffffff, 0xffffffff, 0x100, 0xffffffff, 0x258, 0xffffffff, 0xffffffff, 0x258, 0xffffffff, 0x3, &(0x7f0000000180), {[{{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x4, 0x4}, {0x0, 0x0, 0x2}, 0xc1, 0xfb}}}, {{@uncond, 0x0, 0xf0, 0x158, 0x0, {}, [@common=@dst={{0x48}, {0x80000000, 0x3, 0x1, [0x6, 0x1, 0x7, 0x2, 0x2, 0xde, 0x7, 0x8, 0x6, 0x7, 0x1000, 0x5, 0x80, 0x200, 0x0, 0x645], 0xf}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x4, 0x5, 0x400, 0x100, 'netbios-ns\x00', 'syz1\x00', {0x8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x20040801)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000280)=0x8001, 0x4)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
close(r5)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGL2TPSTATS(r6, 0x80487436, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f0000000040)})
add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0x14}, 0x48, 0xffffffffffffffff)

4.289081965s ago: executing program 4 (id=857):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r4)
r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r4)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r3, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r5, 0xb6c91f939c8321d, 0x0, 0x0, {0x10}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0xf, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x8}]}, 0x30}}, 0x0)

4.268507645s ago: executing program 1 (id=858):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0x2}], 0x1, &(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaac141400000000001400000000000000000000000700000007038b"], 0x38}, 0x0)

4.096064154s ago: executing program 1 (id=859):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000005000000020000000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000002000000008000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='ext4_allocate_inode\x00', r1}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000580)='ext4_allocate_inode\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)

3.686627465s ago: executing program 1 (id=861):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x17ef, 0x6085, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xfd, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000c00)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00220500"], 0x0}, 0x0)

3.329041552s ago: executing program 2 (id=863):
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x2000410, &(0x7f0000000000)={[{@commit={'commit', 0x3d, 0x5}}]}, 0x1, 0x79f, &(0x7f00000012c0)="$eJzs3ctrXFUYAPDvTl5NGk0EQesqIGigdGJrbBUUKi5EsFDQtW1IpqFmkimZSWlCwRYR3AgqLgTddO2j7sSdj63+Fy6kpWpbrLqQkTuPdtLMTDOkM1PI7wc3c869d+ac7577OJNzuRPArjWV/slE7IuID5OIidr8JCKGKqnBiKPV9W5dPz+fTkmUy2/8kVTWuXn9/Hw0vCe1t5Z5PCJ+fC9if2ZrucX1jaW5fD63WsvPlJbPzBTXNw6cXp5bzC3mVg4fnJ09dOS5I4fvX6x//bIxfvWjV5/++ui/7z52+YOfkjga47VljXHcL1MxVdsmQ+km3OSV+11YnyVtlr3Uw3rQmfTQHKge5bEvJmKgkmphtJc1AwC65Z2IKAMAu0zi+g8Au0xETEZt/Ks+9ft/Er107eWI2FONvz6+WV0yWBuz21MZBx27mWwaGUnqG26HpiLi82/f+jKdokvjkADNXLgYEScnp7ae/5Mt9yx06pl2C8sjlZepu2Y7/0HvfJ/2f55v1v/L3O7/RJP+T3r0TpXb3fWzPfc+/jNXdlxIG2n/78WGe9tuNcRfMzlQyz1U6fMNJadO53Ppue3hiJiOoZE0f7CyavPtMX3jvxutym/s//358dtfpOVvvgMnc2VwZPN7FuZKczsKusG1ixFPDDaLP7nd/kmL/u/xbZbx2gvvf9ZqWRp/Gnd9SstPX3cUVAfKlyKeatr+d9oyaXt/4kxld5ip7xRNfPPrp2Otym9s/3RKy69/F+iFtP3H2sc/mTTer1nsvIyfL0380GrZveNvvv8PJ29W0sO1eefmSqXVgxHDyetb5x+68956vr5+Gv/0k82P/3b7f/qd8OQ24x+8+vtXtY9qGn/Fhf61/0JH7d8mUb8e3LXo8q2lgVblb6/9Zyup6dqc7Zz/7lHTHezNAAAAAAAAAAAAAAAAAAAAAAAAANC5TESMR5LJ3k5nMtls9Te8H42xTL5QLO0/VVhbWYjx76rPP83UH3U50fA81PJA9Xn49fyh2Jx/NiIeiYhPRkYr+ex8Ib/Q7+ABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoGZvi9//T/020u/aAQBds6ffFQAAes71HwB2n86u/6NdqwcA0Dsdf/8vJ92pCADQM9u+/p/sbj0AgN4x/g8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECXHT92LJ3Kf18/P5/mF86ury0Vzh5YyBWXsstr89n5wuqZ7GKhsJjPZecLyy0/6EL1JV8onJmNlbVzM6VcsTRTXN84sVxYWymdOL08t5g7kRvqWWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsH3F9Y2luXw+tyrRNjH6YFSjh4nkn3brDEb/a7gbEsN9K73xLDHavxMUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPu/wAAAP//wJMmNg==")
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
close(0xffffffffffffffff)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x20, r5, 0x301, 0x0, 0x0, {{0x32}, {@void, @val={0x4}}}}, 0x20}}, 0x0)

2.834902776s ago: executing program 4 (id=864):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f00000002c0), 0x2, 0x0)
r3 = openat$cgroup_procs(r1, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000040), 0x12)
write$cgroup_freezer_state(r2, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r2, &(0x7f0000000080)='THAWED\x00', 0x7)

2.819842173s ago: executing program 0 (id=865):
r0 = socket$key(0xf, 0x3, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x400008a, 0x0)
sendmsg$key(r0, &(0x7f0000000300)={0x9, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x2, 0x9, 0x0, 0x9, 0x2}, 0x10}}, 0x50)

2.736934993s ago: executing program 1 (id=866):
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x118)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1808014, &(0x7f0000000600)=ANY=[@ANYBLOB="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"/716], 0x5, 0x55af, &(0x7f0000006a40)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x4008c0d)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x93, &(0x7f00000003c0)=""/147, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3000000010008900"/20, @ANYRES32=r4, @ANYBLOB="100201000000000008000a", @ANYRES32=0x0, @ANYBLOB="080005", @ANYRES32=0x0, @ANYBLOB], 0x30}}, 0x4)

2.698938138s ago: executing program 4 (id=867):
syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f00000001c0)='./file0\x00', 0x10, &(0x7f0000000700)={[{@i_version}, {@noquota}, {@bh}, {@nodelalloc}, {@nouid32}, {@nouid32}, {@debug}, {@barrier_val={'barrier', 0x3d, 0x7}}, {}]}, 0x1, 0x79e, &(0x7f0000000800)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x1b)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r2, 0x4b4b, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'gretap0\x00', &(0x7f0000000200)={'syztnl1\x00', 0x0, 0x1, 0x80, 0xa, 0x800, {{0x8, 0x4, 0x3, 0x1e, 0x20, 0x67, 0x0, 0x1, 0x4, 0x0, @multicast1, @loopback, {[@lsrr={0x83, 0x7, 0xf5, [@broadcast]}, @generic={0x83, 0x2}]}}}}})
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1c8}}, 0x0)

2.485497699s ago: executing program 2 (id=868):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.248955103s ago: executing program 2 (id=869):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
getsockname$packet(r4, 0x0, &(0x7f0000000200))
r5 = syz_open_dev$mouse(&(0x7f0000000040), 0x9, 0x0)
recvfrom(r5, &(0x7f0000000180)=""/66, 0x42, 0x40, &(0x7f0000000340)=@in6={0xa, 0x4e21, 0x8, @mcast1, 0x1ff}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)

2.073475536s ago: executing program 0 (id=870):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_vlan\x00'}, @IFLA_MTU={0x8, 0x4, 0x100}]}, 0x3c}}, 0x0)

1.291301408s ago: executing program 2 (id=871):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getresgid(&(0x7f0000000040), &(0x7f0000000180), &(0x7f0000000240))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x1c, r1, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

644.945869ms ago: executing program 3 (id=872):
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000008000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000140000fbb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000170000280000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYBLOB='\x00'/14], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f00000004c0)={'gretap0\x00', 0x8})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x1, 0x2, 0x0, 0x0, 0x8c}, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x5, &(0x7f00000002c0)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r5, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r7, 0x400452c8, &(0x7f0000000100))

606.026954ms ago: executing program 0 (id=873):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000210018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
dup3(r3, r2, 0x0)

447.693063ms ago: executing program 0 (id=874):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r6)
getsockname$packet(r6, &(0x7f0000000180)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r7, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)

121.047667ms ago: executing program 2 (id=875):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000640)=ANY=[@ANYBLOB="6801"], 0x168)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
umount2(&(0x7f0000000080)='./file0/../file0\x00', 0xb)

0s ago: executing program 2 (id=876):
r0 = openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0xb)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)

kernel console output (not intermixed with test programs):

etdevsim0 netdevsim1: renamed from eth1
[   92.841626][ T6951] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.850922][ T7022] NILFS error (device loop3): nilfs_dotdot: directory #12 missing '.'
[   92.866108][ T7022] Remounting filesystem read-only
[   92.900845][   T42] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.943256][ T6951] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.075391][   T42] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.100088][ T7037] syzkaller0: entered promiscuous mode
[   93.101770][ T7037] syzkaller0: entered allmulticast mode
[   93.155690][ T6951] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.416849][ T7040] loop3: detected capacity change from 0 to 40427
[   93.422945][ T7040] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   93.429748][ T7040] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   93.445408][ T7040] F2FS-fs (loop3): Found nat_bits in checkpoint
[   93.454288][ T6437] Bluetooth: hci0: command tx timeout
[   93.499902][ T7040] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   93.512243][ T7040] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   93.568870][ T7040] syz.3.101: attempt to access beyond end of device
[   93.568870][ T7040] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[   93.799873][ T6616] syz-executor: attempt to access beyond end of device
[   93.799873][ T6616] loop3: rw=2051, sector=49152, nr_sectors = 4096 limit=40427
[   93.808383][ T6616] syz-executor: attempt to access beyond end of device
[   93.808383][ T6616] loop3: rw=2051, sector=57344, nr_sectors = 4096 limit=40427
[   93.814962][ T6616] syz-executor: attempt to access beyond end of device
[   93.814962][ T6616] loop3: rw=2051, sector=45096, nr_sectors = 8 limit=40427
[   93.818649][ T6616] F2FS-fs (loop3): Issue discard(6144, 6144, 512) failed, ret: -5
[   93.820584][ T6616] F2FS-fs (loop3): Issue discard(7168, 7168, 512) failed, ret: -5
[   93.822532][ T6616] F2FS-fs (loop3): Issue discard(5637, 5637, 1) failed, ret: -5
[   94.267502][ T7049] loop3: detected capacity change from 0 to 40427
[   94.271481][ T7049] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   94.273403][ T7049] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   94.287089][ T7049] F2FS-fs (loop3): Found nat_bits in checkpoint
[   94.302657][ T7049] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   94.304609][ T7049] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   94.328369][ T7049] syz.3.102: attempt to access beyond end of device
[   94.328369][ T7049] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[   94.474841][ T6616] syz-executor: attempt to access beyond end of device
[   94.474841][ T6616] loop3: rw=2051, sector=49152, nr_sectors = 4096 limit=40427
[   94.479799][ T6616] syz-executor: attempt to access beyond end of device
[   94.479799][ T6616] loop3: rw=2051, sector=57344, nr_sectors = 4096 limit=40427
[   94.484189][ T6616] syz-executor: attempt to access beyond end of device
[   94.484189][ T6616] loop3: rw=2051, sector=45096, nr_sectors = 8 limit=40427
[   94.487976][ T6616] F2FS-fs (loop3): Issue discard(6144, 6144, 512) failed, ret: -5
[   94.493799][ T6437] Bluetooth: hci1: command tx timeout
[   94.494099][ T6616] F2FS-fs (loop3): Issue discard(7168, 7168, 512) failed, ret: -5
[   94.497265][ T6616] F2FS-fs (loop3): Issue discard(5637, 5637, 1) failed, ret: -5
[   95.534020][ T6437] Bluetooth: hci0: command tx timeout
[   96.573729][ T6437] Bluetooth: hci1: command tx timeout
[  103.281235][ T6427] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  103.288447][ T6427] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  103.290983][ T6427] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  103.293435][ T6427] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  103.298759][ T6427] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  103.300870][ T6427] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  104.265844][ T6437] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  104.269528][ T6437] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  104.272127][ T6437] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  104.275360][ T6437] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  104.277493][ T6437] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  104.279460][ T6437] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  104.366114][ T6951] 8021q: adding VLAN 0 to HW filter on device team0
[  104.497802][  T253] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.499654][  T253] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.502426][  T253] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.504315][  T253] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.521452][ T6951] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  104.530303][ T6951] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  105.302567][   T42] bridge_slave_1: left allmulticast mode
[  105.335375][   T42] bridge_slave_1: left promiscuous mode
[  105.337269][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.365122][   T42] bridge_slave_0: left allmulticast mode
[  105.366731][   T42] bridge_slave_0: left promiscuous mode
[  105.368286][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.375705][ T6437] Bluetooth: hci2: command tx timeout
[  105.386760][   T42] bridge_slave_1: left allmulticast mode
[  105.388436][   T42] bridge_slave_1: left promiscuous mode
[  105.390026][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.434217][   T42] bridge_slave_0: left allmulticast mode
[  105.435763][   T42] bridge_slave_0: left promiscuous mode
[  105.437369][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.715158][ T7099] loop3: detected capacity change from 0 to 32768
[  105.729726][ T7099] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.111 (7099)
[  105.738939][ T7099] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  105.741486][ T7099] BTRFS info (device loop3): using crc32c (crc32c-generic) checksum algorithm
[  105.743789][ T7099] BTRFS info (device loop3): using free-space-tree
[  105.909291][ T6616] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  106.333913][ T6437] Bluetooth: hci3: command tx timeout
[  107.453642][ T6437] Bluetooth: hci2: command tx timeout
[  107.767054][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.812954][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.857136][   T42] bond0 (unregistering): Released all slaves
[  108.424776][ T6437] Bluetooth: hci3: command tx timeout
[  108.548245][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.586372][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.636120][   T42] bond0 (unregistering): Released all slaves
[  108.781767][ T6951] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.928288][ T7060] chnl_net:caif_netlink_parms(): no params data found
[  109.070999][ T7064] chnl_net:caif_netlink_parms(): no params data found
[  109.349054][ T7060] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.350881][ T7060] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.352576][ T7060] bridge_slave_0: entered allmulticast mode
[  109.357675][ T7060] bridge_slave_0: entered promiscuous mode
[  109.360971][ T7060] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.362669][ T7060] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.369110][ T7060] bridge_slave_1: entered allmulticast mode
[  109.371189][ T7060] bridge_slave_1: entered promiscuous mode
[  109.475401][ T7064] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.478460][ T7064] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.480854][ T7064] bridge_slave_0: entered allmulticast mode
[  109.484147][ T7064] bridge_slave_0: entered promiscuous mode
[  109.491458][ T7064] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.498190][ T7064] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.500463][ T7064] bridge_slave_1: entered allmulticast mode
[  109.502724][ T7064] bridge_slave_1: entered promiscuous mode
[  109.507368][ T7060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.511808][ T7060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.529227][ T6951] veth0_vlan: entered promiscuous mode
[  109.533827][ T6437] Bluetooth: hci2: command tx timeout
[  109.626747][ T7064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.653835][ T7064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.693690][ T6944] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  109.697852][ T6944] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  109.711644][ T7060] team0: Port device team_slave_0 added
[  109.734606][ T6951] veth1_vlan: entered promiscuous mode
[  109.746878][ T6944] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  109.861101][ T7060] team0: Port device team_slave_1 added
[  109.869862][ T7064] team0: Port device team_slave_0 added
[  109.879566][ T6944] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  109.887052][ T7064] team0: Port device team_slave_1 added
[  109.890795][ T7060] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.892696][ T7060] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.899701][ T7060] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.022200][ T6951] veth0_macvtap: entered promiscuous mode
[  110.025582][ T7060] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.027410][ T7060] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.036317][ T7060] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.069647][   T42] hsr_slave_0: left promiscuous mode
[  110.104186][   T42] hsr_slave_1: left promiscuous mode
[  110.183899][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  110.186053][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  110.188635][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  110.190863][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  110.198304][   T42] hsr_slave_0: left promiscuous mode
[  110.244030][   T42] hsr_slave_1: left promiscuous mode
[  110.323681][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  110.325705][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  110.328227][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  110.330317][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  110.348426][   T42] veth1_macvtap: left promiscuous mode
[  110.349836][   T42] veth0_macvtap: left promiscuous mode
[  110.351325][   T42] veth1_vlan: left promiscuous mode
[  110.352644][   T42] veth0_vlan: left promiscuous mode
[  110.355625][   T42] veth1_macvtap: left promiscuous mode
[  110.357164][   T42] veth0_macvtap: left promiscuous mode
[  110.358560][   T42] veth1_vlan: left promiscuous mode
[  110.359885][   T42] veth0_vlan: left promiscuous mode
[  110.493929][ T6437] Bluetooth: hci3: command tx timeout
[  111.613764][ T6437] Bluetooth: hci2: command tx timeout
[  112.246945][   T42] team0 (unregistering): Port device team_slave_1 removed
[  112.436030][   T42] team0 (unregistering): Port device team_slave_0 removed
[  112.574147][ T6437] Bluetooth: hci3: command tx timeout
[  116.504821][   T42] team0 (unregistering): Port device team_slave_1 removed
[  116.677046][   T42] team0 (unregistering): Port device team_slave_0 removed
[  118.990494][ T7064] batman_adv: batadv0: Adding interface: batadv_slave_0
[  118.992278][ T7064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  118.998913][ T7064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.003758][ T7064] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.005652][ T7064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.011872][ T7064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.016829][ T6951] veth1_macvtap: entered promiscuous mode
[  119.055912][ T7060] hsr_slave_0: entered promiscuous mode
[  119.094602][ T7060] hsr_slave_1: entered promiscuous mode
[  119.186402][ T6951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.189109][ T6951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.191567][ T6951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.198728][ T6951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.201387][ T6951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.208428][ T6951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.213486][ T6951] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.274409][ T6951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.277125][ T6951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.279458][ T6951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.290195][ T6951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.303978][ T6951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.306962][ T6951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.314722][ T6951] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.374981][ T6951] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.377164][ T6951] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.379395][ T6951] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.381845][ T6951] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.408150][ T6944] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.418025][ T6944] 8021q: adding VLAN 0 to HW filter on device team0
[  119.452977][ T6944] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  119.459159][ T6944] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  119.464330][   T44] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.466040][   T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.468632][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.470600][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.535925][ T7064] hsr_slave_0: entered promiscuous mode
[  119.576074][ T7064] hsr_slave_1: entered promiscuous mode
[  119.775165][ T7064] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.787140][ T7064] Cannot create hsr debugfs directory
[  120.206546][ T7060] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.357846][ T7206] loop3: detected capacity change from 0 to 512
[  120.394152][ T7206] =======================================================
[  120.394152][ T7206] WARNING: The mand mount option has been deprecated and
[  120.394152][ T7206]          and is ignored by this kernel. Remove the mand
[  120.394152][ T7206]          option from the mount to silence this warning.
[  120.394152][ T7206] =======================================================
[  120.415790][ T7060] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.431706][ T7206] ext4: Unknown parameter 'noacl'
[  120.490077][ T6944] 8021q: adding VLAN 0 to HW filter on device batadv0
[  120.603891][   T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.605837][   T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.202207][ T7060] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.228289][ T7228] loop3: detected capacity change from 0 to 512
[  121.230525][ T7228] ext4: Unknown parameter 'noacl'
[  121.238410][  T253] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.240561][  T253] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.431731][ T7060] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.985143][ T6944] veth0_vlan: entered promiscuous mode
[  121.990574][ T6944] veth1_vlan: entered promiscuous mode
[  122.033745][ T6944] veth0_macvtap: entered promiscuous mode
[  122.037367][ T6944] veth1_macvtap: entered promiscuous mode
[  122.137970][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  122.141009][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.143513][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  122.152928][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.159404][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  122.162334][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.173643][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  122.182328][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.186944][ T6944] batman_adv: batadv0: Interface activated: batadv_slave_0
[  122.864734][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  122.867549][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.870050][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  122.890313][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.892873][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  122.903640][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.912962][ T6944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  122.921810][ T6944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  122.927455][ T6944] batman_adv: batadv0: Interface activated: batadv_slave_1
[  123.056430][ T6944] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  123.058771][ T6944] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  123.060923][ T6944] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  123.062996][ T6944] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  123.102477][ T7060] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  123.124931][ T7060] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  123.225715][ T7064] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.242400][ T7243] loop3: detected capacity change from 0 to 40427
[  123.251921][ T7060] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  123.264834][ T7243] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x1fffff
[  123.267043][ T7243] F2FS-fs (loop3): Image doesn't support compression
[  123.268645][ T7243] F2FS-fs (loop3): Image doesn't support compression
[  123.270283][ T7243] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x4
[  123.275492][ T7060] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  123.335548][ T7243] F2FS-fs (loop3): invalid crc value
[  123.352495][ T7243] F2FS-fs (loop3): Found nat_bits in checkpoint
[  123.388562][ T7243] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  123.407801][ T7064] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.452805][  T253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  123.460526][  T253] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.487316][ T6616] syz-executor: attempt to access beyond end of device
[  123.487316][ T6616] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  123.502095][ T6616] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  123.528542][ T7064] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.596338][ T4345] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  123.600117][ T4345] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.688646][ T7064] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.070801][ T7251] loop4: detected capacity change from 0 to 32768
[  124.610340][   T42] bridge_slave_1: left allmulticast mode
[  124.612127][   T42] bridge_slave_1: left promiscuous mode
[  124.614277][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.625510][   T42] bridge_slave_0: left allmulticast mode
[  124.627315][   T42] bridge_slave_0: left promiscuous mode
[  124.633010][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.656149][   T42] bridge_slave_1: left allmulticast mode
[  124.657839][   T42] bridge_slave_1: left promiscuous mode
[  124.659755][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.728886][   T42] bridge_slave_0: left allmulticast mode
[  124.732604][   T42] bridge_slave_0: left promiscuous mode
[  124.742286][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.531602][ T7265] loop3: detected capacity change from 0 to 32768
[  125.640788][ T7265] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  125.809712][ T6616] ocfs2: Unmounting device (7,3) on (node local)
[  125.934986][ T2339] ieee802154 phy0 wpan0: encryption failed: -22
[  125.936711][ T2339] ieee802154 phy1 wpan1: encryption failed: -22
[  127.609959][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  127.646445][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  127.707505][   T42] bond0 (unregistering): Released all slaves
[  128.386363][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  128.426702][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  128.467181][   T42] bond0 (unregistering): Released all slaves
[  128.475285][ T7263] netlink: 'syz.4.126': attribute type 10 has an invalid length.
[  128.483935][ T7263] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.487039][ T7263] team0: Port device bond0 added
[  128.498439][ T7288] bridge0: port 3(vlan2) entered blocking state
[  128.500239][ T7288] bridge0: port 3(vlan2) entered disabled state
[  128.501834][ T7288] vlan2: entered allmulticast mode
[  128.505617][ T7288] vlan2: left allmulticast mode
[  128.519815][ T7060] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.531538][ T7060] 8021q: adding VLAN 0 to HW filter on device team0
[  128.575391][ T4345] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.577268][ T4345] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.734972][  T253] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.736888][  T253] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.753794][ T7064] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  128.766300][ T7064] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  128.807872][ T7064] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  128.811318][ T7064] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  128.880282][ T7292] loop3: detected capacity change from 0 to 32768
[  129.331843][    C1] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:2. Sending cookies.
[  129.918237][ T7064] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.926552][ T7064] 8021q: adding VLAN 0 to HW filter on device team0
[  129.944304][ T3609] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.946197][ T3609] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.948938][ T3609] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.950694][ T3609] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.990452][ T7060] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  129.992837][ T7060] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  130.132781][ T7064] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  130.137183][ T7064] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  130.282603][ T7313] loop0: detected capacity change from 0 to 32768
[  130.350291][ T7313] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  130.401635][ T7060] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.403410][ T7321] syz.3.143 uses obsolete (PF_INET,SOCK_PACKET)
[  130.437927][ T6951] ocfs2: Unmounting device (7,0) on (node local)
[  130.487448][ T7060] veth0_vlan: entered promiscuous mode
[  130.516498][ T7060] veth1_vlan: entered promiscuous mode
[  130.529589][ T7064] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.542269][   T42] hsr_slave_0: left promiscuous mode
[  130.581139][   T42] hsr_slave_1: left promiscuous mode
[  130.653968][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  130.656047][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  130.658547][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  130.660550][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  130.677314][   T42] hsr_slave_0: left promiscuous mode
[  130.723703][   T42] hsr_slave_1: left promiscuous mode
[  130.889092][ T7336] loop0: detected capacity change from 0 to 32768
[  130.895336][ T7336] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.149 (7336)
[  130.904903][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  130.907076][ T7336] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  130.909597][ T7336] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm
[  130.910546][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  130.912638][ T7336] BTRFS info (device loop0): using free-space-tree
[  131.065663][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.114590][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.490673][   T42] veth1_macvtap: left promiscuous mode
[  131.493082][   T42] veth0_macvtap: left promiscuous mode
[  131.507602][   T42] veth1_vlan: left promiscuous mode
[  131.509040][   T42] veth0_vlan: left promiscuous mode
[  131.534813][   T42] veth1_macvtap: left promiscuous mode
[  131.536277][   T42] veth0_macvtap: left promiscuous mode
[  131.537813][   T42] veth1_vlan: left promiscuous mode
[  131.539155][   T42] veth0_vlan: left promiscuous mode
[  131.912591][ T6951] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  134.177173][   T42] team0 (unregistering): Port device team_slave_1 removed
[  134.356232][   T42] team0 (unregistering): Port device team_slave_0 removed
[  138.307133][   T42] team0 (unregistering): Port device team_slave_1 removed
[  138.506440][   T42] team0 (unregistering): Port device team_slave_0 removed
[  140.342098][ T6427] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  140.345543][ T6427] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  140.348165][ T6427] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  140.351133][ T6427] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  140.353317][ T6427] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  140.361606][ T6427] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  141.000042][ T7060] veth0_macvtap: entered promiscuous mode
[  141.003515][ T7060] veth1_macvtap: entered promiscuous mode
[  141.011339][ T7060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.014207][ T7060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.016678][ T7060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.019799][ T7060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.022333][ T7060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.026124][ T7060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.033326][ T7060] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.099297][ T7060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.106443][ T7060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.109715][ T7060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.112604][ T7060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.117381][ T7060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.123331][ T7060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.137726][ T7060] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.190061][ T7064] veth0_vlan: entered promiscuous mode
[  141.195113][ T7064] veth1_vlan: entered promiscuous mode
[  141.205316][ T7064] veth0_macvtap: entered promiscuous mode
[  141.377471][ T7386] fuse: Bad value for 'fd'
[  141.812691][ T7064] veth1_macvtap: entered promiscuous mode
[  141.815777][ T7371] chnl_net:caif_netlink_parms(): no params data found
[  141.822502][ T7060] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.844116][ T7060] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.846291][ T7060] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.848497][ T7060] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.911179][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.914344][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.916768][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.919165][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.923705][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.926166][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.928600][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.933889][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.939689][ T7064] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.962174][ T7391] loop4: detected capacity change from 0 to 128
[  141.970672][ T7391] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  141.974835][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.977487][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.979964][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.982601][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.985073][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.987686][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.990061][ T7064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.992650][ T7064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.996738][ T7064] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.998611][ T7391] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  142.052346][ T7371] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.061573][ T7371] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.065171][ T7371] bridge_slave_0: entered allmulticast mode
[  142.072108][ T7371] bridge_slave_0: entered promiscuous mode
[  142.084050][ T6577] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  142.091269][ T7064] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.093500][ T7064] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.096146][ T7064] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.098425][ T7064] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.122659][ T7371] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.125111][ T7371] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.127069][ T7371] bridge_slave_1: entered allmulticast mode
[  142.130885][ T7371] bridge_slave_1: entered promiscuous mode
[  142.181175][   T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.183011][   T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.206770][ T7371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  142.243794][ T6577] usb 1-1: Using ep0 maxpacket: 16
[  142.249962][ T6577] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  142.252559][ T6577] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  142.262556][ T6577] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  142.263076][ T7371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  142.265005][ T6577] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.265032][ T6577] usb 1-1: Product: syz
[  142.265043][ T6577] usb 1-1: Manufacturer: syz
[  142.265054][ T6577] usb 1-1: SerialNumber: syz
[  142.318035][ T7371] team0: Port device team_slave_0 added
[  142.321961][ T7371] team0: Port device team_slave_1 added
[  142.327014][ T4486] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.329589][ T4486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.362740][ T7371] batman_adv: batadv0: Adding interface: batadv_slave_0
[  142.367057][ T4486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.369044][ T4486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.375373][ T7371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.381981][ T7371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  142.413711][ T6427] Bluetooth: hci4: command tx timeout
[  142.434105][ T7371] batman_adv: batadv0: Adding interface: batadv_slave_1
[  142.435857][ T7371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.442409][ T7371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  142.496642][    C0] raw-gadget.0 gadget.0: ignoring, device is not running
[  142.500242][ T6577] usb 1-1: 0:2 : does not exist
[  142.515581][ T6577] usb 1-1: USB disconnect, device number 4
[  142.525199][   T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.527343][   T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.581987][ T7389] udevd[7389]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  142.595911][ T7371] hsr_slave_0: entered promiscuous mode
[  142.620686][ T7371] hsr_slave_1: entered promiscuous mode
[  142.653618][ T7371] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  142.655737][ T7371] Cannot create hsr debugfs directory
[  142.768437][ T7406] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  142.804093][ T7406] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.037462][   T42] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.156758][   T42] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.285615][   T42] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.378000][ T7416] loop2: detected capacity change from 0 to 512
[  143.487644][ T7416] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.541987][ T7424] loop1: detected capacity change from 0 to 128
[  143.556364][ T7424] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  143.576171][ T7424] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  143.675555][   T42] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.693267][ T7425] fuse: Bad value for 'fd'
[  143.878341][   T30] audit: type=1326 audit(143.850:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7415 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  144.000074][   T30] audit: type=1326 audit(143.850:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7415 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  144.305602][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.479109][   T42] bridge_slave_1: left allmulticast mode
[  144.480772][   T42] bridge_slave_1: left promiscuous mode
[  144.482867][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.494447][ T6427] Bluetooth: hci4: command tx timeout
[  144.509608][   T42] bridge_slave_0: left allmulticast mode
[  144.511211][   T42] bridge_slave_0: left promiscuous mode
[  144.512919][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.964519][ T7454] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  146.004059][ T7454] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  146.583780][ T6427] Bluetooth: hci4: command tx timeout
[  146.598760][ T7463] loop2: detected capacity change from 0 to 512
[  146.616422][ T7463] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.969454][   T30] audit: type=1326 audit(146.950:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7462 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  146.977749][   T30] audit: type=1326 audit(146.950:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7462 comm="syz.2.178" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  147.319772][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.366391][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.408046][   T42] bond0 (unregistering): Released all slaves
[  147.489227][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.631305][ T7474] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  147.674126][ T7474] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  148.665410][ T6427] Bluetooth: hci4: command tx timeout
[  149.158402][   T42] hsr_slave_0: left promiscuous mode
[  149.192473][ T7491] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.243798][   T42] hsr_slave_1: left promiscuous mode
[  149.257122][ T7491] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.293850][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.295977][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  149.298463][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  149.300715][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  149.319170][   T42] veth1_macvtap: left promiscuous mode
[  149.320811][   T42] veth0_macvtap: left promiscuous mode
[  149.322568][ T7496] loop0: detected capacity change from 0 to 512
[  149.322934][   T42] veth1_vlan: left promiscuous mode
[  149.326540][   T42] veth0_vlan: left promiscuous mode
[  149.465326][ T7496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.793253][   T30] audit: type=1326 audit(149.770:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7495 comm="syz.0.188" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8574a9a8 code=0x7ffc0000
[  149.806998][   T30] audit: type=1326 audit(149.770:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7495 comm="syz.0.188" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8574a9a8 code=0x7ffc0000
[  150.181658][ T7504] fuse: Bad value for 'fd'
[  150.218585][ T6951] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.965576][ T7523] loop4: detected capacity change from 0 to 32768
[  152.157684][   T42] team0 (unregistering): Port device team_slave_1 removed
[  152.309789][   T42] team0 (unregistering): Port device team_slave_0 removed
[  152.369288][ T7535] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  152.404321][ T7535] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  152.947042][ T7540] loop4: detected capacity change from 0 to 512
[  152.981589][ T7540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.381592][   T30] audit: type=1326 audit(153.300:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7539 comm="syz.4.201" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x7ffc0000
[  153.405254][   T30] audit: type=1326 audit(153.300:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7539 comm="syz.4.201" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x7ffc0000
[  153.823790][ T6944] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.070257][ T7549] fuse: Bad value for 'fd'
[  155.158143][ T7371] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  155.371259][ T7371] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  155.386425][ T7371] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  155.391223][ T7371] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  155.453247][ T7371] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.462461][ T7371] 8021q: adding VLAN 0 to HW filter on device team0
[  155.482601][ T7371] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  155.485911][ T7371] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  155.511784][   T44] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.513888][   T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.522006][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.523921][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.602625][ T7371] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.671620][ T7561] loop2: detected capacity change from 0 to 32768
[  155.707507][ T7371] veth0_vlan: entered promiscuous mode
[  155.712707][ T7371] veth1_vlan: entered promiscuous mode
[  155.888389][ T7371] veth0_macvtap: entered promiscuous mode
[  155.892587][ T7371] veth1_macvtap: entered promiscuous mode
[  155.902427][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.905361][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.908340][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.973787][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.976387][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.979304][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.984843][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  155.991295][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.997064][ T7371] batman_adv: batadv0: Interface activated: batadv_slave_0
[  156.012420][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.025861][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.030727][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.112185][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.129191][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.133397][ T7576] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  156.139820][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.147595][ T7371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.150589][ T7371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.157938][ T7371] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.180311][ T7371] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.182956][ T7371] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.187158][ T7576] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  156.197021][ T7371] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.199498][ T7371] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.277783][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.287808][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.317148][ T4633] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.319205][ T4633] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.529190][ T7584] netlink: 264 bytes leftover after parsing attributes in process `syz.0.214'.
[  156.531877][ T7584] netlink: 40 bytes leftover after parsing attributes in process `syz.0.214'.
[  156.671218][ T7582] fuse: Bad value for 'fd'
[  156.736693][ T7590] loop2: detected capacity change from 0 to 512
[  156.964015][ T7590] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.569618][   T30] audit: type=1326 audit(157.530:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7589 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  157.652203][   T30] audit: type=1326 audit(157.530:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7589 comm="syz.2.211" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  157.951687][ T7602] loop1: detected capacity change from 0 to 32768
[  158.002446][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.219098][ T7620] netlink: 264 bytes leftover after parsing attributes in process `syz.0.226'.
[  158.515139][ T7613] loop4: detected capacity change from 0 to 32768
[  158.541518][ T7613] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  158.593885][ T1759] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  158.664529][ T6944] ocfs2: Unmounting device (7,4) on (node local)
[  158.772527][ T1759] usb 1-1: Using ep0 maxpacket: 16
[  158.775557][ T1759] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  158.777965][ T1759] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  158.780739][ T1759] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  158.793039][ T1759] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  158.796240][ T1759] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.800600][ T1759] usb 1-1: Product: syz
[  158.802955][ T1759] usb 1-1: Manufacturer: syz
[  158.810013][ T1759] usb 1-1: SerialNumber: syz
[  158.819811][ T7634] fuse: Bad value for 'fd'
[  159.554998][ T1759] usb 1-1: 0:2 : does not exist
[  159.561941][ T1759] usb 1-1: USB disconnect, device number 5
[  159.662842][ T7389] udevd[7389]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  159.726764][ T7651] loop2: detected capacity change from 0 to 512
[  159.770270][ T7651] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.134051][   T30] audit: type=1326 audit(160.080:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7650 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  160.159108][   T30] audit: type=1326 audit(160.080:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7650 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb014a9a8 code=0x7ffc0000
[  160.661227][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.208423][ T7673] fuse: Bad value for 'fd'
[  162.081410][ T7696] loop3: detected capacity change from 0 to 512
[  162.398765][ T7696] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.400507][ T7669] loop1: detected capacity change from 0 to 32768
[  163.168748][   T30] audit: type=1326 audit(163.140:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7695 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  163.174384][   T30] audit: type=1326 audit(163.140:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7695 comm="syz.3.249" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  163.223531][ T1759] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  163.316186][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.513765][ T1759] usb 1-1: Using ep0 maxpacket: 16
[  163.652663][ T7724] fuse: Bad value for 'fd'
[  163.872749][ T7726] loop3: detected capacity change from 0 to 32768
[  163.897523][ T7726] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  163.910603][ T1759] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  163.913206][ T1759] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  163.917135][ T1759] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  163.919411][ T1759] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.921345][ T1759] usb 1-1: Product: syz
[  163.922293][ T1759] usb 1-1: Manufacturer: syz
[  163.923420][ T1759] usb 1-1: SerialNumber: syz
[  163.979581][ T7371] ocfs2: Unmounting device (7,3) on (node local)
[  164.369889][ T1759] usb 1-1: 0:2 : does not exist
[  164.376303][ T1759] usb 1-1: USB disconnect, device number 6
[  164.421334][ T7742] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  164.984815][ T7742] macvlan2: entered allmulticast mode
[  165.041102][ T7748] loop3: detected capacity change from 0 to 512
[  165.047944][ T7389] udevd[7389]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  165.122043][ T7748] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.934092][   T30] audit: type=1326 audit(165.470:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7747 comm="syz.3.264" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  166.075503][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.093772][   T30] audit: type=1326 audit(165.470:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7747 comm="syz.3.264" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  166.670612][ T7779] fuse: Bad value for 'fd'
[  167.262805][ T7791] macvlan2: entered allmulticast mode
[  167.304596][ T7798] Zero length message leads to an empty skb
[  167.406429][ T7804] loop1: detected capacity change from 0 to 512
[  167.439595][ T7808] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.521982][ T7808] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.560576][ T7804] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.918628][   T30] audit: type=1326 audit(167.890:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7803 comm="syz.1.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  167.928527][   T30] audit: type=1326 audit(167.890:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7803 comm="syz.1.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  168.376197][ T7060] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.627942][ T7836] macvlan2: entered allmulticast mode
[  168.636462][ T7830] fuse: Bad value for 'fd'
[  169.393207][ T7851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.469648][ T7856] loop0: detected capacity change from 0 to 512
[  169.474881][ T7851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.525534][ T7856] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.853812][   T30] audit: type=1326 audit(169.830:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7855 comm="syz.0.302" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8574a9a8 code=0x7ffc0000
[  169.859887][   T30] audit: type=1326 audit(169.830:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7855 comm="syz.0.302" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8574a9a8 code=0x7ffc0000
[  170.335409][ T7848] loop2: detected capacity change from 0 to 32768
[  170.386837][ T7848] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  170.437991][ T6951] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.496817][ T7064] ocfs2: Unmounting device (7,2) on (node local)
[  170.799945][ T7885] fuse: Bad value for 'fd'
[  171.347077][ T7891] macvlan2: entered allmulticast mode
[  171.738159][ T7906] loop4: detected capacity change from 0 to 512
[  171.766530][ T7906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.967784][   T30] audit: type=1326 audit(171.950:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7903 comm="syz.4.318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x7ffc0000
[  171.983682][   T30] audit: type=1326 audit(171.950:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7903 comm="syz.4.318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x7ffc0000
[  172.423701][ T6504] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  172.522950][ T7923] loop2: detected capacity change from 0 to 32768
[  172.606640][ T6944] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.618062][ T7923] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  172.673881][ T6504] usb 1-1: Using ep0 maxpacket: 16
[  172.873213][ T6504] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  172.881706][ T6504] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  172.899365][ T6504] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  173.343874][ T6504] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  173.346357][ T6504] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.348424][ T6504] usb 1-1: Product: syz
[  173.349561][ T6504] usb 1-1: Manufacturer: syz
[  173.350724][ T6504] usb 1-1: SerialNumber: syz
[  173.364950][ T7931] fuse: Bad value for 'fd'
[  173.401366][ T7064] ocfs2: Unmounting device (7,2) on (node local)
[  173.572642][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.575137][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.577727][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.580076][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.582872][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.585646][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.588418][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.590911][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.595195][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.597448][    C1] raw-gadget.0 gadget.0: ignoring, device is not running
[  173.599829][ T6504] usb 1-1: 0:2 : does not exist
[  173.689629][ T6504] usb 1-1: USB disconnect, device number 7
[  173.817260][ T7954] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.867697][ T7912] udevd[7912]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  173.871842][ T7954] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  175.110967][ T7977] ICMPv6: NA: aa:aa:aa:aa:aa:00 advertised our address fe80::aa on syz_tun!
[  176.722598][ T7996] fuse: Bad value for 'fd'
[  176.969774][ T7999] trusted_key: encrypted_key: insufficient parameters specified
[  177.012365][ T8003] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.104051][ T8003] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.252270][ T8049] fuse: Bad value for 'fd'
[  183.253323][ T8040] loop1: detected capacity change from 0 to 40427
[  183.375868][ T8068] loop2: detected capacity change from 0 to 512
[  183.379003][ T8068] ext4: Unknown parameter 'noacl'
[  184.365442][ T8040] F2FS-fs (loop1): invalid crc value
[  184.383202][ T8040] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-4)
[  186.699720][ T8081] loop0: detected capacity change from 0 to 512
[  186.726219][ T8081] ext4: Unknown parameter 'noacl'
[  186.790599][ T8079] trusted_key: encrypted_key: insufficient parameters specified
[  187.437525][ T2339] ieee802154 phy0 wpan0: encryption failed: -22
[  187.444956][ T2339] ieee802154 phy1 wpan1: encryption failed: -22
[  187.651023][ T8096] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  187.719278][ T8096] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.422732][ T8095] loop0: detected capacity change from 0 to 32768
[  188.574844][ T8113] fuse: Bad value for 'fd'
[  188.939934][ T8120] trusted_key: encrypted_key: insufficient parameters specified
[  189.009524][ T8117] loop1: detected capacity change from 0 to 32768
[  189.055352][ T8124] netlink: 'syz.4.383': attribute type 10 has an invalid length.
[  189.057733][ T8117] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.380 (8117)
[  189.078843][ T8117] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  189.089237][ T8117] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm
[  189.091515][ T8117] BTRFS info (device loop1): using free-space-tree
[  189.832273][ T7060] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  189.849048][ T8153] loop3: detected capacity change from 0 to 32768
[  189.890515][ T8153] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  190.084536][ T7371] ocfs2: Unmounting device (7,3) on (node local)
[  190.125551][ T8160] loop0: detected capacity change from 0 to 32768
[  190.128651][ T8160] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.388 (8160)
[  190.206913][ T8160] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  190.209593][ T8160] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm
[  190.211987][ T8160] BTRFS info (device loop0): disk space caching is enabled
[  190.214036][ T8160] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  190.367024][ T8168] trusted_key: encrypted_key: insufficient parameters specified
[  190.586221][ T8175] loop1: detected capacity change from 0 to 32768
[  192.295244][ T8175] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  192.481845][ T8195] fuse: Bad value for 'fd'
[  192.965855][ T8160] BTRFS info (device loop0): rebuilding free space tree
[  193.075446][ T8160] BTRFS info (device loop0): disabling free space tree
[  193.077547][ T8160] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  193.080123][ T8160] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  193.105943][ T7060] ocfs2: Unmounting device (7,1) on (node local)
[  193.195653][ T8208] netlink: 'syz.3.397': attribute type 10 has an invalid length.
[  193.340633][ T8208] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.343772][ T8208] team0: Port device bond0 added
[  193.375112][ T8214] loop4: detected capacity change from 0 to 512
[  193.377181][ T8214] ext4: Unknown parameter 'noacl'
[  193.388320][ T6951] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  193.557775][ T8216] netlink: 'syz.3.402': attribute type 10 has an invalid length.
[  194.429053][ T8223] trusted_key: encrypted_key: insufficient parameters specified
[  194.526986][ T8231] loop0: detected capacity change from 0 to 512
[  194.591792][ T8226] loop4: detected capacity change from 0 to 32768
[  194.614388][ T8213] loop2: detected capacity change from 0 to 32768
[  194.621811][ T8210] loop1: detected capacity change from 0 to 32768
[  194.631992][ T8226] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.405 (8226)
[  194.642041][ T8231] ext4: Unknown parameter 'noacl'
[  194.688275][ T8226] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  194.690885][ T8226] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm
[  194.693175][ T8226] BTRFS info (device loop4): using free-space-tree
[  195.911952][ T8233] fuse: Bad value for 'fd'
[  195.942356][ T8213] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  196.632615][ T7064] ocfs2: Unmounting device (7,2) on (node local)
[  196.874763][ T6944] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  197.955677][ T8295] netlink: 'syz.0.419': attribute type 10 has an invalid length.
[  197.962927][ T8285] loop2: detected capacity change from 0 to 32768
[  197.987505][ T8295] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.992727][ T8294] trusted_key: encrypted_key: insufficient parameters specified
[  198.000283][ T8295] team0: Port device bond0 added
[  198.099992][ T8285] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  198.214175][ T8285] XFS (loop2): Ending clean mount
[  198.220137][ T8285] XFS (loop2): Quotacheck needed: Please wait.
[  198.227566][ T8308] macvlan2: entered allmulticast mode
[  198.311517][ T8285] XFS (loop2): Quotacheck: Done.
[  198.661160][ T7064] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  198.755656][ T8314] loop0: detected capacity change from 0 to 32768
[  198.775964][ T8314] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  199.271931][ T8335] trusted_key: encrypted_key: master key parameter 'use' is invalid
[  199.476273][ T8338] netlink: 'syz.1.433': attribute type 10 has an invalid length.
[  199.544514][ T8338] 8021q: adding VLAN 0 to HW filter on device bond0
[  199.549787][ T8338] team0: Port device bond0 added
[  199.785765][ T8340] macvlan2: entered allmulticast mode
[  199.832599][ T6951] ocfs2: Unmounting device (7,0) on (node local)
[  201.776024][ T8369] trusted_key: encrypted_key: master key parameter 'use' is invalid
[  201.844485][ T8357] loop1: detected capacity change from 0 to 32768
[  203.172588][ T8357] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  203.430106][ T7060] ocfs2: Unmounting device (7,1) on (node local)
[  203.597575][ T8387] trusted_key: syz.1.448 sent an empty control message without MSG_MORE.
[  203.890395][ T8389] macvlan2: entered allmulticast mode
[  204.329185][ T8395] loop1: detected capacity change from 0 to 40427
[  204.342270][ T8395] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  204.344270][ T8395] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  204.348508][ T8377] loop4: detected capacity change from 0 to 32768
[  204.364854][ T8395] F2FS-fs (loop1): Found nat_bits in checkpoint
[  204.385394][ T8395] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  204.387212][ T8395] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  204.405880][ T8395] syz.1.450: attempt to access beyond end of device
[  204.405880][ T8395] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  204.437653][ T8377] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  204.594870][ T6944] ocfs2: Unmounting device (7,4) on (node local)
[  204.631581][ T7060] syz-executor: attempt to access beyond end of device
[  204.631581][ T7060] loop1: rw=2051, sector=49152, nr_sectors = 4096 limit=40427
[  204.635351][ T7060] syz-executor: attempt to access beyond end of device
[  204.635351][ T7060] loop1: rw=2051, sector=57344, nr_sectors = 4096 limit=40427
[  204.661474][ T7060] syz-executor: attempt to access beyond end of device
[  204.661474][ T7060] loop1: rw=2051, sector=45096, nr_sectors = 8 limit=40427
[  204.675008][ T7060] F2FS-fs (loop1): Issue discard(6144, 6144, 512) failed, ret: -5
[  204.681268][ T7060] F2FS-fs (loop1): Issue discard(7168, 7168, 512) failed, ret: -5
[  204.683266][ T7060] F2FS-fs (loop1): Issue discard(5637, 5637, 1) failed, ret: -5
[  204.745795][ T8399] loop2: detected capacity change from 0 to 32768
[  204.766470][ T8399] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  204.909589][ T8411] loop0: detected capacity change from 0 to 32768
[  205.119423][ T8417] loop4: detected capacity change from 0 to 40427
[  205.150439][ T8417] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  205.152581][ T8417] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  205.174457][ T8411] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  205.188081][ T8417] F2FS-fs (loop4): Found nat_bits in checkpoint
[  205.204828][ T7064] ocfs2: Unmounting device (7,2) on (node local)
[  205.224488][ T8420] trusted_key: encrypted_key: master key parameter 'use' is invalid
[  205.317592][ T8429] loop2: detected capacity change from 0 to 1024
[  205.319870][ T8429] EXT4-fs: Ignoring removed orlov option
[  205.321647][ T8429] EXT4-fs: Ignoring removed nomblk_io_submit option
[  205.349059][ T8411] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  205.370542][ T8417] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  205.372744][ T8417] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  205.427920][ T8429] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.624487][ T6951] ocfs2: Unmounting device (7,0) on (node local)
[  206.245323][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.553166][ T8455] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  206.632052][ T8455] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.370441][ T8461] loop4: detected capacity change from 0 to 32768
[  208.393719][ T8461] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.464 (8461)
[  208.423789][ T8461] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  208.428891][ T8461] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm
[  208.435552][ T8461] BTRFS info (device loop4): disk space caching is enabled
[  208.439692][ T8461] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  208.539385][ T8461] BTRFS info (device loop4): rebuilding free space tree
[  208.581450][ T8461] BTRFS info (device loop4): disabling free space tree
[  208.593559][ T8461] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  208.596067][ T8461] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  208.829645][ T6944] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  210.053218][ T8499] loop0: detected capacity change from 0 to 40427
[  210.091303][ T8499] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  210.093329][ T8499] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  210.151256][ T8495] loop1: detected capacity change from 0 to 32768
[  210.238311][ T8520] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.254242][ T8499] F2FS-fs (loop0): Found nat_bits in checkpoint
[  210.270127][ T8499] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  210.275725][ T8499] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  210.293877][ T8520] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  210.294159][ T8510] loop2: detected capacity change from 0 to 32768
[  210.308746][ T8495] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  210.317137][ T8510] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  210.359707][ T8499] syz.0.474: attempt to access beyond end of device
[  210.359707][ T8499] loop0: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  210.359921][ T7064] ocfs2: Unmounting device (7,2) on (node local)
[  210.420700][ T8495] XFS (loop1): Ending clean mount
[  210.430815][ T8495] XFS (loop1): Quotacheck needed: Please wait.
[  210.440755][ T6437] Bluetooth: hci0: command 0x0406 tx timeout
[  210.508256][ T8495] XFS (loop1): Quotacheck: Done.
[  210.508493][ T6951] syz-executor: attempt to access beyond end of device
[  210.508493][ T6951] loop0: rw=2051, sector=49152, nr_sectors = 4096 limit=40427
[  210.524637][ T6951] syz-executor: attempt to access beyond end of device
[  210.524637][ T6951] loop0: rw=2051, sector=57344, nr_sectors = 4096 limit=40427
[  210.585784][ T6951] syz-executor: attempt to access beyond end of device
[  210.585784][ T6951] loop0: rw=2051, sector=45096, nr_sectors = 8 limit=40427
[  210.589411][ T6951] F2FS-fs (loop0): Issue discard(6144, 6144, 512) failed, ret: -5
[  210.591324][ T6951] F2FS-fs (loop0): Issue discard(7168, 7168, 512) failed, ret: -5
[  210.646282][ T6951] F2FS-fs (loop0): Issue discard(5637, 5637, 1) failed, ret: -5
[  211.112930][ T8536] mmap: syz.3.481 (8536) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  211.587794][ T8543] macvlan2: entered allmulticast mode
[  211.607913][ T7060] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  213.314097][ T8562] loop1: detected capacity change from 0 to 1024
[  213.333417][ T8562] EXT4-fs: Ignoring removed orlov option
[  213.334872][ T8562] EXT4-fs: Ignoring removed nomblk_io_submit option
[  213.492214][ T8573] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  213.494766][ T8562] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.657639][ T8573] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.921786][ T7060] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.238960][ T8569] loop4: detected capacity change from 0 to 32768
[  215.254485][ T8583] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.279501][ T8569] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  215.285430][ T8583] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.340711][ T6944] ocfs2: Unmounting device (7,4) on (node local)
[  215.587755][ T8592] ICMPv6: NA: aa:aa:aa:aa:aa:00 advertised our address fe80::aa on syz_tun!
[  215.620361][ T6437] Bluetooth: hci1: command 0x0406 tx timeout
[  215.647669][ T8597] netlink: 8 bytes leftover after parsing attributes in process `syz.0.498'.
[  215.650349][ T8597] netlink: 12 bytes leftover after parsing attributes in process `syz.0.498'.
[  215.684256][ T8595] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  215.686160][ T8599] loop0: detected capacity change from 0 to 512
[  215.686455][ T8595] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  215.711862][ T8595] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  215.713370][ T8599] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.054562][   T30] audit: type=1326 audit(1754.465:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8598 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8574a9a8 code=0x7ffc0000
[  216.063454][   T30] audit: type=1326 audit(1754.465:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8598 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8574a9a8 code=0x7ffc0000
[  216.618283][ T6951] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.688731][ T8611] loop4: detected capacity change from 0 to 1024
[  216.716810][ T8611] EXT4-fs: Ignoring removed orlov option
[  216.721636][ T8611] EXT4-fs: Ignoring removed nomblk_io_submit option
[  216.949031][ T8611] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.197119][ T6944] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.171739][ T8639] loop2: detected capacity change from 0 to 4096
[  221.242107][ T8648] loop3: detected capacity change from 0 to 512
[  222.096230][ T8654] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  222.111996][ T8648] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.144991][ T8654] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  222.901446][   T30] audit: type=1326 audit(1761.247:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8647 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  222.999769][   T30] audit: type=1326 audit(1761.247:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8647 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  223.388302][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.553928][ T8672] loop0: detected capacity change from 0 to 1024
[  223.556262][ T8672] EXT4-fs: Ignoring removed orlov option
[  223.557870][ T8672] EXT4-fs: Ignoring removed nomblk_io_submit option
[  223.632790][ T8672] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.757501][ T8671] loop1: detected capacity change from 0 to 32768
[  223.848659][ T8671] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  223.882940][ T7060] ocfs2: Unmounting device (7,1) on (node local)
[  225.045735][ T8685] loop1: detected capacity change from 0 to 512
[  225.603733][ T8685] ext4: Unknown parameter 'noacl'
[  226.406617][ T6951] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.652592][ T8713] loop3: detected capacity change from 0 to 512
[  226.717979][ T8713] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.796116][ T8688] loop4: detected capacity change from 0 to 32768
[  227.083658][   T30] audit: type=1326 audit(1765.426:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8711 comm="syz.3.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  227.089766][   T30] audit: type=1326 audit(1765.426:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8711 comm="syz.3.527" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  227.553722][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.675390][ T8709] loop0: detected capacity change from 0 to 32768
[  227.822958][ T8709] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  227.872624][ T8725] "syz.3.529" (8725) uses obsolete ecb(arc4) skcipher
[  228.908101][ T8742] loop3: detected capacity change from 0 to 1024
[  228.910284][ T8742] EXT4-fs: Ignoring removed orlov option
[  228.911758][ T8742] EXT4-fs: Ignoring removed nomblk_io_submit option
[  228.961162][ T8742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.004025][ T6951] ocfs2: Unmounting device (7,0) on (node local)
[  229.798036][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.917227][ T8754] loop4: detected capacity change from 0 to 4096
[  229.962066][ T6577] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  230.092580][ T6577] usb 1-1: device descriptor read/64, error -71
[  230.304476][ T8766] loop3: detected capacity change from 0 to 512
[  230.327427][ T8766] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.333497][ T6577] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  230.474019][ T6577] usb 1-1: device descriptor read/64, error -71
[  230.706071][   T30] audit: type=1326 audit(1769.031:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8764 comm="syz.3.538" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  230.771286][   T30] audit: type=1326 audit(1769.031:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8764 comm="syz.3.538" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x7ffc0000
[  231.070992][ T6434] Bluetooth: hci3: command 0x0406 tx timeout
[  231.075022][ T6435] Bluetooth: hci2: command 0x0406 tx timeout
[  231.089555][ T6577] usb usb1-port1: attempt power cycle
[  231.258711][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.429432][ T6577] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  231.447801][ T6577] usb 1-1: device descriptor read/8, error -71
[  231.532068][ T8780] loop2: detected capacity change from 0 to 512
[  231.535281][ T8780] ext4: Unknown parameter 'noacl'
[  231.695076][ T6577] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  231.710498][ T6577] usb 1-1: device descriptor read/8, error -71
[  231.821284][ T6577] usb usb1-port1: unable to enumerate USB device
[  232.851634][ T8797] loop0: detected capacity change from 0 to 1024
[  233.118722][ T8797] EXT4-fs: Ignoring removed orlov option
[  233.168313][ T8797] EXT4-fs: Ignoring removed nomblk_io_submit option
[  233.443654][ T8801] loop2: detected capacity change from 0 to 512
[  233.672310][ T8797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.706848][ T8809] loop1: detected capacity change from 0 to 512
[  233.863158][ T8809] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.732270][   T30] audit: type=1326 audit(1773.905:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8807 comm="syz.1.550" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  235.737455][   T30] audit: type=1326 audit(1773.905:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8807 comm="syz.1.550" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  235.768938][ T6951] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.846577][ T8835] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  235.991787][ T7060] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.037205][ T8835] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  236.671180][ T8843] loop1: detected capacity change from 0 to 512
[  236.678313][ T8843] ext4: Unknown parameter 'noacl'
[  236.733027][ T8845] netlink: 8 bytes leftover after parsing attributes in process `syz.3.558'.
[  237.697032][ T8857] netlink: 'syz.3.558': attribute type 4 has an invalid length.
[  237.699155][ T8857] netlink: 17 bytes leftover after parsing attributes in process `syz.3.558'.
[  237.720252][ T8845] netlink: 12 bytes leftover after parsing attributes in process `syz.3.558'.
[  238.047682][ T8865] loop0: detected capacity change from 0 to 512
[  238.062534][ T8865] ext4: Unknown parameter 'noacl'
[  238.063267][ T8867] loop3: detected capacity change from 0 to 1024
[  238.065845][ T8867] EXT4-fs: Ignoring removed orlov option
[  238.084971][ T8867] EXT4-fs: Ignoring removed nomblk_io_submit option
[  238.252735][ T8867] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.075326][ T8881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.567'.
[  240.115072][ T8881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.567'.
[  240.201693][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.076359][ T8909] netlink: 4 bytes leftover after parsing attributes in process `syz.1.577'.
[  241.078714][ T8909] bridge_slave_1: left allmulticast mode
[  241.080200][ T8909] bridge_slave_1: left promiscuous mode
[  241.093477][ T8909] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.114659][ T8912] loop4: detected capacity change from 0 to 512
[  241.289337][ T8909] bridge_slave_0: left allmulticast mode
[  241.300429][ T8909] bridge_slave_0: left promiscuous mode
[  241.303811][ T8912] ext4: Unknown parameter 'noacl'
[  241.322478][ T8909] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.474187][ T8918] syz_tun: entered promiscuous mode
[  242.480171][ T8918] syz_tun: left promiscuous mode
[  242.507568][ T8925] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  242.571585][ T8925] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  242.699582][ T8937] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  242.748364][ T8937] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  244.130408][ T8954] loop2: detected capacity change from 0 to 512
[  244.134382][ T8954] ext4: Unknown parameter 'noacl'
[  244.138835][ T8958] syz_tun: entered promiscuous mode
[  244.160572][ T8958] syz_tun: left promiscuous mode
[  244.334103][ T8967] binder: 8966:8967 tried to acquire reference to desc 0, got 1 instead
[  244.737022][ T8967] binder: 8966:8967 got transaction with invalid data ptr
[  244.740459][ T8967] binder: 8966:8967 transaction async to 8966:0 failed 6/29201/-14, size 0-24 line 3436
[  244.892687][ T6504] binder: release 8966:8972 transaction 5 out, still active
[  244.895970][ T6504] binder: undelivered TRANSACTION_COMPLETE
[  244.899141][ T8969] fuse: Bad value for 'fd'
[  244.928628][ T6577] binder: send failed reply for transaction 5, target dead
[  244.964817][ T8969] batadv0: entered promiscuous mode
[  244.973552][ T8969] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  245.020784][ T8976] fuse: Bad value for 'fd'
[  245.046528][ T8976] batadv0: entered promiscuous mode
[  245.063814][ T8976] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  245.131054][ T8981] fuse: Bad value for 'fd'
[  245.176553][ T8981] batadv0: entered promiscuous mode
[  245.179183][ T8981] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  245.250794][ T8987] macvlan2: entered allmulticast mode
[  245.295800][ T8990] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  245.348955][ T8990] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  245.849871][ T9003] fuse: Bad value for 'fd'
[  245.876169][ T9002] batadv0: entered promiscuous mode
[  245.885035][ T9002] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  247.361029][ T9021] macvlan2: entered allmulticast mode
[  247.566287][ T9024] loop2: detected capacity change from 0 to 4096
[  247.743406][ T9034] loop1: detected capacity change from 0 to 512
[  247.748806][ T9034] ext4: Unknown parameter 'noacl'
[  247.953583][ T9036] veth0_vlan: left promiscuous mode
[  247.956050][ T9036] veth0_vlan: entered promiscuous mode
[  248.612081][ T9042] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  248.632296][ T9044] netlink: 4 bytes leftover after parsing attributes in process `syz.1.620'.
[  248.790694][ T9042] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.172696][ T9051] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  249.780871][ T2339] ieee802154 phy0 wpan0: encryption failed: -22
[  249.782800][ T2339] ieee802154 phy1 wpan1: encryption failed: -22
[  250.085954][ T9058] loop0: detected capacity change from 0 to 256
[  251.250064][ T9070] loop4: detected capacity change from 0 to 736
[  251.257374][ T9070] iso9660: Unknown parameter 'ÿ18446744073709551615'
[  251.323622][   T30] audit: type=1326 audit(2302.405:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9066 comm="syz.4.628" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x0
[  252.397227][ T9090] veth0_vlan: left promiscuous mode
[  252.400278][ T9090] veth0_vlan: entered promiscuous mode
[  253.361819][ T9102] loop0: detected capacity change from 0 to 128
[  253.459519][ T9080] netlink: 12 bytes leftover after parsing attributes in process `syz.2.631'.
[  253.544065][ T9110] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  254.056231][ T9110] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  254.285865][ T9115] loop4: detected capacity change from 0 to 736
[  254.287340][ T9118] loop3: detected capacity change from 0 to 256
[  254.298733][ T9115] iso9660: Unknown parameter 'ÿ18446744073709551615'
[  254.319218][   T30] audit: type=1326 audit(2305.352:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9114 comm="syz.4.643" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x0
[  256.470514][ T9140] loop3: detected capacity change from 0 to 512
[  256.483443][ T9140] ext4: Unknown parameter 'noacl'
[  257.698757][ T9141] loop0: detected capacity change from 0 to 40427
[  258.236389][ T9141] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  258.238385][ T9141] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  258.328644][ T9157] loop3: detected capacity change from 0 to 256
[  258.336173][ T9141] F2FS-fs (loop0): Found nat_bits in checkpoint
[  258.350448][ T9141] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  258.352411][ T9141] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  259.219007][ T9163] loop4: detected capacity change from 0 to 736
[  259.221124][ T9163] iso9660: Unknown parameter 'ÿ18446744073709551615'
[  259.440665][   T30] audit: type=1326 audit(2310.402:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9162 comm="syz.4.657" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x0
[  259.522536][ T9169] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  260.524026][ T9178] loop1: detected capacity change from 0 to 40427
[  261.213885][ T9178] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  261.216146][ T9178] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  261.312617][ T9178] F2FS-fs (loop1): Found nat_bits in checkpoint
[  261.328764][ T9178] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  261.332032][ T9178] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  261.428515][ T9190] loop4: detected capacity change from 0 to 128
[  261.534311][ T9194] loop3: detected capacity change from 0 to 128
[  261.590134][ T9190] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  261.921982][ T9200] binder: BC_ATTEMPT_ACQUIRE not supported
[  261.923804][ T9200] binder: 9185:9200 ioctl c0306201 200002c0 returned -22
[  262.806095][ T9205] binder: BINDER_SET_CONTEXT_MGR already set
[  262.807695][ T9205] binder: 9204:9205 ioctl 4018620d 20000040 returned -16
[  262.809979][ T9205] binder: 9204:9205 got transaction to invalid handle, 1
[  262.811950][ T9205] binder: 9205:9204 cannot find target node
[  262.813402][ T9205] binder: 9204:9205 transaction call to 0:0 failed 9/29201/-22, size 0-0 line 3145
[  262.816628][ T9205] binder: 9204:9205 got transaction to invalid handle, 1
[  262.818466][ T9205] binder: 9205:9204 cannot find target node
[  262.819900][ T9205] binder: 9204:9205 transaction async to 0:0 failed 10/29201/-22, size 0-0 line 3145
[  262.833275][ T1759] binder: undelivered TRANSACTION_ERROR: 29201
[  262.930283][ T9210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  263.220915][ T9210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  263.258530][ T3816] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  263.465032][ T6944] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  263.561284][ T3816] usb 1-1: Using ep0 maxpacket: 16
[  263.621337][ T9216] loop3: detected capacity change from 0 to 512
[  263.629324][ T9216] ext4: Unknown parameter 'noacl'
[  264.148715][ T9214] binder: BC_ATTEMPT_ACQUIRE not supported
[  264.150484][ T9214] binder: 9213:9214 ioctl c0306201 200002c0 returned -22
[  265.084163][ T3816] usb 1-1: config 1 has an invalid descriptor of length 150, skipping remainder of the config
[  265.086945][ T3816] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  265.104999][ T9229] loop4: detected capacity change from 0 to 256
[  265.174000][ T9231] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  265.268076][ T3816] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  265.270565][ T3816] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  265.272631][ T3816] usb 1-1: Product: syz
[  265.273612][ T3816] usb 1-1: Manufacturer: syz
[  265.274852][ T3816] usb 1-1: SerialNumber: syz
[  265.275621][ T9238] loop3: detected capacity change from 0 to 256
[  265.276752][ T9231] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  266.570583][ T3816] usb 1-1: 0:2 : does not exist
[  267.476079][ T3816] usb 1-1: USB disconnect, device number 12
[  268.091916][ T7912] udevd[7912]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  268.094607][ T9256] loop0: detected capacity change from 0 to 256
[  268.224576][ T9260] loop2: detected capacity change from 0 to 256
[  271.083017][ T9283] loop3: detected capacity change from 0 to 40427
[  271.270732][ T9287] loop1: detected capacity change from 0 to 40427
[  271.468049][ T9283] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  271.470259][ T9283] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  271.472398][ T9287] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  271.474281][ T9287] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  271.620178][ T9295] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  271.642217][ T9283] F2FS-fs (loop3): Found nat_bits in checkpoint
[  271.654760][ T9283] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  271.656677][ T9283] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  271.673125][ T9287] F2FS-fs (loop1): Found nat_bits in checkpoint
[  271.685057][ T9287] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  271.686796][ T9287] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  271.762612][ T9295] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  272.805394][ T9312] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  272.944692][ T9312] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  273.205093][ T9314] loop3: detected capacity change from 0 to 2048
[  273.433869][ T9314]  loop3: p2 < >
[  273.453463][ T6038]  loop3: p2 < >
[  274.368802][ T9324] loop2: detected capacity change from 0 to 256
[  274.997738][ T9332] loop1: detected capacity change from 0 to 2048
[  275.099946][ T9332]  loop1: p2 < >
[  275.935879][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  276.325137][ T9350] loop2: detected capacity change from 0 to 256
[  277.013821][ T9353] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  277.091864][ T9353] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  277.637558][ T9342] loop0: detected capacity change from 0 to 40427
[  277.678580][ T9342] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  277.680779][ T9342] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  277.685354][ T9342] F2FS-fs (loop0): invalid crc value
[  277.696571][ T9342] F2FS-fs (loop0): Found nat_bits in checkpoint
[  277.713969][ T9342] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  277.717815][ T9342] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  278.558620][ T9365] loop2: detected capacity change from 0 to 256
[  278.584146][ T9365] FAT-fs (loop2): Directory bread(block 64) failed
[  278.585985][ T9365] FAT-fs (loop2): Directory bread(block 65) failed
[  278.587545][ T9365] FAT-fs (loop2): Directory bread(block 66) failed
[  278.589124][ T9365] FAT-fs (loop2): Directory bread(block 67) failed
[  278.591090][ T9365] FAT-fs (loop2): Directory bread(block 68) failed
[  278.592683][ T9365] FAT-fs (loop2): Directory bread(block 69) failed
[  278.594256][ T9365] FAT-fs (loop2): Directory bread(block 70) failed
[  278.595727][ T9365] FAT-fs (loop2): Directory bread(block 71) failed
[  278.597374][ T9365] FAT-fs (loop2): Directory bread(block 72) failed
[  278.598954][ T9365] FAT-fs (loop2): Directory bread(block 73) failed
[  278.729496][ T9369] loop1: detected capacity change from 0 to 256
[  278.729743][   T11] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  278.894042][   T11] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  278.907321][ T9369] FAT-fs (loop1): Directory bread(block 64) failed
[  278.909105][ T9369] FAT-fs (loop1): Directory bread(block 65) failed
[  278.910561][ T9369] FAT-fs (loop1): Directory bread(block 66) failed
[  278.912347][ T9369] FAT-fs (loop1): Directory bread(block 67) failed
[  278.914564][ T9369] FAT-fs (loop1): Directory bread(block 68) failed
[  278.916426][ T9369] FAT-fs (loop1): Directory bread(block 69) failed
[  278.918197][ T9369] FAT-fs (loop1): Directory bread(block 70) failed
[  278.920055][ T9369] FAT-fs (loop1): Directory bread(block 71) failed
[  278.921842][ T9369] FAT-fs (loop1): Directory bread(block 72) failed
[  279.874725][ T9369] FAT-fs (loop1): Directory bread(block 73) failed
[  280.450448][ T9372] loop4: detected capacity change from 0 to 40427
[  280.768387][ T9372] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  280.770306][ T9372] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  280.794951][ T9374] rtc-efi rtc-efi.0: write status is 3
[  281.216283][ T9372] F2FS-fs (loop4): Found nat_bits in checkpoint
[  281.234888][ T9372] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  281.237039][ T9372] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  281.603404][ T9392] loop1: detected capacity change from 0 to 256
[  281.608231][ T9393] loop2: detected capacity change from 0 to 256
[  281.609498][ T9391] loop0: detected capacity change from 0 to 256
[  281.637207][ T9393] FAT-fs (loop2): Directory bread(block 64) failed
[  281.638369][ T9391] FAT-fs (loop0): Directory bread(block 64) failed
[  281.638955][ T9393] FAT-fs (loop2): Directory bread(block 65) failed
[  281.640538][ T9391] FAT-fs (loop0): Directory bread(block 65) failed
[  281.642156][ T9393] FAT-fs (loop2): Directory bread(block 66) failed
[  281.643805][ T9391] FAT-fs (loop0): Directory bread(block 66) failed
[  281.646980][ T9391] FAT-fs (loop0): Directory bread(block 67) failed
[  281.648465][ T9391] FAT-fs (loop0): Directory bread(block 68) failed
[  281.650090][ T9391] FAT-fs (loop0): Directory bread(block 69) failed
[  281.651662][ T9391] FAT-fs (loop0): Directory bread(block 70) failed
[  281.653208][ T9391] FAT-fs (loop0): Directory bread(block 71) failed
[  281.655736][ T9391] FAT-fs (loop0): Directory bread(block 72) failed
[  281.657462][ T9391] FAT-fs (loop0): Directory bread(block 73) failed
[  281.663339][ T9393] FAT-fs (loop2): Directory bread(block 67) failed
[  281.700020][ T9393] FAT-fs (loop2): Directory bread(block 68) failed
[  281.702003][ T9393] FAT-fs (loop2): Directory bread(block 69) failed
[  281.703635][ T9393] FAT-fs (loop2): Directory bread(block 70) failed
[  281.742999][ T9393] FAT-fs (loop2): Directory bread(block 71) failed
[  281.749013][ T9393] FAT-fs (loop2): Directory bread(block 72) failed
[  281.750713][ T9393] FAT-fs (loop2): Directory bread(block 73) failed
[  282.537462][ T9401] loop4: detected capacity change from 0 to 2048
[  282.852254][ T7389]  loop4: p2 < >
[  283.919792][ T9401]  loop4: p2 < >
[  283.984620][ T9403] loop3: detected capacity change from 0 to 40427
[  284.688322][ T9403] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  284.690408][ T9403] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  285.011148][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  285.024405][ T9403] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-4)
[  285.560485][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  285.576351][ T9422] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  285.617570][ T9422] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  286.370230][ T9437] loop4: detected capacity change from 0 to 256
[  286.499082][ T9437] FAT-fs (loop4): Directory bread(block 64) failed
[  286.500877][ T9437] FAT-fs (loop4): Directory bread(block 65) failed
[  286.502971][ T9437] FAT-fs (loop4): Directory bread(block 66) failed
[  286.504712][ T9437] FAT-fs (loop4): Directory bread(block 67) failed
[  286.506356][ T9437] FAT-fs (loop4): Directory bread(block 68) failed
[  286.666410][ T9437] FAT-fs (loop4): Directory bread(block 69) failed
[  286.774500][ T9437] FAT-fs (loop4): Directory bread(block 70) failed
[  286.830080][ T9437] FAT-fs (loop4): Directory bread(block 71) failed
[  286.884466][ T9437] FAT-fs (loop4): Directory bread(block 72) failed
[  286.993295][ T9437] FAT-fs (loop4): Directory bread(block 73) failed
[  287.092300][ T9441] loop3: detected capacity change from 0 to 736
[  287.097216][ T9441] iso9660: Unknown parameter 'ÿ18446744073709551615'
[  287.198736][ T3816] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  287.287011][   T30] audit: type=1326 audit(286.104:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9439 comm="syz.3.729" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff90d4a9a8 code=0x0
[  287.450018][ T9448] loop2: detected capacity change from 0 to 2048
[  288.166168][ T9448]  loop2: p2 < >
[  288.203828][ T3816] usb 1-1: Using ep0 maxpacket: 32
[  288.266898][ T3816] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.279001][ T3816] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  288.292378][ T3816] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.359123][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  289.331489][ T3816] usb 1-1: config 0 descriptor??
[  289.345487][ T3816] usb 1-1: can't set config #0, error -71
[  289.353074][ T3816] usb 1-1: USB disconnect, device number 13
[  289.464159][ T9463] loop3: detected capacity change from 0 to 2048
[  290.019412][ T9465] loop2: detected capacity change from 0 to 256
[  290.022687][ T9463]  loop3: p2 < >
[  290.071388][ T6038]  loop3: p2 < >
[  290.098522][ T9465] FAT-fs (loop2): Directory bread(block 64) failed
[  290.100453][ T9465] FAT-fs (loop2): Directory bread(block 65) failed
[  290.104074][ T9465] FAT-fs (loop2): Directory bread(block 66) failed
[  290.106143][ T9465] FAT-fs (loop2): Directory bread(block 67) failed
[  290.107932][ T9465] FAT-fs (loop2): Directory bread(block 68) failed
[  290.109843][ T9465] FAT-fs (loop2): Directory bread(block 69) failed
[  290.111754][ T9465] FAT-fs (loop2): Directory bread(block 70) failed
[  290.113500][ T9465] FAT-fs (loop2): Directory bread(block 71) failed
[  290.115345][ T9465] FAT-fs (loop2): Directory bread(block 72) failed
[  290.117041][ T9465] FAT-fs (loop2): Directory bread(block 73) failed
[  290.153047][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  290.273340][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  292.100860][ T3816] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  292.289461][ T3816] usb 1-1: Using ep0 maxpacket: 16
[  292.323528][ T3816] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  292.371384][ T3816] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  292.420660][ T3816] usb 1-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  292.425249][ T3816] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.439299][ T3816] usb 1-1: config 0 descriptor??
[  292.666362][ T9492] loop4: detected capacity change from 0 to 736
[  292.693808][ T9492] iso9660: Unknown parameter 'ÿ18446744073709551615'
[  292.732347][ T9488] loop1: detected capacity change from 0 to 40427
[  292.735436][ T9488] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  292.737585][ T9488] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  292.744817][ T9488] F2FS-fs (loop1): invalid crc value
[  292.763797][ T9488] F2FS-fs (loop1): Found nat_bits in checkpoint
[  292.786179][   T30] audit: type=1326 audit(291.621:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9490 comm="syz.4.744" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x0
[  292.822983][ T9500] loop2: detected capacity change from 0 to 256
[  292.828533][ T9488] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  292.837146][ T9488] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  292.896137][ T9500] FAT-fs (loop2): Directory bread(block 64) failed
[  292.899180][ T9500] FAT-fs (loop2): Directory bread(block 65) failed
[  292.913106][ T9500] FAT-fs (loop2): Directory bread(block 66) failed
[  292.917184][ T9500] FAT-fs (loop2): Directory bread(block 67) failed
[  292.925326][ T9500] FAT-fs (loop2): Directory bread(block 68) failed
[  292.929378][ T9500] FAT-fs (loop2): Directory bread(block 69) failed
[  292.954315][ T9500] FAT-fs (loop2): Directory bread(block 70) failed
[  292.958473][ T9500] FAT-fs (loop2): Directory bread(block 71) failed
[  292.970192][ T9500] FAT-fs (loop2): Directory bread(block 72) failed
[  292.974903][ T9500] FAT-fs (loop2): Directory bread(block 73) failed
[  292.991070][ T3816] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[  292.992946][ T3816] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[  292.994712][ T3816] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[  292.996857][ T3816] appleir 0003:05AC:8241.0002: No inputs registered, leaving
[  293.002826][ T3816] appleir 0003:05AC:8241.0002: hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.0-1/input0
[  294.179549][ T1759] usb 1-1: USB disconnect, device number 14
[  295.002949][ T9511] loop3: detected capacity change from 0 to 40427
[  295.019175][ T9511] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  295.022100][ T9511] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  295.095070][ T9511] F2FS-fs (loop3): invalid crc value
[  295.182635][ T4633] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  295.185713][ T4633] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  295.624374][ T9511] F2FS-fs (loop3): Found nat_bits in checkpoint
[  295.777925][ T9520] loop0: detected capacity change from 0 to 40427
[  295.793660][ T9520] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  295.795734][ T9520] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  295.805985][ T9520] F2FS-fs (loop0): invalid crc value
[  295.821622][ T9520] F2FS-fs (loop0): Found nat_bits in checkpoint
[  295.855333][ T9511] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  295.857380][ T9511] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  296.032252][ T9520] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  296.034081][ T9520] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  296.355680][ T9539] syz.3.749: attempt to access beyond end of device
[  296.355680][ T9539] loop3: rw=2049, sector=45096, nr_sectors = 112 limit=40427
[  296.981963][ T9536] loop4: detected capacity change from 0 to 2048
[  298.094038][ T9536]  loop4: p2 < >
[  298.695583][ T7912] udevd[7912]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  298.745696][ T7371] syz-executor: attempt to access beyond end of device
[  298.745696][ T7371] loop3: rw=2051, sector=45096, nr_sectors = 112 limit=40427
[  298.765817][ T7371] F2FS-fs (loop3): Issue discard(5637, 5637, 14) failed, ret: -5
[  298.788977][ T3609] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  298.800352][ T3609] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  298.864537][ T9552] loop1: detected capacity change from 0 to 736
[  298.867845][ T9554] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  298.868218][ T9552] iso9660: Unknown parameter 'ÿ18446744073709551615'
[  298.895689][   T30] audit: type=1326 audit(297.726:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9551 comm="syz.1.760" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x0
[  298.903012][ T9554] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  299.263515][ T9561] trusted_key: encrypted_key: insufficient parameters specified
[  300.136955][ T9559] loop0: detected capacity change from 0 to 40427
[  300.534564][ T6437] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  300.659031][ T9559] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  300.703760][ T9559] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  300.707206][ T9559] F2FS-fs (loop0): invalid crc value
[  300.830734][ T9559] F2FS-fs (loop0): Found nat_bits in checkpoint
[  300.856542][ T9559] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  300.858371][ T9559] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  301.551390][ T9569] loop3: detected capacity change from 0 to 40427
[  301.631584][ T9569] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  301.633828][ T9569] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  301.998260][ T9569] F2FS-fs (loop3): invalid crc value
[  302.651920][ T9581] loop1: detected capacity change from 0 to 40427
[  302.654610][ T9581] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  302.656821][ T9581] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  302.807578][ T9569] F2FS-fs (loop3): Found nat_bits in checkpoint
[  302.853513][ T9599] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  302.857145][ T9581] F2FS-fs (loop1): invalid crc value
[  302.872118][ T9569] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  302.873900][ T9569] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  302.906641][ T9599] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  303.017952][ T4633] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  303.020967][ T4633] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  303.081381][ T9581] F2FS-fs (loop1): Found nat_bits in checkpoint
[  303.187445][ T9607] syz.3.764: attempt to access beyond end of device
[  303.187445][ T9607] loop3: rw=2049, sector=45096, nr_sectors = 112 limit=40427
[  304.082725][ T7371] syz-executor: attempt to access beyond end of device
[  304.082725][ T7371] loop3: rw=2051, sector=45096, nr_sectors = 112 limit=40427
[  304.089704][ T7371] F2FS-fs (loop3): Issue discard(5637, 5637, 14) failed, ret: -5
[  304.332769][ T9612] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.382760][ T9617] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.388189][ T9612] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.412924][ T9614] mac80211_hwsim hwsim27 wlan1: entered allmulticast mode
[  304.429273][ T9617] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.473188][ T4345] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.480432][ T4345] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  306.522519][ T6427] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  307.292814][ T4345] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  307.295200][ T4345] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  307.700832][ T9650] loop4: detected capacity change from 0 to 40427
[  307.719016][ T9655] loop2: detected capacity change from 0 to 40427
[  307.721831][ T9655] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  307.723718][ T9655] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  307.726760][ T9655] F2FS-fs (loop2): invalid crc value
[  307.727067][ T9650] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  307.737499][ T6435] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  307.784059][ T9650] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  307.828667][ T9650] F2FS-fs (loop4): invalid crc value
[  307.832787][ T9650] F2FS-fs (loop4): Found nat_bits in checkpoint
[  307.861395][ T9650] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  307.864525][ T9650] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  308.016687][ T9655] F2FS-fs (loop2): Found nat_bits in checkpoint
[  308.033404][ T9655] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  308.035416][ T9655] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  308.395172][ T9671] syz.4.783: attempt to access beyond end of device
[  308.395172][ T9671] loop4: rw=2049, sector=45096, nr_sectors = 112 limit=40427
[  308.872713][ T9668] loop3: detected capacity change from 0 to 2048
[  308.971271][ T9668]  loop3: p2 < >
[  308.987499][ T9653] loop0: detected capacity change from 0 to 40427
[  309.008053][ T9653] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  309.201453][ T9653] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  309.300663][ T9673] syz.2.785: attempt to access beyond end of device
[  309.300663][ T9673] loop2: rw=2049, sector=45096, nr_sectors = 112 limit=40427
[  309.663210][ T6944] syz-executor: attempt to access beyond end of device
[  309.663210][ T6944] loop4: rw=2051, sector=45096, nr_sectors = 112 limit=40427
[  309.692081][ T6944] F2FS-fs (loop4): Issue discard(5637, 5637, 14) failed, ret: -5
[  309.701273][ T9653] F2FS-fs (loop0): invalid crc value
[  309.705514][ T9653] F2FS-fs (loop0): Found nat_bits in checkpoint
[  309.860855][ T9664] loop1: detected capacity change from 0 to 40427
[  309.864244][ T7064] syz-executor: attempt to access beyond end of device
[  309.864244][ T7064] loop2: rw=2051, sector=45096, nr_sectors = 112 limit=40427
[  309.871649][ T9664] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  309.873718][ T9664] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  309.876406][ T9653] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  309.888291][ T9653] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  309.888536][ T7064] F2FS-fs (loop2): Issue discard(5637, 5637, 14) failed, ret: -5
[  309.989665][ T9664] F2FS-fs (loop1): invalid crc value
[  310.089099][ T9680] loop3: detected capacity change from 0 to 32768
[  310.238232][ T9688] syz.0.784: attempt to access beyond end of device
[  310.238232][ T9688] loop0: rw=2049, sector=45096, nr_sectors = 112 limit=40427
[  311.463133][ T2339] ieee802154 phy0 wpan0: encryption failed: -22
[  311.464884][ T2339] ieee802154 phy1 wpan1: encryption failed: -22
[  311.471737][ T9664] F2FS-fs (loop1): Found nat_bits in checkpoint
[  311.614675][ T9692] loop4: detected capacity change from 0 to 2048
[  311.631451][ T9692] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  312.970368][ T6951] syz-executor: attempt to access beyond end of device
[  312.970368][ T6951] loop0: rw=2051, sector=45096, nr_sectors = 112 limit=40427
[  312.985207][ T6951] F2FS-fs (loop0): Issue discard(5637, 5637, 14) failed, ret: -5
[  315.104318][ T9721] trusted_key: encrypted_key: key user:syz not found
[  315.186045][ T9725] loop0: detected capacity change from 0 to 256
[  315.283504][ T9703] loop1: detected capacity change from 0 to 40427
[  315.308235][ T9703] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  315.310464][ T9703] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  315.436317][ T9703] F2FS-fs (loop1): invalid crc value
[  315.449108][ T9703] F2FS-fs (loop1): Found nat_bits in checkpoint
[  316.002836][ T9742] loop3: detected capacity change from 0 to 256
[  316.034605][ T9703] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  316.036567][ T9703] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  316.063823][ T9703] syz.1.794: attempt to access beyond end of device
[  316.063823][ T9703] loop1: rw=2049, sector=45096, nr_sectors = 112 limit=40427
[  316.067876][ T9742] FAT-fs (loop3): Directory bread(block 64) failed
[  316.069645][ T9742] FAT-fs (loop3): Directory bread(block 65) failed
[  316.074731][ T9742] FAT-fs (loop3): Directory bread(block 66) failed
[  316.076755][ T9742] FAT-fs (loop3): Directory bread(block 67) failed
[  316.078550][ T9742] FAT-fs (loop3): Directory bread(block 68) failed
[  316.079993][ T9742] FAT-fs (loop3): Directory bread(block 69) failed
[  316.084626][ T9742] FAT-fs (loop3): Directory bread(block 70) failed
[  316.086855][ T9742] FAT-fs (loop3): Directory bread(block 71) failed
[  316.088738][ T9742] FAT-fs (loop3): Directory bread(block 72) failed
[  316.090582][ T9742] FAT-fs (loop3): Directory bread(block 73) failed
[  316.144268][ T7060] syz-executor: attempt to access beyond end of device
[  316.144268][ T7060] loop1: rw=2051, sector=45096, nr_sectors = 112 limit=40427
[  316.147811][ T7060] F2FS-fs (loop1): Issue discard(5637, 5637, 14) failed, ret: -5
[  318.092780][ T9759] pim6reg1: entered promiscuous mode
[  318.097327][ T9759] pim6reg1: entered allmulticast mode
[  318.175674][ T9751] loop4: detected capacity change from 0 to 32768
[  320.302560][ T9786] loop0: detected capacity change from 0 to 256
[  320.341726][ T9786] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  320.344926][ T9786] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  320.383908][ T9786] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe563dbae, utbl_chksum : 0xe619d30d)
[  320.385112][ T9789] bridge: RTM_NEWNEIGH with invalid ether address
[  320.456541][ T9774] loop3: detected capacity change from 0 to 40427
[  320.465105][ T9774] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  320.469015][ T9774] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  320.490660][ T9774] F2FS-fs (loop3): invalid crc value
[  320.592206][ T9774] F2FS-fs (loop3): Found nat_bits in checkpoint
[  320.617462][ T9774] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  320.619274][ T9774] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  321.402856][ T9801] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  321.444180][ T9801] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  322.224460][   T30] audit: type=1326 audit(321.041:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9799 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab94a9a8 code=0x7fc00000
[  322.855309][ T9819] ptrace attach of "./syz-executor exec"[6951] was attempted by "./syz-executor exec"[9819]
[  322.921570][ T9822] netlink: 8 bytes leftover after parsing attributes in process `syz.3.826'.
[  323.704020][ T9829] loop0: detected capacity change from 0 to 512
[  323.740263][ T9829] overlayfs: missing 'lowerdir'
[  323.747793][ T9830] loop3: detected capacity change from 0 to 256
[  323.781056][ T9833] loop2: detected capacity change from 0 to 2048
[  323.823019][ T9833] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.953597][ T9840] loop3: detected capacity change from 0 to 2048
[  323.969804][ T9840] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.010434][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.132479][ T9843] input: syz1 as /devices/virtual/input/input3
[  324.363771][ T7371] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.408203][ T9852] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  325.410903][ T9852] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  325.966270][ T6504] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  326.117587][ T6504] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  326.120075][ T6504] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  326.132996][ T6504] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  326.137590][ T6504] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.145135][ T6504] usb 1-1: Product: syz
[  326.148634][ T6504] usb 1-1: Manufacturer: syz
[  326.154276][ T6504] usb 1-1: SerialNumber: syz
[  326.167437][ T6504] usb 1-1: config 0 descriptor??
[  326.191854][ T6504] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  326.470455][ T6504] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -12
[  326.481399][ T6504] usb 1-1: USB disconnect, device number 15
[  326.494662][ T7912] udevd[7912]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  326.814704][ T9873] netlink: 16 bytes leftover after parsing attributes in process `syz.4.841'.
[  329.434895][ T9907] loop2: detected capacity change from 0 to 512
[  329.474660][ T9907] EXT4-fs (loop2): Test dummy encryption mode enabled
[  329.493383][ T9907] EXT4-fs error (device loop2): __ext4_iget:4952: inode #11: block 1: comm syz.2.851: invalid block
[  329.508307][ T9907] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.851: couldn't read orphan inode 11 (err -117)
[  329.590742][ T9907] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  329.668141][ T9911] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  329.699497][ T9911] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  330.067923][ T9913] wireguard0: entered promiscuous mode
[  330.076235][ T9913] wireguard0: entered allmulticast mode
[  330.569564][ T9923] binder: 9917:9923 ioctl c0306201 0 returned -14
[  330.698999][   T30] audit: type=1326 audit(329.407:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9917 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  330.738762][   T30] audit: type=1326 audit(329.407:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9917 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  330.878597][   T30] audit: type=1326 audit(329.407:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9917 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=234 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  331.024864][   T30] audit: type=1326 audit(329.407:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9917 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  331.030139][   T30] audit: type=1326 audit(329.407:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9917 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8154a9a8 code=0x7ffc0000
[  331.406605][ T9931] loop1: detected capacity change from 0 to 512
[  331.413700][ T9932] netlink: 'syz.4.857': attribute type 15 has an invalid length.
[  331.594895][ T9931] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.613726][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.736380][ T7060] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.894095][ T9942] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  331.969804][ T9942] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  332.079521][ T9946] loop2: detected capacity change from 0 to 2048
[  332.120244][ T9946] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.304951][ T9949] netlink: 'syz.2.863': attribute type 153 has an invalid length.
[  332.794436][ T9958] loop4: detected capacity change from 0 to 2048
[  332.842649][ T9958] EXT4-fs: Ignoring removed i_version option
[  332.844206][ T9958] EXT4-fs: Ignoring removed bh option
[  332.870309][ T9958] EXT4-fs: Mount option(s) incompatible with ext2
[  332.942310][ T7064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.215969][ T9955] loop1: detected capacity change from 0 to 40427
[  333.228881][ T9955] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  333.270005][ T9955] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  333.280249][ T9955] F2FS-fs (loop1): invalid crc value
[  333.283429][ T9955] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669)
[  333.341573][ T9955] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  333.344800][ T9955] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  334.921884][ T9983] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  334.960929][ T9983] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  335.103837][ T9991] loop0: detected capacity change from 0 to 512
[  335.135731][ T9991] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.470144][ T9997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.866'.
[  335.531097][ T9997] bridge_slave_0: entered allmulticast mode
[  335.770525][T10003] netlink: 12 bytes leftover after parsing attributes in process `syz.0.874'.
[  335.876848][T10002] 
[  335.877541][T10002] ======================================================
[  335.879344][T10002] WARNING: possible circular locking dependency detected
[  335.881039][T10002] 6.12.0-rc1-syzkaller-g2d8bce6e34be #0 Not tainted
[  335.882769][T10002] ------------------------------------------------------
[  335.884596][T10002] syz.3.872/10002 is trying to acquire lock:
[  335.886102][T10002] ffff8000928827e8 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_exists+0xb0/0x32c
[  335.888404][T10002] 
[  335.888404][T10002] but task is already holding lock:
[  335.890240][T10002] ffff8000928861a8 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x25c/0x231c
[  335.892746][T10002] 
[  335.892746][T10002] which lock already depends on the new lock.
[  335.892746][T10002] 
[  335.895255][T10002] 
[  335.895255][T10002] the existing dependency chain (in reverse order) is:
[  335.897592][T10002] 
[  335.897592][T10002] -> #3 (rfcomm_ioctl_mutex){+.+.}-{3:3}:
[  335.899697][T10002]        __mutex_lock_common+0x190/0x21a0
[  335.901177][T10002]        mutex_lock_nested+0x2c/0x38
[  335.902644][T10002]        rfcomm_dev_ioctl+0x25c/0x231c
[  335.903941][T10002]        rfcomm_sock_ioctl+0x98/0xf0
[  335.905317][T10002]        sock_do_ioctl+0x134/0x2d0
[  335.906650][T10002]        sock_ioctl+0x4ec/0x838
[  335.907890][T10002]        __arm64_sys_ioctl+0x14c/0x1c8
[  335.909348][T10002]        invoke_syscall+0x98/0x2b8
[  335.910655][T10002]        el0_svc_common+0x130/0x23c
[  335.911997][T10002]        do_el0_svc+0x48/0x58
[  335.913195][T10002]        el0_svc+0x54/0x168
[  335.914379][T10002]        el0t_64_sync_handler+0x84/0x108
[  335.915866][T10002]        el0t_64_sync+0x190/0x194
[  335.917111][T10002] 
[  335.917111][T10002] -> #2 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}:
[  335.919442][T10002]        lock_sock_nested+0x5c/0x11c
[  335.920816][T10002]        rfcomm_sk_state_change+0x60/0x2c8
[  335.922238][T10002]        __rfcomm_dlc_close+0x234/0x608
[  335.923626][T10002]        rfcomm_dlc_close+0x100/0x194
[  335.925076][T10002]        __rfcomm_sock_close+0x138/0x258
[  335.926477][T10002]        rfcomm_sock_shutdown+0xa8/0x214
[  335.927936][T10002]        rfcomm_sock_release+0x58/0x114
[  335.929405][T10002]        sock_close+0xa4/0x1e8
[  335.930314][T10002]        __fput+0x1bc/0x75c
[  335.931078][T10002]        ____fput+0x20/0x30
[  335.932171][T10002]        task_work_run+0x230/0x2e0
[  335.933563][T10002]        get_signal+0x1350/0x152c
[  335.934966][T10002]        do_signal+0x26c/0x4c44
[  335.936218][T10002]        do_notify_resume+0x74/0x1f4
[  335.937592][T10002]        el0_svc+0xac/0x168
[  335.938677][T10002]        el0t_64_sync_handler+0x84/0x108
[  335.940041][T10002]        el0t_64_sync+0x190/0x194
[  335.941268][T10002] 
[  335.941268][T10002] -> #1 (&d->lock){+.+.}-{3:3}:
[  335.943043][T10002]        __mutex_lock_common+0x190/0x21a0
[  335.944595][T10002]        mutex_lock_nested+0x2c/0x38
[  335.945968][T10002]        __rfcomm_dlc_close+0x1f8/0x608
[  335.947374][T10002]        rfcomm_dlc_close+0x100/0x194
[  335.948640][T10002]        __rfcomm_sock_close+0x138/0x258
[  335.949946][T10002]        rfcomm_sock_shutdown+0xa8/0x214
[  335.951335][T10002]        rfcomm_sock_release+0x58/0x114
[  335.952805][T10002]        sock_close+0xa4/0x1e8
[  335.954035][T10002]        __fput+0x1bc/0x75c
[  335.955192][T10002]        ____fput+0x20/0x30
[  335.956281][T10002]        task_work_run+0x230/0x2e0
[  335.957699][T10002]        get_signal+0x1350/0x152c
[  335.959077][T10002]        do_signal+0x26c/0x4c44
[  335.960276][T10002]        do_notify_resume+0x74/0x1f4
[  335.961624][T10002]        el0_svc+0xac/0x168
[  335.962832][T10002]        el0t_64_sync_handler+0x84/0x108
[  335.964308][T10002]        el0t_64_sync+0x190/0x194
[  335.965596][T10002] 
[  335.965596][T10002] -> #0 (rfcomm_mutex){+.+.}-{3:3}:
[  335.967563][T10002]        __lock_acquire+0x33f8/0x77c8
[  335.968989][T10002]        lock_acquire+0x240/0x728
[  335.970296][T10002]        __mutex_lock_common+0x190/0x21a0
[  335.971858][T10002]        mutex_lock_nested+0x2c/0x38
[  335.973229][T10002]        rfcomm_dlc_exists+0xb0/0x32c
[  335.974488][T10002]        rfcomm_dev_ioctl+0xd64/0x231c
[  335.975934][T10002]        rfcomm_sock_ioctl+0x98/0xf0
[  335.977306][T10002]        sock_do_ioctl+0x134/0x2d0
[  335.978703][T10002]        sock_ioctl+0x4ec/0x838
[  335.979919][T10002]        __arm64_sys_ioctl+0x14c/0x1c8
[  335.981317][T10002]        invoke_syscall+0x98/0x2b8
[  335.982591][T10002]        el0_svc_common+0x130/0x23c
[  335.983972][T10002]        do_el0_svc+0x48/0x58
[  335.985202][T10002]        el0_svc+0x54/0x168
[  335.986415][T10002]        el0t_64_sync_handler+0x84/0x108
[  335.987881][T10002]        el0t_64_sync+0x190/0x194
[  335.989272][T10002] 
[  335.989272][T10002] other info that might help us debug this:
[  335.989272][T10002] 
[  335.991930][T10002] Chain exists of:
[  335.991930][T10002]   rfcomm_mutex --> sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_ioctl_mutex
[  335.991930][T10002] 
[  335.995830][T10002]  Possible unsafe locking scenario:
[  335.995830][T10002] 
[  335.997679][T10002]        CPU0                    CPU1
[  335.999106][T10002]        ----                    ----
[  336.000515][T10002]   lock(rfcomm_ioctl_mutex);
[  336.001653][T10002]                                lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM);
[  336.003852][T10002]                                lock(rfcomm_ioctl_mutex);
[  336.005581][T10002]   lock(rfcomm_mutex);
[  336.006698][T10002] 
[  336.006698][T10002]  *** DEADLOCK ***
[  336.006698][T10002] 
[  336.008875][T10002] 2 locks held by syz.3.872/10002:
[  336.010202][T10002]  #0: ffff0000cff8d258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sock_ioctl+0x88/0xf0
[  336.012937][T10002]  #1: ffff8000928861a8 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x25c/0x231c
[  336.015469][T10002] 
[  336.015469][T10002] stack backtrace:
[  336.017035][T10002] CPU: 1 UID: 0 PID: 10002 Comm: syz.3.872 Not tainted 6.12.0-rc1-syzkaller-g2d8bce6e34be #0
[  336.019673][T10002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  336.022215][T10002] Call trace:
[  336.023073][T10002]  dump_backtrace+0x1b8/0x1e4
[  336.024252][T10002]  show_stack+0x2c/0x3c
[  336.025326][T10002]  dump_stack_lvl+0xe4/0x150
[  336.026494][T10002]  dump_stack+0x1c/0x28
[  336.027555][T10002]  print_circular_bug+0x154/0x1c0
[  336.028852][T10002]  check_noncircular+0x310/0x404
[  336.030165][T10002]  __lock_acquire+0x33f8/0x77c8
[  336.031385][T10002]  lock_acquire+0x240/0x728
[  336.032555][T10002]  __mutex_lock_common+0x190/0x21a0
[  336.033868][T10002]  mutex_lock_nested+0x2c/0x38
[  336.035164][T10002]  rfcomm_dlc_exists+0xb0/0x32c
[  336.036474][T10002]  rfcomm_dev_ioctl+0xd64/0x231c
[  336.037816][T10002]  rfcomm_sock_ioctl+0x98/0xf0
[  336.039040][T10002]  sock_do_ioctl+0x134/0x2d0
[  336.040124][T10002]  sock_ioctl+0x4ec/0x838
[  336.041290][T10002]  __arm64_sys_ioctl+0x14c/0x1c8
[  336.042555][T10002]  invoke_syscall+0x98/0x2b8
[  336.043777][T10002]  el0_svc_common+0x130/0x23c
[  336.045053][T10002]  do_el0_svc+0x48/0x58
[  336.046134][T10002]  el0_svc+0x54/0x168
[  336.047239][T10002]  el0t_64_sync_handler+0x84/0x108
[  336.048554][T10002]  el0t_64_sync+0x190/0x194
[  336.121290][ T6951] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.