last executing test programs:

17.10290707s ago: executing program 1 (id=2524):
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r3, 0xffffffffffffffff, 0x1, 0x0, @val=@iter={0x0}}, 0x40)
r4 = socket$inet(0x2, 0x1, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, 0x0, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x10000000013, 0x0, 0x0)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040)}, 0x38)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r6)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r6, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\\\x00\x00 \x00'})

12.31451191s ago: executing program 0 (id=2534):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xfe, 0x46d, &(0x7f0000000f00)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='\x00', 0x9801)
fchdir(r0)
r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
dup3(r1, r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00'}, 0x10)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
semget$private(0x0, 0x6, 0x0)
semtimedop(0x0, 0x0, 0x0, 0x0)
chroot(&(0x7f00000005c0)='./file0/../file0/../file0/../file0\x00')
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10, &(0x7f0000000680), 0xfe, 0x244, &(0x7f0000000400)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000006c0))
write$binfmt_script(r5, &(0x7f0000000380), 0x208e24b)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)
open(&(0x7f00000001c0)='./file0/../file0\x00', 0x2404c0, 0x0)

12.31238411s ago: executing program 4 (id=2535):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r0, &(0x7f00000000c0), &(0x7f00000001c0)=@udp, 0x1}, 0x20)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syz_tun\x00'})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x12, 0x16, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f00000001c0), &(0x7f0000000280)=@udp=r3}, 0x20)
syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r2, &(0x7f00000001c0), 0x0}, 0x20)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000080)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000000000090", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
r9 = socket$inet6(0xa, 0x3, 0x7)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_int(r9, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r9, &(0x7f0000000000)={0xa, 0x0, 0x4380000, @dev, 0x22}, 0x1c)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r10, 0x29, 0x20, &(0x7f0000001b00)={@mcast1={0xff, 0x0}}, 0x20)
sendmsg$nl_route_sched(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x54, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}, {0x4}}]}]}, 0x54}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@TCA_RATE={0x6}]}, 0x2c}}, 0x0)
sendto$packet(r1, &(0x7f0000000280)="3f033608260812002c001e0089e9aa000000ce2f2a3ca60915f1bfb5f796c4391638b4283335993041acd72fef3bff77fa76b0bfac7a0e5a70f70ea7f26cbaec66af44c918195a804dfb069490b65dea25e8410329016d70461898488b34d8f8240a5516b67e33a05f5f606fa4da26480850cc204c9847292f9aa26d0ef793bfb6590ab4878e992e9f02bd54b98d32e6986bbb1fa823e0e67938294bf8a640bbf23266e55a0ffa0cc5d9d553118ec6d771aab8b3d1", 0xb5, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

12.234465817s ago: executing program 2 (id=2536):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, 0x0, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
clock_getres(0x2, &(0x7f0000000280))
read$FUSE(r0, &(0x7f0000006380)={0x2020}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

10.107608712s ago: executing program 1 (id=2539):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = eventfd2(0x101, 0x800)
write$eventfd(r3, &(0x7f0000000080)=0xfffffffffffffff7, 0x8)
ioctl$KVM_GET_REGS(0xffffffffffffffff, 0xaece, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_GET_API_VERSION(r4, 0xae00, 0x0)
ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f00000001c0)={0x0, 0x0, @ioapic={0x4000, 0xfffffffd, 0x714, 0x2, 0x0, [{0xfe, 0x20, 0x3, '\x00', 0x79}, {0x1f, 0xff, 0x8, '\x00', 0x6}, {0x40, 0x8, 0x9}, {0xf9, 0x86, 0x7f, '\x00', 0xfb}, {0x15, 0x3, 0x0, '\x00', 0x6}, {0x2, 0x1, 0x0, '\x00', 0xff}, {0x8, 0x0, 0x2, '\x00', 0x81}, {0x40, 0x3f, 0xfb, '\x00', 0xfa}, {0x9, 0xe0, 0x7, '\x00', 0x6}, {0x0, 0x7b, 0x20, '\x00', 0x2}, {0x4, 0x0, 0x2, '\x00', 0x1}, {0x8, 0x80, 0xfb, '\x00', 0xc9}, {0x81, 0x0, 0xd1, '\x00', 0x3f}, {0x0, 0x1, 0x12, '\x00', 0xff}, {0xae, 0x8, 0x20, '\x00', 0x9}, {0x6, 0x7f, 0xfe, '\x00', 0xf8}, {0xbd, 0x0, 0x4, '\x00', 0x1}, {0x5, 0x2, 0x1, '\x00', 0x40}, {0x0, 0x5, 0x80, '\x00', 0xff}, {0x40, 0x40, 0xfc, '\x00', 0x8}, {0xfa, 0x0, 0x0, '\x00', 0x7}, {0x0, 0xe8}, {0x81, 0x40, 0x0, '\x00', 0x3f}, {0x0, 0x4, 0x0, '\x00', 0x19}]}})
ioctl$KVM_SET_GSI_ROUTING(r5, 0x4020ae46, &(0x7f0000000180)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x2, @sint}]})
munmap(&(0x7f000000f000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
mmap$KVM_VCPU(&(0x7f0000eb2000/0x3000)=nil, 0x930, 0x0, 0x32e7851d6de9e532, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ff2000/0xd000)=nil, 0xd000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_API_VERSION(0xffffffffffffffff, 0xae00, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
openat$kvm(0x0, 0x0, 0x0, 0x0)
ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, &(0x7f0000000100)={0xc9, 0x0, 0xc})
mmap$KVM_VCPU(&(0x7f0000eb2000/0x3000)=nil, 0x930, 0x1, 0x8010, 0xffffffffffffffff, 0x0)

10.054291247s ago: executing program 2 (id=2540):
r0 = open(&(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181102, 0x0)
ioctl$BLKDISCARD(r0, 0x127d, &(0x7f00000000c0)=0x80000)
syz_mount_image$udf(&(0x7f0000000a40), &(0x7f0000000100)='./bus\x00', 0x2004400, &(0x7f00000003c0)=ANY=[@ANYBLOB="73686f72746164000000006d653d3030303030303030303030303030303030b030342c6e6f6164696e6963622c7569643d006311a07f49ccd818eaae458725579859224b781da84db4d6f419f90a64f280ceec0a868f0ce4dbf421d8fe7dbf5a8a6b493e456342c36957a81a9f2323f6f29a40705b4b15f73f5e0615b2e6c0d248ec7ae76a8991a6df7323389fe9e1853a750927aa2834c68cfec9a7b8157406577eabbb99f3d3bf904c03dd9347cc8fe7776801fa5495bd9dbc1e", @ANYRES16=r0, @ANYRES16], 0x1, 0xa1b, &(0x7f0000000a80)="$eJzs209sm+d9B/Dfw1dyaKdrFbdzkzbLWLQIMqUN5P9KvAH2rApt5iZGZWXzZTBlyQ4RiVIluXC6ofWwAUWAHowC62EDhlx2GLCDd9hlp2CHYcCwwdhhKFa009I1S28sNiCnTcP78qFEyXKsxbElO5+PYX/Jl7+XfP7Q5Es+fAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAiPjNL58aOZh2uhUAwP300sTXRw57/weAj5RzPv8DAAAAAAAAAAAAAMBul6KIP40Ur/64ky5U17vqZ1rtK1cnx8a33m1vihS1KKr68m/94KHDR44eOz7ay/ff/8P2RLw8ce5U4/T83MLizNLSzHRjst26OD89s+17uNv9NxuuBqAx99qV6UuXlhqHnju84earQ+888uiBoRPHXzy/v1c7OTY+PtFXMzD4gR/9Frc7w2NPFPHTSFH/7rupGRG1uPuxuMNz517bW3ViuOrE5Nh41ZHZVrO9XN6YarmqFjHUt9PJ3hjdh7m4K42Ia2XzywYPl92bWGguNqdmZxpnm4vLreXWfDvVuq0t+zMUtRhNEQsR0SluvbvBKOLfIsX33uukqYgoeuPwbHVi8J3bU7sHfdyGgbJvRcTNeADmbBd7JIp4I1J8//xIXMzjWg3b0xFfK/OpiG+UuRJxPV9P5RPkyYhfbPF84sEyEEX8Y6SYT5003Zv76nXlzCuNr7YvzffV9l5XHvj3h/tpl7821aOIqeoVv5M++MEOAAAAAAC7TxF/EyluzD2TFqJ/TbHVvtw415ya7X4r3Pvuv5H3Wl1dXR1K3WzkHMl5MufZnBdyLuS8lvN6zjdz3sj5Vs6bOVdydnJGLT9+zkbOkZwnc57NeSHnQs5rOa/nfDPnjZxv5byZcyVnJ2dY9wIAAAAAAABgl9kbRfwoUnz+r79ZnVcc1Xnpnzgx+sxXvtB/zvin73A/Ze1zEXEjtndO7mA+dTjVyj8ffr/YnnoU8e18/t8f7HRjAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAHVWLIj4dKX7wRidFiohGxIXo5kqx060DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPoh6KuJ0pPj5l+vV9ZsR8ZmI+N/V8k9ErKxustMtBgAAAAAAAABukYoYiRSPPdFJQxFxdeidRx49MHTi+Ivn9xdRRCpL+utfnjh3qnF6fm5hcWZpaWa6MdluXZyfntnuw9XPtNpXrk6Ojd+TztzR3nvc/r310/MLry+2Lr+6vOXt++qnppaWF5sXt7459kYtYqR/y3DV4Mmx8arRs61mu9o11W7TwFpEY7udAQAAAAAAAOChsS8VcTRSvNo6knrrxgPdNf9f6l4r1mr//PfXfwswuyl7+n8/sJ3LabsNHa4W3huTY+PjE32bBwZvLS3blFIRfxUpPvs7j1fr4Sn2bbk2XtbtiRTHvnkk1w19tqw7uaGqPjw5Nt54ab79pVOzs/MXm8vNqdmZxsRC8+K2fzgAAAAAAAAAAPfQvlTEn0WK3x25mXrnnef1/4Hutb71/1+vltAr9bQx11Rr+x+v1va7lz9xYrQx/qu3234v1v/LNqVUxL9Gisd+7/HqfPre+v/Iptqy7r8ixb/8w5O5rranrDvY6073Hi+1ZmdGUh6rzz3bq42q9niu/eR67cGy9nOR4i+e3lg7mms/tV57qKz9o0jxP0e3rv3l9drDZe0fRorfervRq91X1p7JtQfWa5+7OD87fadhLef/byPF2Z9/JfX6fNv57/v9x7VNueaWOX//yx/W/A/1bbuW5/VHef4P3mH+/y5S/PFPnsx13bE/lG9/rPp3ff5/O1L8569srD2Wa/ev1x7cbrd2Wjn/X4wUJ374w7U+5/nPI7s+Q/3z/5mBjbn2LNmh+X+sb9tQbtfh/+dYfBQtvf6t15qzszOLLrjgggtrF3b6lYn7oXz//6dI8cKZWuodx+T3/491r60f/7337fX3/xc25Zodev/f37fthXzUMjgQUV+eWxg8EFFfev1bX2rNNS/PXJ5pjx47euT50WPHnh/c0zu2W7+07aF7KJTzfyZSvPKTf177HLPx+G/r4/99m3LNDs3/J/v7tOG4ZttD8ZFUzv/1SPGdt99d+7z5fsf/vc//z3x+Y679/9uh+f9U37bqN/4fj3i+b9ueiDi13ccCAACAh8y+vE7+J7/292vnvG/8/B9f6NX2f/9zO7vh/H8AAAAAAPio25eK+MtI8d8jX0y9c8i28/vP6U25Zod+/3egb9v0fTqvZduDDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwC6Uo4qlI8eqPO2mlKK931c+02leuTo6Nb73b3hQpalFU9eXf+sFDh48cPXZ8tJfvv/+H7Yl4eeLcqcbp+bmFxZmlpZnpxmS7dXF+embb93C3+282XA1AY+61K9OXLi01Dj13eMPNV4feeeTRA0Mnjr94fn+vdnJsfHyir2Zg8AM/+i3SbbbviSIuRYr6d99N/15E1OLux+IOz517bW/VieGqE5Nj41VHZlvN9nJ5Y6rlqlrEUN9OJ3tjdB/m4q40Iq6VzS8bPFx2b2Khudicmp1pnG0uLreWW/PtVOu2tuzPUNRiNEUsRESnuPXuBqOIqUjxvfc66e0iouiNw7MvTXx95PCd21O7B33st/qdLTcPlH0rIm7GAzBnu9gjUcTHIsX3z4/ET4vuuFbD9nTE18p8KuIbZa5EXM/XU/kEeTLiF1s8n3iwDEQRZyPFfOqk/yjy3FevK2deaXy1fWm+r7b3uvLAvz/cT7v8takeRfysesXvpJ/5/wwAAAAA8BAp4jcixY25Z1K1Pri2pthqX26ca07Ndr/W733338h7ra6urg6lbjZyjuQ8mfNszgs5F3Jey3k955s5b+R8K+fNnCs5Ozmjlh8/ZyPnSM6TOc/mvJBzIee1nNdzvpnzRs63ct7MuZKzkzN8Tw4AAAAAAADsQrUo4vFI8YM3Omm16C7wXohurljnfOj9XwAAAP//dBg+9w==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000480)='./file0\x00', 0x18090, &(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYRES16, @ANYRES32, @ANYRES8, @ANYRES16=0x0, @ANYRES64], 0x8, 0x2f6, &(0x7f0000000a00)="$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")
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x400141042, 0x0)
fcntl$setstatus(r1, 0x4, 0x2c00)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x14b042, 0x0)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=@newsa={0x160, 0x10, 0x713, 0x0, 0x0, {{@in=@broadcast, @in=@multicast2}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x33}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x6d, 0x14, {{'cmac(aes)\x00'}, 0x108, 0x0, "911abdae8ff7b82e996a149209c7ddbe8dbf4e795520832678d230f291bd2b8dfa"}}]}, 0x160}}, 0x0)
connect$netlink(r4, &(0x7f0000000140)=@unspec, 0xc)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000900)={0x6, 0x0, [{0x4, 0x85, &(0x7f0000000180)=""/133}, {0x100000, 0x1000, &(0x7f0000002600)=""/4096}, {0xd000, 0xab, &(0x7f00000007c0)=""/171}, {0x107000, 0xffb, &(0x7f0000003600)=""/4091}, {0x0, 0x1000, &(0x7f0000004600)=""/4096}, {0x5000, 0x55, &(0x7f0000000880)=""/85}]})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000002580)=""/107})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000004c0)={[], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}]}, 0xfe, 0x246, &(0x7f0000001680)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r5 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
pwrite64(r5, &(0x7f0000000280)='+', 0x1, 0x0)
r6 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x7800, 0x0, 0x0)

10.015620001s ago: executing program 0 (id=2541):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
shutdown(r2, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)={0x0, ""/256, <r3=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000002040)={{r3, 0x5, 0x1000, 0x4, 0x3, 0x38d, 0x8000000000000000, 0x8, 0x1000, 0x3, 0x2, 0x2, 0x9, 0x7f, 0x7ff}})
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r6, &(0x7f00000001c0), 0xe)
listen(r6, 0x0)
poll(&(0x7f0000000000)=[{r6}], 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x11, &(0x7f00000001c0)={r5}, &(0x7f0000000200)=0x8)
sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000000000000010000d00010045151f"], 0x24}}, 0x0)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r7, 0x28, 0x8, &(0x7f0000000100)=0xffffffff00040000, 0x112)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x800})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={0x1}, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newtaction={0x12c, 0x30, 0x51b, 0x0, 0x0, {}, [{0x118, 0x1, [@m_skbmod={0x114, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_DMAC={0xa, 0x3, @random="d94c8f9e9390"}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}]}, {0xa9, 0x14, "44ed762a76f3209c801b44fae2ff341e2d5d231d1785befcf56e0cb197893cabd0b964779ac07e0778d9b502bc2a94a8123957c488b78720c04680248133a5e0ef22b41de6960707591556b53bc4569a967aee4576585222a2627a11bc391bd4aa2121344a3e6b92859cd14007d073bb08011b4e98126f55da8af4276c0335a2d58755e234a034d2c8f8d68b4179e5c9d1e0cdeb7077983f1643e01f45fc65249dffba63d6"}, {0xc}, {0xc, 0x6}}}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x44001}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3f)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={r9, 0xe0, &(0x7f0000000200)={0x0, <r10=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r11 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={r10}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r11, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

9.989241553s ago: executing program 4 (id=2542):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f00000004c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000140)='GPL\x00', 0x0, 0x95, &(0x7f0000000180)=""/149, 0x0, 0x67, '\x00', r2, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r3, 0xfffff000, 0xe, 0x0, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0x8000}, 0x28)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f00000001c0)={'wg0\x00', <r5=>0x0})
prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00'})
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r6)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LIST_PHY(r8, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f00000026c0)={0x14, r7, 0x325}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r8)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffda)
socket$inet(0x2, 0x2, 0x56d)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40841, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r10 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r10, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r9, &(0x7f00000001c0)=ANY=[@ANYBLOB="00001b1de4356c052e79aaaaaaaaaaaa88a800008100000086dd"], 0xfdef)
r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
connect$nfc_llcp(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, "4b3026fac957408150947e7a60795f5e0018f629937600a78b84091a38a5c36eeccf370f5eb579c26096615e4bb5e3e4b22353f547d300"}, 0x60)
preadv(r11, &(0x7f0000000340)=[{&(0x7f0000000180)=""/118, 0x76}], 0x3, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@ipv6_newaddr={0x40, 0x14, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r5}, [@IFA_CACHEINFO={0x14, 0x6, {0x0, 0x101}}, @IFA_LOCAL={0x14, 0x2, @mcast1}]}, 0x40}}, 0x0)

9.731437617s ago: executing program 0 (id=2544):
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x6, 0x4, 0x2003, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r1, 0x0, 0x0}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioperm(0x0, 0x3d, 0x1f)
r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r4, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r4, 0x8008770b, 0x0)
shmctl$IPC_SET(0x0, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='dlm_lock_start\x00'}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
unshare(0x20000400)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000100)={r3, &(0x7f0000000300), 0x20000000}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000040)={'wg1\x00', <r7=>0x0})
sendmsg$inet(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB="1000000000000000b4000000070000001c000000000000000000000008000000", @ANYRES32=r7], 0x30}, 0x40084)

8.657046186s ago: executing program 3 (id=2545):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
shmctl$IPC_SET(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000140)={'#! ', './file0', [{0x20, '\x00\x00\x01'}, {0x20, '^-\\&\xa9H'}]}, 0x16)
r3 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
write$sndseq(r3, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000040)={0x36b, @tick=0x8})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r4, &(0x7f0000000000), 0x0}, 0x20)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x10008, &(0x7f0000000000), 0x1, 0x4f5, &(0x7f0000000540)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffd94)

8.460214214s ago: executing program 0 (id=2546):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000800)=ANY=[@ANYBLOB="3c7f000000000000000000000000000020000000dd4ecb85704dcef6085274833a985cc1ec5f83382dbb9d146130af7c3e53f4f9a8aa9820ab12de8e313457bca8ac589813281bc91a18372e617f4db25e0308231cc070eb060a50aef44ba9039b1ae82c53d1548b8157de1d495568df", @ANYRESOCT=0x0, @ANYBLOB="00000000000000001c37851a5d710cfc4f2a7f0016801800018014000b0000000000000001058246433f097c57bd0d7da0c65d7ef26da76d0f4ca2a7fda165506c62d8d39fb86978a1b975c801e82439db1734047ba80c58ab6de4c5e8cee0d515956d02a8d511359bb9ebeb6d109ea733a9c49dd5b3b73727fff9ececc74aff7e8bec13911766197822645eb0a165b4df1416339b2cdabae7c925861dbd16015b9ecc41ea064d92515197a014bb070dde027699de1fbee0d275ed9fef72f9bc8499a2dd10ea4bc5d9a52c641bd8e69b155d36f231bb120d9994f0"], 0x3c}}, 0x84)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r4=>0x0})
bind$packet(r1, &(0x7f00000000c0)={0x11, 0xf8, r4, 0x1, 0x0, 0x6, @local}, 0x14)
bind$packet(r2, &(0x7f0000000380)={0x11, 0x4, r4, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x11, &(0x7f0000001f00)=ANY=[@ANYBLOB="01"], 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000000), 0x4)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r7, 0x0, 0x60, &(0x7f0000000040)={'filter\x00', 0x7, 0x4, 0x3e8, 0x0, 0x0, 0x0, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@multicast1, @multicast1, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'team_slave_0\x00', 'veth1_to_bridge\x00', {}, {}, 0x0, 0xbd9d9eaf964b94b0}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "15000cb63cee987195f4be33780dffcf592eeea7755477082f732a619d4b0c2b60df25d75aed4df4d2a40d7813991e28e52ee6801f82080566fcaae05f01ae1a"}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@arp={@dev, @multicast1, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'ip6gretap0\x00', 'ipvlan0\x00'}, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000003c0)}], 0x1, 0x0, 0x0, 0x2663}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000680)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r8, @ANYBLOB="4800330080000000080211000001080211000000505050505050000000000002080000000000ca9dc687a9919bde0101040600000000000025030000002a01007206030303030303378feb05e41b49ea969e328a358384f4ffc461a465f819972cfba6b78506bb99a70b986b31dacbf96b626c70f03d0cf315edcc24e9f6e4"], 0x64}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0xf000)
setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000240)=0xc, 0x4)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)

8.459307744s ago: executing program 2 (id=2547):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1, 0xfffffffd, 0x4, 0x1ff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r0}, 0x0, 0x0}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = epoll_create1(0x0)
fcntl$getflags(r2, 0xb)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff})
dup(r3)
socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = fsopen(&(0x7f0000000100)='nfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x80801)
clock_gettime(0x1, &(0x7f00000002c0))
socket$inet6(0xa, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r4, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000380)={0x20, 0x0, 0x100, 0x70bd27, 0x25dfdbed, {{}, {@void, @val={0xc, 0x99, {0x1, 0x5}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r6, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02000003010000000000000002000020d3"])
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000300))

7.663468007s ago: executing program 4 (id=2548):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000080)={[{@grpquota}, {@grpid}, {@nomblk_io_submit}, {@acl}, {@dioread_nolock}, {@data_journal}, {@nomblk_io_submit}, {@stripe={'stripe', 0x3d, 0x8b}}]}, 0x1, 0x5d8, &(0x7f0000000bc0)="$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")
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f00000005c0)=0x3)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r3, &(0x7f00000017c0)=[{&(0x7f0000001640)=""/49, 0x31}], 0x1, 0x0, 0x0)
shutdown(r2, 0x0)
recvmmsg(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4000359, 0x0, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), 0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f0000001d00)='net/unix\x00')
r6 = fanotify_init(0x0, 0x1)
readv(r6, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/183, 0xb7}], 0x1)
fanotify_mark(r6, 0x1, 0x40000011, r5, 0x0)
preadv(r5, 0x0, 0x0, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r7}, 0x10)
ioctl$VT_RESIZEX(r5, 0x560a, &(0x7f0000000300)={0xfff, 0x4, 0x8001, 0x7, 0x1})
r8 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="1400000035000b63d25a80648c2594f90d24fc60", 0x14}], 0x1}, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x10)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000ec1c5de7543d982a418d91c4a2c94f0ff56e83ea09da2a5f4946305bdd15626de6ef0c17468101dec579e3e51a42ad7d72697b23d8e92fffee42f57396e2d39ca11fc79de149bb05d46457f1f5035fb4909052b7be40b95a06e67e8c7155f3ac216a5da1fa02d81ec84c90a6bb80844573c40cd9af19e54354124e4668a0f717ee44d0fdef3dce2946134f36772c4d64c81ef96a9307d5690b0989f2eb157172b35f980206787b3db897c8f9e90262bcbc8ae26cf6c103175646bfa818902c26f3f598d023a44cf3c76479139fee"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r10}, 0x10)
write(r9, &(0x7f0000000580)="240000001a001f001007f4f9002304000a04f511080004000201000208001e8005000000", 0x24)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)={0x40, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x280a}, @NL80211_ATTR_IE={0x1b, 0x2a, [@rann={0x7e, 0x15, {{}, 0x0, 0x0, @device_b}}]}]}, 0x40}}, 0x0)

7.498601351s ago: executing program 0 (id=2549):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
poll(&(0x7f0000000200)=[{r2, 0x4a6}, {r3}], 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x89a2, &(0x7f0000000900)={'bridge0\x00', @link_local})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000dc0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000008000000000003b810000850000006d000000650000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000100)={[{@noblock_validity}, {@resuid}, {@data_err_abort}, {@noload}, {@nobarrier}, {@lazytime}]}, 0xfe, 0x472, &(0x7f0000000940)="$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")
chdir(&(0x7f0000000280)='./file0\x00')
r6 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f0000002780)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0xe0, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffc1a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x18000000000002a0, 0x16, 0x0, &(0x7f0000000000)="b9ff03076044238c9e9e15f088a84cb688a84d720800", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_usb_connect(0x0, 0x52, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000042ebf04021046c022f1f0000000109024000010000000009040000000202ff00052406000005240000000d240f01000000000000000000052406000005242000000d240f"], 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x1c1401, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r8, 0xc018937a, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r10=>r0, {0x10000}}, './file0\x00'})
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r5)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r10, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x24, r11, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x80}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0xe40}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000051)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
r12 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r12, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r12, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r12, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
umount2(&(0x7f0000000180)='./file0\x00', 0x0)
write(r7, &(0x7f0000004200)='t', 0x7ffff000)

7.290249051s ago: executing program 3 (id=2550):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x68, 0x0, 0x2, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x3f}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x9d3}, @NL80211_ATTR_PMKID={0x14, 0x55, "054865aac6d4964592a9fce2ed6428fa"}, @NL80211_ATTR_PMKID={0x14, 0x55, "02bc883e791c10db26e3809fa9823ea6"}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x3}, @NL80211_ATTR_PMK={0x14, 0xfe, "3e7ed52c746d9fe519e9621575149095"}]}, 0x68}}, 0x44010)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = dup3(r2, r1, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0x0)
r4 = syz_io_uring_setup(0x4172, &(0x7f0000000780)={0x0, 0x8a2, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r4, 0x567, 0x0, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0x40046208, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
r9 = dup3(r7, r8, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000200)={'erspan0\x00', <r11=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)=ANY=[@ANYBLOB="5000000010000104001d80000000000000000000", @ANYRES32=r11, @ANYBLOB="0000000000000000300012800b00010065727370616e0000200002800600187893000000040012000500160002000000050017"], 0x50}}, 0x0)
r12 = syz_usb_connect(0x2, 0x24, &(0x7f00000015c0)={{0x12, 0x1, 0x0, 0xe9, 0xb9, 0x3e, 0x8, 0x2040, 0x7080, 0x4a2c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x31, 0x9, 0xc1}}]}}]}}, 0x0)
r13 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
r14 = syz_open_dev$dri(&(0x7f0000000500), 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r14, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r13, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r13, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x6, 0x100, 0x0, <r15=>0x0})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r14, 0xc00464b4, &(0x7f00000001c0)={r15})
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, 0x0)
syz_usb_control_io$uac1(r12, 0x0, &(0x7f0000003940)={0x44, &(0x7f0000003700)={0xac4448f5c85335dc, 0x0, 0x1, "ca"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

7.289287701s ago: executing program 1 (id=2551):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
fsopen(0x0, 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000580), 0xc, 0x0}, 0x20000050)
getsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x200204, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000100)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0xddf8ffdb, 0x0, 0x0, 0x140030, 0x0, 0x0, 0x0, [0x3]})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r4, 0x0)
r5 = syz_open_dev$I2C(&(0x7f0000000480), 0x0, 0x0)
ioctl$I2C_RDWR(r5, 0x707, &(0x7f0000000180)={&(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x24, &(0x7f0000000880)="d40b409b492157c5ab29c77f2f60554480e079f9dcc30977508a6099ec1cf083aa6c2eb9"}, {0x0, 0x0, 0x4a, &(0x7f0000000000)="165b771dc6a0c55347477538b6b212469d98850e76339803c90589796cffae081e701e73ed3fc7dbac650e8d5db147963769c3d57901e79d1c93f5838c977ff6a34a1ab4b0e6fc0fba2a"}, {0x0, 0x0, 0xa1, &(0x7f0000000080)="54667cf3465a7e36c33a2a0683111f2cf7bc362fe2f01f0b4f003cf43b9b7961d7cf38ea71cacb2f5e468d0da8048d2da99652c77798d25ade47f3114236040a6dc6c50330f298a661bf34a9e68b187cd27c87ecc10a16b4f30ebc55376684739d08fc32d0c11a60ccfb730bf88c286ded43385b0cbbb910255f424817e9730f601b14506ab8793c98921d167ca4d9c1f4e48a552afb9ed06504e31c48b1485c6f"}, {0x0, 0x0, 0xffffffffffffffe5, &(0x7f00000004c0)="8ce4918f0867f7383b224c943878137192ecfc94130fcff9ef318679faec025a60c7e6b7e33c5fcef3f932e2c835421b1e20683f4007cf9f9375221c82e50590e353509d00d7385a1d56d8e166d68af13e14289872e7e06e8bac76a64ef96bf23bec471bde78bdb180e2a77c5e18767a88d88400ddd3a33b89cd8762cb0126f5e39dcdc63e115556cecfc48b9a9a192c53fd31bf2ccabb2fc290b1e35a36b7795e55943f882bdc80e9"}, {0x0, 0x0, 0x98, &(0x7f0000000280)="ea156a8b46f22243f0ec72d35db6866fffa928bee67a9edeefaf8bc9ef9d0298fc467fa5831e646748e5245f7f764abccdcf9fc35c2daef493c598056e4cad3d288bba0be35f06f92692e9d4496b73fb9368d9f268f4dce9c2dfd2e15191b7c0b1022b5cff28f06150f1ab512fd7fbfe3472305676ee0556171a951f93e7be2c5ccdbeaa4407c8a7276698407caeaaf316f0471eae93d408"}, {0x0, 0x0, 0x8a, &(0x7f0000000340)="ddcb3ede94ef129681394f01d96c9ef96799bf156506586f4b41aa9483c9d5f93b0039bc6a63c55e82ca058caf2278cd1e22acb5d60b6290faf1a365d8a55fb42398b618ede4fe8d8a68df0cbb03ad77b286c950e1056ebc55e154f0859d7843142198ba9adcc246511a50c7c9a504b39684ac7eced08855ec892346e92315c352210a0a26715e9a186d"}], 0x7})
move_mount(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x40)
r6 = socket$caif_seqpacket(0x25, 0x5, 0x0)
setsockopt$CAIFSO_REQ_PARAM(r6, 0x116, 0x80, 0x0, 0x0)
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r7, &(0x7f0000000080)={{0x6, @rose}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x8, 0x0}, @default, @bcast]}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

7.196925139s ago: executing program 2 (id=2552):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(r1, 0x0, 0x0)
bind$tipc(r1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='pstore\x00', 0x0, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f0000000100), 0xff, 0x490, &(0x7f0000000f40)="$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")
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
close(r4)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r6, 0x0)
r7 = dup3(r6, r5, 0x0)
recvmmsg(r7, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}], 0xf00, 0x0, 0x0)
r8 = socket$xdp(0x2c, 0x3, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r8])
fchdir(0xffffffffffffffff)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x8000, &(0x7f0000000280)={0x0, 0x0, 0x100000}, 0x20)

6.478197155s ago: executing program 4 (id=2553):
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{0x1}, &(0x7f0000000000), &(0x7f0000000040)='%+9llu \x00'}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000120000000000000000000000850000006d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_emit_ethernet(0x86, &(0x7f00000001c0)={@random="591a1d9a2bdb", @link_local={0x1, 0x80, 0xc2, 0x25}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x220, 0x0, 0x0, "bfd8a5dd2002c02142c4391145badd28fd7f1a9aa8f6f3a6060ffc0e896f38da", "0b3d22b336984ffb47476e10c3ae64b1", {"5800010000080200", "524a72fc460b8cd26e095f24ab642591"}}}}}}}, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0, 0x0, 0x0)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r5}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r5, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20)
shutdown(r4, 0x0)

6.10250542s ago: executing program 2 (id=2554):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=[@ip_retopts={{0x1c, 0x110, 0xd, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{}]}]}}}], 0x20}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80880)
write$P9_RGETLOCK(r1, &(0x7f0000000840)={0xd9, 0x37, 0x2, {0x0, 0x2, 0xffffffffffffff7f, r0, 0xbb, '\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c)5\x98\xa3\xfa\a\xf9\x98\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajn\xd7\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)'}}, 0xd9)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000340)={{}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]})
r4 = memfd_create(&(0x7f0000000280)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c)5\x98\xa3\xfa\a\xf9\x98\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajn\xd7\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0)
write$binfmt_elf64(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c46020000000d0200aa1e1c170003003e000839a59434d90a2742a24e000000000000000000deef14b40028e27ebdfd74dafc20380003"], 0xfebe)
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r5 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$FUSE(r5, &(0x7f0000002280)={0x2020}, 0x2020)
r6 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049e9)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$SNDRV_PCM_IOCTL_START(0xffffffffffffffff, 0x4142, 0x0)
close(r6)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="440000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="f7e8010000000000140012800b0001006d616373656300fd0300028008000500", @ANYRESOCT], 0x44}}, 0x0)

5.218740171s ago: executing program 1 (id=2555):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x21450c, &(0x7f00000000c0), 0x1, 0x4e8, &(0x7f00000017c0)="$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")
r0 = fsopen(&(0x7f00000000c0)='proc\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
fsopen(0x0, 0x1)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r4, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x301, 0x44, 0x0, 0x685, 0x0})
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0), 0x1c)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0xe803)
readv(r0, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r5, 0x29, 0x2a, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000009c0)=ANY=[], 0x238}}, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, 0x0, 0x0)
fsetxattr$trusted_overlay_upper(r5, &(0x7f0000000180), &(0x7f00000001c0)={0x0, 0xfb, 0xad, 0x2, 0x80, "3cc569a88afbd5b77bab08989c83a97b", "9cde83a01544219045df66a8ab10546fcd462867bd41b8bd9d2b4a7c927338f686d19d2e6d4f96663abdc5a9174b9f84e3389dd0b0bffc6586ab46b93ae74f247f3f26d58f246eed45829b146bff770597159324d50bceadb7d297af881a8efc376055c59144101b9fe66ebae38b9fe4f3ee23d29a91728efe38aa3673dba2fc7357f33e4e0f8375e5bd05b0f68c396fef9e5c97a64d74f2"}, 0xad, 0x3)

5.217378151s ago: executing program 4 (id=2556):
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20020084, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x5, 0x8, 0x0, 0x264a, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x80002, 0x5, 0x2, 0xf, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000140)={'#! ', './file0'}, 0xfda6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
pidfd_send_signal(r5, 0x0, &(0x7f0000000000)={0x0, 0x0, 0xfff}, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f00000003c0)=ANY=[@ANYBLOB="706172743d3078300002a27f9edc6b44900000c63d5f852c6769643d", @ANYRESOCT, @ANYRESOCT=0x0, @ANYRES8, @ANYRES32, @ANYRES8, @ANYBLOB="2c6e03d465636f6d706f73652c6769643d29ab72f4a2f73b811c7fd9bae7ecd520839bd791f81b6637f549a77ac6cb621635f9c08b2615964a3c43b727df50d049dc760465dea7349206240e6fb4756f276c72f20bab7d507fe4853b18ebe583cbf9009044b021249834326e80399ca072639251325e38177eef4f05093acfe76553919ecca99460ea4ebdbcef9c4e0ed3f10f86889116979b7aa52b38442546b806d6b8964f99a04195ad43adb611", @ANYRES16, @ANYBLOB="4599"], 0x1, 0x701, &(0x7f00000009c0)="$eJzs3UtoHOcdAPD/rFaPVcGREz/SEsgSQ1oqaksWSqte6pZSdAglpIeeF1uOF6/lIClFNqVR+rj3kFNP6UG30ENJ74b23BAo6VHHQCGXnHRTmdmZ3Vlptbuy9Yrz+4mZ+Wa+x3zzn52ZfSC+AL6xlmej+iSSWJ59czNd39leaI1tL0zm2a2ImIiISkQ1Ikk3JauR5d7Kp/h25Dml5QEfNpfe/vyrnS/aa9V8yspXBtXrY+Lgpq18inpEjOXLg8YPafGT/bvvae/2oe2NKukcYRqwa0Xg4i/P1Co8s70Dtjp5H/8nm3fK9Kl+lOsWOKeS9nMz173UZyKmI2Iqov3Uz+8OldPv4fHaOusOAAAAwFHVjl7lhd3Yjc24cBLdAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgOdVPv5/kk+VIl2PpBj/fyLfFnn6HBo+EOJnk+3lk5PvDAAAAAAAAACcuFd3Yzc240Kxvpdkv/m/VvqN/1vxXqzHSqzF9diMRmzERqzFfETMlBqa2GxsbKzNZzUjLg2oeTM+7VPz5uF9vNW7mhzHcQMAAAAAAADAOTY1JP/++MFtv4/l7u//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwHiQRY+1FNl0q0jNRqUbEVFFuK+LTiJg4294eSdJv45PT7wcAAAA8k6ne1WRqhDovvB+7sRkXivW9JPvMfyX7vDwV78VqbEQzNqIVK3En/wydfuqv7GwvtHa2Fx6k08F2f/rlkbqetRjt7x767/nlrEQt7kYz23I9bkcSe5lK3srLO9sL6fJB/359kPYp+UluQG/GSuk76ezqJ1n6z73fIlSPdIgj2t9o5dCSM1nueCcic3nf0hoXiwj0j8TQs1MduKf5qHS++bk0eE/9Y/7B4L1P7yvV95ubM7E/Ejej0jlDVwZHIuK7//j41/daq/fv3V2fPT+H1Nf7Q0vsj8RCKRJXn6NIDDeXReJyZ305fhG/itn4cvKtWItm/CYasREr9SK/kb+e0/nM4Eh9Nl1ee2tYT9Jrst65f/XrUz16+hT1+HmWasRr2Tm9EM1I4mFErMQb2d/NmO/cDbpn+PIIV31lhDttybXvZYtOmKJ2eNm/jdbkcUnjerEU1/I9dybLK2/pRunFvlEqnnWjP49Kqt/JE2kLfxj4fDht+yMxX4rES4e9Xtoh/eteOl9vrd5fu9d4d8T9vZ4v0+voTwOeEifymB4oPcMvxlR+cBezeZJdU3NZ3kudXhXx+m8zYj7Lu9RppfeJm+Zd7tRrX6m/jIdxp+dK/WEsxmIsZaWvZKXHDzyx0ryrnZZ67+FpXvpOq9r5Yaf8futhtNrvhyK2vva3bYDn2fT3pydq/6v9u/ZR7Y+1e7U3p342+aPJVyZi/F/jP67Ojb1eeSX5e3wUv+t+/gcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ7e+qPH9xut1spa/0Slf1YyuFajtVcMJDagTE8iyYfKGaFwsv7o8d7QBgcnJvPuPWX140wUozUOL1w/wW4kW/vP19Twc1GM8jTCLpJ8mMrSSysinrrPxZ67W8bPwancn6gfuVb9wHHlieIFWyp89Fdvrd/5GouIfoWH3DjGjuHmA5ypGxsP3r2x/ujxD5oPGu+svLOyOr64uDS3tPjGwo27zdbKXHteqnD6o+oBJ6T8dqJjIiJeHV53wECtAAAAAAAAAAAAwAk6jf+FOOtjBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL7elmej+iSSmJ+7Ppeu72wvtNKpSHdLViOiEhHJbyOSf0bcivYUM6XmksP282Fz6e3Pv9r5ottWtShfidg6tN6gNru28inqETGWL59BT3u3h7c30U1O9slOOkeRBuxaETg4a/8PAAD//9qm8z8=")
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)

4.097038204s ago: executing program 3 (id=2557):
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000c00), 0x71, 0x2081)
ioctl$USBDEVFS_DISCSIGNAL(r0, 0x802c550a, &(0x7f0000000040)={0x0, 0x0})
readv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000080)=""/217, 0xd9}, {&(0x7f0000000000)=""/63, 0x3f}, {&(0x7f0000000180)=""/228, 0xe4}, {&(0x7f0000000280)=""/79, 0x4f}], 0x4)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(r4, &(0x7f0000000380)={0x2020}, 0x2020)
write(r3, &(0x7f0000000000)="07000300010001", 0x7)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x17c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x150, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}]}, {0x4}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfffffffc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}]}]}, 0x17c}}, 0x0)
r8 = openat$mixer(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r8, 0x660c)

3.872649504s ago: executing program 0 (id=2558):
ptrace(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$ITER_CREATE(0xb, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f00002a3000/0x3000)=nil, 0x3000, 0xb635773f07ebbeed, 0x810, r1, 0x99160000)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000080)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, 0xd, 0x0, 0x0, 0x9, 0x0, 0x0, 0x44, 0x54e98c49fd3090e})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000002c0)='./bus\x00', 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
r3 = io_uring_setup(0x8065b, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f00000019c0)={0x1000000000000060, 0x0, 0x0, &(0x7f00000003c0), 0x0}, 0x20)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, &(0x7f0000001c00)={0xffffffff, 0x0, &(0x7f0000001b80)=[{&(0x7f0000000300)=""/13, 0xd}], 0x0, 0x1}, 0x20)
r4 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x7ffc, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000140)={0x37, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
keyctl$session_to_parent(0x12)
keyctl$session_to_parent(0x12)
syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRESHEX], 0x2c}}, 0x0)
set_mempolicy(0x4001, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x22, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYRES8=r0], 0xa8}, 0x1, 0x0, 0x0, 0x20805}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000c41f4040110f001042be000000010902120001000000000904000000873e440091e9b88ab703176175e24523348ef2f7d02c85e8dad856c80566993a2b548452da02e1194c0cd6493a4966022cf0d9f8176c0f873ea37ff297278d2d2b17a74903e6ccd91c34df57b25fce25dfb5f2a11e2a801bbb029db88ff0a73504865484927b1969ddeea654b715e18494661a2f"], 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)

2.624789188s ago: executing program 3 (id=2559):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x83f42, 0x0)
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file2\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x1, 0x21d, &(0x7f0000000b40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r6}, 0x10)
syz_emit_ethernet(0xae, &(0x7f00000005c0)=ANY=[], 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r7, &(0x7f0000000340)={0x2020}, 0xcb0a)
truncate(&(0x7f0000000340)='./file2\x00', 0x0)
open$dir(&(0x7f00000000c0)='./file3\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="974466646e6f3d", @ANYRESHEX, @ANYBLOB=',\x00'])

2.570132924s ago: executing program 1 (id=2560):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_emit_ethernet(0x4e, &(0x7f0000000580)={@local, @link_local={0x3}, @void, {@ipv4={0x800, @tcp={{0xb, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@rr={0x44, 0xf, 0x8, [@multicast2, @remote, @multicast2]}, @ssrr={0x89, 0x3, 0xd7}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, <r5=>0x0}, &(0x7f0000000280)=0x5)
chdir(&(0x7f00000002c0)='./file0\x00')
setuid(r5)
creat(&(0x7f0000000300)='./bus\x00', 0x0)
bpf$BPF_BTF_LOAD(0x4, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
setxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)=@random={'trusted.', 'syzkaller\x00'}, &(0x7f0000000280)='\xff\xff', 0x2, 0x2)

2.368783312s ago: executing program 4 (id=2561):
signalfd(0xffffffffffffffff, 0x0, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000100), 0x0, 0x8)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0xa)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mount(&(0x7f0000000080), &(0x7f00000006c0)='./file0\x00', &(0x7f0000000040)='nsfs\x00', 0x1002080, &(0x7f0000000000)='\x95\xbb\x80,')
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f0000000340)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x0, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/233, 0x0})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, 0x0, &(0x7f0000000700)=""/99, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000004c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x20000)
write$eventfd(r2, &(0x7f00000000c0)=0xfffffffffffffffe, 0x8)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000200))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x3, 0x1}}]}, {0x0, [0x0]}}, &(0x7f0000000500)=""/173, 0x33, 0xad, 0x0, 0xcd86, 0x0, @void, @value}, 0x20)

378.789625ms ago: executing program 1 (id=2562):
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x14, r0, 0x50dc85624ea6c250, 0x1, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x20004050}, 0x40)
syz_genetlink_get_family_id$devlink(&(0x7f0000000280), 0xffffffffffffffff)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_WANTACK(r1, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000240)=0x4)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r3)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r4)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
ioctl$SIOCSIFHWADDR(r4, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x40, r8, 0xb7a006d1969b963b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @probe_request={{{}, {}, @broadcast, @device_b}, @void, @void, @void, @void, @val={0x72, 0x6}}}]}, 0x40}}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="02000000000a"})
vmsplice(r2, &(0x7f0000000400)=[{&(0x7f0000000180)="77690addcfbe1fbb", 0x8}, {&(0x7f0000000340)}], 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r10=>0xffffffffffffffff})
splice(r10, 0x0, r2, 0x0, 0x10000008ebc, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

214.46251ms ago: executing program 3 (id=2563):
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r2, 0xffffffffffffffff, 0x1, 0x0, @val=@iter={0x0}}, 0x40)
r3 = socket$inet(0x2, 0x1, 0x0)
socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040)}, 0x38)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

159.974115ms ago: executing program 2 (id=2564):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000680)=@raw={'raw\x00', 0x3c1, 0x3, 0x340, 0x158, 0x150, 0x150, 0x0, 0xf8010000, 0x270, 0x238, 0x238, 0x270, 0x238, 0x3, 0x0, {[{{@uncond, 0x0, 0xf8, 0x158, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty, [], 0x0, 0x0, 0x0, 0x0, 0xb66, 0x80, 0x0, 0x9}}}, {{@uncond, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "decb585218ebf5805f7356720db1714438ea1c4e4d43886e34ad04218b895e9936aa46525113c03de9cf73687ca94feda35eefade1197a320d00"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a0)
socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8)
write$cgroup_int(r2, &(0x7f0000000ac0)=0x4, 0x12)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00'})
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x1, 0x7f, 0x40, 0x7, 0x3, 0x0, 0x3ff, 0xc2, 0x40, 0x349, 0xff, 0x101, 0x38, 0x2, 0x5, 0x26, 0xff}, [{0x0, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}], "60ff9e7041780db46b0446a3bcd99c862f7de1294e7a5ef9f3d1eaf757c89f0a2d2725fbfd2cab9610282437effe1f2ad39491491f928d7d2700a00dfb11b07d7bc8e4e599cfa46a8e260446ab5eb182f16315facc455a3e58f34f18024953a7c75eb09e9d8804a3571114c2b5cfb4f471ba76098039f20e706b18417aa22842d0da500710a95e792e52781ecb0c28b34a13cc2d0d663378de1e8f23696b3802b530974cec1274135d6b2741673e0ba029ee9ffc20301daf3c6254c0fc46393e8f395cb081e737e13c17d658a6c4b67a9770"}, 0x14a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$netlink(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000003c0)={0x18, 0x5a, 0x30d, 0x0, 0x0, "", [@nested={0x4}, @nested={0x4, 0x2}]}, 0x18}], 0x1}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@delneigh={0x30, 0x1d, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r6}, [@NDA_LLADDR={0xa, 0x2, @random="2ee308099cc8"}, @NDA_VLAN={0x6, 0x5, 0x2}]}, 0x30}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f00000000c0)={@local, @random="7f0a00030011", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x6, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}, "000022ebffff0000"}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r7, 0x0, 0x60, &(0x7f0000000280)={'filter\x00', 0x7, 0x4, 0x3c0, 0xe8, 0xe8, 0xe8, 0x2d8, 0x2d8, 0x2d8, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@AUDIT={0x28}}, {{@uncond, 0xc0, 0x1d0}, @unspec=@STANDARD={0x28}}, {{@arp={@remote, @multicast1, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'sit0\x00', 'team_slave_1\x00'}, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x410)
r8 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x20, 0x14, 0x503, 0x0, 0x0, {0x2, 0x8, 0x0, 0xfe}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x0, [{0x0, 0x2, 0x21000000}]}, @enum]}}, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="5c0000000206010800007cb62245c64500000000000000000000140007800800114000000000050015002c0000000500010006000000050005000a00000005000400000000000900020073797a300000000010000300686173683a69702c6d616300"], 0x5c}}, 0x0)

0s ago: executing program 3 (id=2566):
syz_emit_ethernet(0x46, &(0x7f0000000000)={@multicast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @broadcast=0xac14140a, @initdev={0xac, 0x1e, 0x0, 0x0}}, '\b\x00\x00\x00\x00\x00\x00\x00'}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f0000000140)={0x1d, r2}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000180), 0x3, 0x0)
ioctl$EVIOCSKEYCODE_V2(r3, 0x80104592, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, "00207d2000000000201b14700c1e0ac74f000000001200000000000900"})
socket$l2tp6(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000780)='netlink_extack\x00', r4}, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x70, r5, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xf8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xb}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x34, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x47}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}]}, 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x1, 0x803, 0x0)
epoll_create(0x3ff)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x9, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_dev$usbfs(&(0x7f00000003c0), 0x77, 0x101301)
socket$kcm(0x11, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
r6 = socket$kcm(0xa, 0x5, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x8916, &(0x7f0000000000))

kernel console output (not intermixed with test programs):

73.049:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  949.325942][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  949.379107][   T26] audit: type=1326 audit(2000000573.098:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  949.417428][   T26] audit: type=1326 audit(2000000573.098:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  949.495529][T12351] loop4: detected capacity change from 0 to 128
[  949.634608][   T26] audit: type=1326 audit(2000000573.098:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  949.724026][   T26] audit: type=1326 audit(2000000573.098:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  949.818331][   T26] audit: type=1326 audit(2000000573.098:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  950.222784][   T26] audit: type=1326 audit(2000000573.098:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  950.245952][ T3612] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  950.539456][   T26] audit: type=1326 audit(2000000573.098:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  950.572820][T12363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1889'.
[  950.605461][T12365] netlink: 'syz.4.1888': attribute type 5 has an invalid length.
[  950.666935][T12372] netlink: 'syz.3.1798': attribute type 1 has an invalid length.
[  950.692253][T12372] loop3: detected capacity change from 0 to 65
[  950.755494][T12372] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway
[  950.778798][T12372] BFS-fs: bfs_fill_super(): Last block not available on loop3: 262208
[  950.871938][   T26] audit: type=1326 audit(2000000573.098:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  951.288551][   T26] audit: type=1326 audit(2000000573.098:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.4.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d7fdeeff9 code=0x7ffc0000
[  952.184232][ T3612] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  952.195297][ T3612] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 12079, setting to 1024
[  952.211628][ T3612] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  952.222217][ T3612] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  952.231339][ T3612] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  952.335218][ T3612] usb 3-1: can't set config #27, error -71
[  952.349316][T12383] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  952.359655][ T3612] usb 3-1: USB disconnect, device number 22
[  952.464156][T12390] loop2: detected capacity change from 0 to 512
[  952.537401][T12388] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1893'.
[  952.603373][T12390] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  952.761843][T12390] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  952.833191][T12390] EXT4-fs (loop2): 1 truncate cleaned up
[  952.847147][T12397] loop1: detected capacity change from 0 to 256
[  952.856048][T12390] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  954.253801][T12409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  954.752121][ T4080] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  955.013744][ T4080] usb 4-1: Using ep0 maxpacket: 32
[  955.144515][ T4080] usb 4-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  955.153327][ T4080] usb 4-1: New USB device found, idVendor=13d3, idProduct=3395, bcdDevice=9e.61
[  955.250426][T12411] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  955.335002][ T4080] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  955.346134][ T4080] usb 4-1: config 0 descriptor??
[  955.879634][T12432] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1902'.
[  956.335718][T12408] udc-core: couldn't find an available UDC or it's busy
[  956.433028][T12408] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  956.694799][T12440] IPVS: rr: SCTP 127.0.0.1:0 - no destination available
[  956.718214][   T21] usb 4-1: USB disconnect, device number 14
[  957.731431][T12449] loop2: detected capacity change from 0 to 256
[  958.341930][T12466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  958.394822][T12466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  958.421904][T12459] IPVS: length: 76 != 8
[  959.269238][ T4080] Bluetooth: hci3: command 0x0405 tx timeout
[  959.876229][T12475] loop1: detected capacity change from 0 to 1024
[  960.767720][T12501] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1921'.
[  960.779337][T12501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1921'.
[  962.749069][T12515] loop2: detected capacity change from 0 to 1024
[  962.902033][T12515] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (2915!=35945)
[  962.911760][T12515] EXT4-fs (loop2): group descriptors corrupted!
[  965.398913][T12538] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1929'.
[  966.400585][T12543] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  966.439340][T12544] loop1: detected capacity change from 0 to 8
[  966.545542][T12545] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  966.556679][T12544] SQUASHFS error: lzo decompression failed, data probably corrupt
[  966.620459][T12544] SQUASHFS error: Failed to read block 0x91: -5
[  966.861179][T12544] SQUASHFS error: Unable to read metadata cache entry [8f]
[  966.878287][T12544] SQUASHFS error: Unable to read inode 0x11f
[  967.639322][T12554] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  967.648913][T12554] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  967.656466][T12554] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  968.331886][T12558] Cannot find add_set index 0 as target
[  968.608158][T12544] loop1: detected capacity change from 0 to 128
[  968.750594][T12544] VFS: unable to find oldfs superblock on device loop1
[  968.915438][T12565] loop3: detected capacity change from 0 to 1024
[  970.014372][T12576] input: syz1 as /devices/virtual/input/input21
[  971.294067][T12565] EXT4-fs (loop3): Test dummy encryption mode enabled
[  971.306671][T12565] EXT4-fs (loop3): Ignoring removed orlov option
[  971.422235][T12594] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  972.163169][T12565] EXT4-fs: error -4 creating inode table initialization thread
[  972.212818][T12565] EXT4-fs (loop3): mount failed
[  972.304018][   T26] kauditd_printk_skb: 30 callbacks suppressed
[  972.304034][   T26] audit: type=1326 audit(2000000595.936:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12598 comm="syz.0.1947" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e8461aff9 code=0x0
[  972.642366][T12609] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1949'.
[  972.743267][T12611] netlink: 'syz.2.1960': attribute type 1 has an invalid length.
[  972.902524][T12617] Cannot find add_set index 0 as target
[  973.151966][T12622] loop3: detected capacity change from 0 to 512
[  973.300801][T12622] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  973.411316][ T4080] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  973.548717][T12622] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  974.001018][T12622] EXT4-fs (loop3): 1 truncate cleaned up
[  974.193189][T12622] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  974.212677][T12626] loop4: detected capacity change from 0 to 1024
[  974.316076][ T4080] usb 3-1: Using ep0 maxpacket: 8
[  974.349620][T12626] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  975.077933][ T4080] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  975.436744][T12626] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038 (0x7fffffff)
[  975.532272][ T4080] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  975.735018][ T4080] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  976.111046][ T4080] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  976.415564][T12645] program syz.1.1956 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  977.065509][ T4080] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  977.081984][T12651] xt_hashlimit: invalid interval
[  977.107211][ T4080] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.287717][ T4080] usb 3-1: can't set config #16, error -71
[  977.323299][ T4080] usb 3-1: USB disconnect, device number 23
[  977.471922][T12657] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1955'.
[  978.295876][T12659] netlink: 'syz.0.1962': attribute type 4 has an invalid length.
[  978.432463][   T26] audit: type=1326 audit(2000000602.036:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  978.513852][T12661] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1962'.
[  978.589078][   T26] audit: type=1326 audit(2000000602.036:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  978.670272][   T26] audit: type=1326 audit(2000000602.036:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  978.698282][T12668] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1961'.
[  978.761723][   T26] audit: type=1326 audit(2000000602.036:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  978.830873][   T26] audit: type=1326 audit(2000000602.036:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  978.896234][T12679] netlink: 'syz.0.1965': attribute type 1 has an invalid length.
[  978.912113][   T26] audit: type=1326 audit(2000000602.036:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  978.961441][   T26] audit: type=1326 audit(2000000602.076:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  979.006827][   T26] audit: type=1326 audit(2000000602.076:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  979.031916][   T26] audit: type=1326 audit(2000000602.086:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  979.060966][   T26] audit: type=1326 audit(2000000602.504:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12662 comm="syz.2.1963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7ffc0000
[  979.271583][T12689] netlink: 'syz.4.1968': attribute type 4 has an invalid length.
[  979.283667][T12689] x_tables: duplicate underflow at hook 2
[  980.233853][ T5422] Bluetooth: hci2: command 0x0406 tx timeout
[  980.297498][T12707] loop2: detected capacity change from 0 to 512
[  980.344362][T12711] loop1: detected capacity change from 0 to 256
[  980.407400][T12707] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  980.450915][T12707] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  980.512653][T12707] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  980.532288][T12707] EXT4-fs (loop2): orphan cleanup on readonly fs
[  980.616445][T12707] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:476: comm syz.2.1973: Invalid block bitmap block 0 in block_group 0
[  980.674380][T12716] mkiss: ax0: crc mode is auto.
[  980.727049][T12707] EXT4-fs error (device loop2): ext4_acquire_dquot:6196: comm syz.2.1973: Failed to acquire dquot type 1
[  980.778194][T12707] EXT4-fs (loop2): 1 orphan inode deleted
[  980.819483][ T3989] EXT4-fs error (device loop2): ext4_release_dquot:6219: comm kworker/u4:11: Failed to release dquot type 1
[  980.885140][T12715] loop4: detected capacity change from 0 to 1764
[  980.893102][T12707] EXT4-fs (loop2): mounted filesystem without journal. Opts: norecovery,nodiscard,noblock_validity,noquota,resuid=0x0000000000000000,mblk_io_submit,abort,auto_da_alloc=0x0000000000000001,noload,grpjquota=,,errors=continue. Quota mode: writeback.
[  980.916627][    C1] vkms_vblank_simulate: vblank timer overrun
[  982.895878][T12736] netlink: 'syz.3.1981': attribute type 1 has an invalid length.
[  983.725790][T12741] delete_channel: no stack
[  985.083628][   T26] kauditd_printk_skb: 18 callbacks suppressed
[  985.083778][   T26] audit: type=1800 audit(2000000608.656:422): pid=12757 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1985" name="/" dev="fuse" ino=1 res=0 errno=0
[  985.516451][T12755] loop3: detected capacity change from 0 to 512
[  985.787233][    C1] vkms_vblank_simulate: vblank timer overrun
[  986.429390][T12765] mkiss: ax0: crc mode is auto.
[  986.537078][T12765] loop1: detected capacity change from 0 to 1764
[  988.181491][T12775] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1991'.
[  988.927278][T12780] loop4: detected capacity change from 0 to 1024
[  989.060502][T12780] EXT4-fs (loop4): Ignoring removed orlov option
[  989.101237][T12782] loop1: detected capacity change from 0 to 256
[  989.154533][T12780] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,nombcache,journal_dev=0x0000000000000001,usrjquota=,orlov,lazytime,init_itable=0x0000000000000045,jqfmt=vfsold,grpjquota=,,errors=continue. Quota mode: none.
[  989.306290][T12777] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1992'.
[  989.371643][T12787] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1991'.
[  989.608757][T12782] netlink: 'syz.1.1993': attribute type 25 has an invalid length.
[  989.624485][T12782] netlink: 'syz.1.1993': attribute type 7 has an invalid length.
[  990.783089][T12802] loop1: detected capacity change from 0 to 512
[  990.793131][   T26] audit: type=1326 audit(2000000614.343:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  991.096937][T12802] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  991.139562][   T26] audit: type=1326 audit(2000000614.343:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  991.172991][   T26] audit: type=1326 audit(2000000614.343:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  991.261037][ T4098] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  991.393305][   T26] audit: type=1326 audit(2000000614.343:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  991.423427][   T26] audit: type=1326 audit(2000000614.343:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  991.445795][    C1] vkms_vblank_simulate: vblank timer overrun
[  991.506638][T12802] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  991.608249][T12802] EXT4-fs (loop1): 1 truncate cleaned up
[  991.645952][T12802] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  991.874229][   T26] audit: type=1326 audit(2000000614.343:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  992.777370][   T26] audit: type=1326 audit(2000000614.343:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  992.799725][    C1] vkms_vblank_simulate: vblank timer overrun
[  993.132439][ T4098] usb 3-1: device not accepting address 24, error -71
[  993.161960][   T26] audit: type=1326 audit(2000000614.343:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  993.558973][ T1388] ieee802154 phy1 wpan1: encryption failed: -22
[  993.559692][T12820] overlayfs: failed to resolve './file0': -2
[  993.577355][   T26] audit: type=1326 audit(2000000614.343:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[  993.699348][T12830] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2002'.
[  993.873225][T12830] tipc: Failed to obtain node identity
[  993.879016][T12830] tipc: Enabling of bearer <ib:ip6gre0> rejected, failed to enable media
[  993.895488][T12829] device bond0 entered promiscuous mode
[  993.908934][T12829] device bond_slave_0 entered promiscuous mode
[  994.034036][T12829] device bond_slave_1 entered promiscuous mode
[  995.142850][T12838] devtmpfs: Bad value for 'mpol'
[  997.875909][T12885] loop1: detected capacity change from 0 to 512
[  998.036581][   T13] Bluetooth: hci3: command 0x0405 tx timeout
[  998.064989][T12885] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  998.116026][T12885] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  998.218771][T12885] EXT4-fs (loop1): 1 truncate cleaned up
[  998.233052][T12890] kvm [12888]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled wrmsr: 0x40000007 data 0x0
[  998.260707][T12885] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  998.655246][T12901] fuse: Bad value for 'fd'
[ 1002.181083][T12913] loop3: detected capacity change from 0 to 1024
[ 1002.239696][T12919] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2026'.
[ 1002.930969][T12932] binder: BINDER_SET_CONTEXT_MGR already set
[ 1003.860295][T12932] binder: 12931:12932 ioctl 4018620d 20000040 returned -16
[ 1004.154471][T12950] loop1: detected capacity change from 0 to 512
[ 1004.374773][  T154] hfsplus: b-tree write err: -5, ino 4
[ 1004.392170][T12959] omfs: Invalid superblock (0)
[ 1004.422636][T12953] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2033'.
[ 1005.131363][ T5669] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1006.826447][ T5669] usb 2-1: device descriptor read/64, error -71
[ 1014.246156][ T5669] Bluetooth: hci5: command 0x0409 tx timeout
[ 1014.422654][T13001] loop1: detected capacity change from 0 to 512
[ 1015.227438][T13013] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1015.867362][T12977] chnl_net:caif_netlink_parms(): no params data found
[ 1016.365919][   T13] Bluetooth: hci5: command 0x041b tx timeout
[ 1018.110815][   T26] audit: type=1326 audit(2000000641.574:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13037 comm="syz.2.2053" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x0
[ 1018.419073][ T4080] Bluetooth: hci5: command 0x040f tx timeout
[ 1019.545637][T13054] loop3: detected capacity change from 0 to 32768
[ 1019.559979][ T5669] Bluetooth: hci6: command 0x0409 tx timeout
[ 1019.659400][T13054] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.2055 (13054)
[ 1020.276597][T13060] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2056'.
[ 1020.842766][ T9058] Bluetooth: hci5: command 0x0419 tx timeout
[ 1020.899886][T13054] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[ 1020.909086][T13054] BTRFS info (device loop3): using free space tree
[ 1020.915697][T13054] BTRFS info (device loop3): has skinny extents
[ 1021.627375][ T5669] Bluetooth: hci6: command 0x041b tx timeout
[ 1021.717431][T13054] BTRFS error (device loop3): open_ctree failed
[ 1021.947082][T12977] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1021.981791][T12977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1022.039074][T12977] device bridge_slave_0 entered promiscuous mode
[ 1022.159047][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1022.327546][T12977] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.400975][T12977] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1022.575230][T12977] device bridge_slave_1 entered promiscuous mode
[ 1023.005444][T13103] [U] 
[ 1023.219271][T12977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1023.276691][T12977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1023.290346][T13099] loop3: detected capacity change from 0 to 4096
[ 1023.552898][T13108] loop1: detected capacity change from 0 to 1
[ 1023.590997][T12977] team0: Port device team_slave_0 added
[ 1023.643736][T13108] squashfs: Unknown parameter ' '
[ 1023.672787][T13113] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-xor(2)
[ 1023.712271][ T5669] Bluetooth: hci6: command 0x040f tx timeout
[ 1023.741420][T12977] team0: Port device team_slave_1 added
[ 1023.762256][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1023.783301][T13108] "syz.1.2064" (13108) uses obsolete ecb(arc4) skcipher
[ 1023.863256][T13089] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1023.894494][T13019] chnl_net:caif_netlink_parms(): no params data found
[ 1023.913835][T12977] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1023.921234][T12977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1023.977778][T12977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1024.078730][T12977] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1024.093221][T12977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1024.125202][T13089] usb 3-1: Using ep0 maxpacket: 8
[ 1024.163304][T12977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1024.215549][T13121] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2067'.
[ 1024.262369][T12977] device hsr_slave_0 entered promiscuous mode
[ 1024.269489][T12977] device hsr_slave_1 entered promiscuous mode
[ 1024.283999][T13089] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1024.293833][T13089] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1024.303707][T13089] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1024.306561][T12977] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1024.313798][T13089] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1024.313848][T13089] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1024.342160][T12977] Cannot create hsr debugfs directory
[ 1024.343856][T13089] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1024.440820][T13019] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1024.450503][T13019] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1024.468829][T13019] device bridge_slave_0 entered promiscuous mode
[ 1024.499147][T13019] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1024.512624][T13019] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1024.531342][T13019] device bridge_slave_1 entered promiscuous mode
[ 1024.613810][T13019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1024.624581][T13089] usb 3-1: usb_control_msg returned -32
[ 1024.630287][T13089] usbtmc 3-1:16.0: can't read capabilities
[ 1024.674760][T13019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1024.733335][T12977] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1024.803559][T13019] team0: Port device team_slave_0 added
[ 1024.831906][T12977] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1024.860779][T13019] team0: Port device team_slave_1 added
[ 1024.909426][T12977] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1024.960347][T13019] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1024.975262][T13019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1025.001197][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1025.065299][T13019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1025.142515][T12977] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1025.232828][T13019] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1025.261652][T13019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1025.287637][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1025.300333][T13019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1026.268948][T13090] usb 3-1: USB disconnect, device number 26
[ 1026.301080][T13134] loop1: detected capacity change from 0 to 32768
[ 1026.315259][ T4098] Bluetooth: hci6: command 0x0419 tx timeout
[ 1026.355944][T13019] device hsr_slave_0 entered promiscuous mode
[ 1026.368336][T13134] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.2068 (13134)
[ 1026.414646][T13019] device hsr_slave_1 entered promiscuous mode
[ 1026.434664][T13019] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1026.488003][T13019] Cannot create hsr debugfs directory
[ 1026.550548][T13134] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[ 1026.559338][T13134] BTRFS info (device loop1): using free space tree
[ 1026.565899][T13134] BTRFS info (device loop1): has skinny extents
[ 1027.246072][T13134] BTRFS info (device loop1): enabling ssd optimizations
[ 1027.424047][T13165] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2072'.
[ 1027.553899][T12977] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1027.598527][T12977] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1027.659499][T12977] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1027.719692][T12977] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1027.756244][T13019] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1027.821294][T13170] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2075'.
[ 1027.870602][T13170] loop3: detected capacity change from 0 to 1024
[ 1028.241684][T13019] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1028.352234][T13184] loop2: detected capacity change from 0 to 164
[ 1029.207757][T13190] ubi1: attaching mtd0
[ 1029.217764][T13190] program syz.2.2076 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1029.611778][T13019] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1029.701372][ T8599] tipc: Disabling bearer <eth:ipvlan0>
[ 1029.732510][ T8599] tipc: Disabling bearer <ib:gre0>
[ 1029.746677][ T8599] tipc: Left network mode
[ 1029.876148][T12977] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1029.930814][T12977] 8021q: adding VLAN 0 to HW filter on device team0
[ 1029.966524][T13195] loop2: detected capacity change from 0 to 1024
[ 1029.967348][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1030.993426][T13195] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[ 1031.320250][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1031.328915][T13203] loop3: detected capacity change from 0 to 256
[ 1031.339364][T13201] loop1: detected capacity change from 0 to 256
[ 1031.355447][T13019] batman_adv: batadv1: Interface deactivated: netdevsim0
[ 1031.397934][T13019] batman_adv: batadv1: Removing interface: netdevsim0
[ 1031.422835][T13019] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1031.584963][T13195] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,bsdgroups,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 1031.662556][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1032.440446][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1032.489911][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1032.497161][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1033.258789][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1033.267304][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1033.300984][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1033.310761][ T1179] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1033.317903][ T1179] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1033.327026][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1033.346693][ T1179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1033.378085][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1033.412843][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1033.414360][T13220] loop1: detected capacity change from 0 to 512
[ 1033.451663][T12977] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1033.481993][T13220] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1033.526479][T12977] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1033.552735][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1033.559562][T13223] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1033.569182][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1033.588860][T13220] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1033.611471][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1033.616646][T13220] EXT4-fs (loop1): 1 truncate cleaned up
[ 1033.621097][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1033.635875][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1033.644791][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1033.653737][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1033.662369][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1033.674127][T13227] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2085'.
[ 1033.765361][T13220] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1033.910384][T13232] [U] 
[ 1034.971347][T13019] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1035.066671][T13019] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1035.090653][ T5087] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1035.142564][ T5087] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1035.167835][T13248] fuse: Bad value for 'rootmode'
[ 1035.182159][T12977] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1036.115036][T13019] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1036.128216][T13019] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1036.145654][T13261] loop3: detected capacity change from 0 to 1024
[ 1036.285243][T13261] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[ 1036.334060][T13261] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869)
[ 1036.356737][T13261] EXT4-fs (loop3): journal inode is deleted
[ 1038.144539][T13019] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1038.155606][T13278] loop2: detected capacity change from 0 to 512
[ 1038.212001][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1039.085465][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1039.114194][T13019] 8021q: adding VLAN 0 to HW filter on device team0
[ 1039.143223][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1039.143268][T13278] EXT4-fs (loop2): Ignoring removed nobh option
[ 1039.157256][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1039.168325][T13278] EXT4-fs (loop2): Journaled quota options ignored when QUOTA feature is enabled
[ 1039.185725][T13283] loop1: detected capacity change from 0 to 4096
[ 1039.231968][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1039.243547][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1039.245992][T13278] EXT4-fs (loop2): 1 orphan inode deleted
[ 1039.253245][ T3976] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1039.264791][ T3976] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1039.268840][T13278] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,nodiscard,noquota,resuid=0x0000000000000000,errors=remount-ro,nobh,sysvgroups,delalloc,usrjquota=./file1,. Quota mode: writeback.
[ 1039.293202][T13278] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038 (0x7fffffff)
[ 1039.371535][T13283] NILFS (loop1): invalid segment: Checksum error in segment payload
[ 1039.517134][T13283] NILFS (loop1): trying rollback from an earlier position
[ 1039.534674][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1039.543895][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1039.554768][ T3976] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1039.557182][T13283] NILFS (loop1): recovery complete
[ 1039.561888][ T3976] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1039.636575][T13291] syz.2.2095[13291] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1039.637061][T13291] syz.2.2095[13291] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1040.351497][T12977] device veth0_vlan entered promiscuous mode
[ 1040.415065][T13292] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1040.450739][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1040.451394][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1040.451957][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1040.453823][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1040.454394][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1040.454876][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1040.493577][T12977] device veth1_vlan entered promiscuous mode
[ 1040.601635][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1040.602632][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1040.605479][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1040.606370][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1040.658757][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1040.660057][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1040.678298][T13019] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1040.678326][T13019] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1040.722383][T12977] device veth0_macvtap entered promiscuous mode
[ 1040.725732][T12977] device veth1_macvtap entered promiscuous mode
[ 1040.741702][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.741725][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.741740][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.741756][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.741769][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.741785][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.741799][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.741814][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.741829][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.741844][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.743058][T12977] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1040.745658][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.745679][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.745693][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.745709][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.745722][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.745738][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.745753][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.745768][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.745782][T12977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.745797][T12977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.746860][T12977] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1040.751419][T12977] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1040.751460][T12977] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1040.751492][T12977] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1040.751524][T12977] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1040.867248][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1041.239103][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1041.318385][T13300] overlayfs: missing 'lowerdir'
[ 1041.631309][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1041.653480][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1041.671927][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1041.680487][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1041.689899][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1041.698862][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1041.708352][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1041.708667][ T4093] Bluetooth: hci3: command 0x0406 tx timeout
[ 1041.717984][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1041.733883][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1041.848125][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1041.903345][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1042.954542][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1042.962050][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1043.042531][T13315] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1043.631408][T13019] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1044.550201][T13323] loop2: detected capacity change from 0 to 2048
[ 1044.588026][T13323] UDF-fs: bad mount option "u
" or missing value
[ 1044.683979][ T3654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1044.736807][ T3654] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1044.745345][T13328] loop1: detected capacity change from 0 to 1024
[ 1044.772599][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1044.801796][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1044.809676][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1044.819468][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1044.827668][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1045.117341][ T5087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.130527][ T5087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.139771][T13328] EXT4-fs (loop1): Ignoring removed orlov option
[ 1045.407188][T13328] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,nombcache,journal_dev=0x0000000000000001,usrjquota=,orlov,lazytime,init_itable=0x0000000000000045,jqfmt=vfsold,grpjquota=,,errors=continue. Quota mode: none.
[ 1045.594210][T13343] loop2: detected capacity change from 0 to 512
[ 1045.602413][T13019] device veth0_vlan entered promiscuous mode
[ 1045.656606][T13019] device veth1_vlan entered promiscuous mode
[ 1045.727323][ T3663] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1045.735931][ T3663] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1045.744243][ T3663] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1045.757778][T13344] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2106'.
[ 1046.278927][T13343] kernel read not supported for file /file0 (pid: 13343 comm: syz.2.2109)
[ 1046.458810][   T26] audit: type=1800 audit(2000000669.852:433): pid=13343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2109" name="file0" dev="mqueue" ino=88601 res=0 errno=0
[ 1046.542678][T13343] loop2: detected capacity change from 0 to 256
[ 1046.620057][T13019] device veth0_macvtap entered promiscuous mode
[ 1046.700324][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1046.729025][T13343] kernel read not supported for file /bus (pid: 13343 comm: syz.2.2109)
[ 1046.738156][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1046.753561][   T26] audit: type=1800 audit(2000000670.151:434): pid=13343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2109" name="bus" dev="mqueue" ino=88602 res=0 errno=0
[ 1046.773386][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1046.789270][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1046.832317][ T4153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1046.855593][T13351] device wireguard0 entered promiscuous mode
[ 1046.877054][ T4153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1046.882071][T13019] device veth1_macvtap entered promiscuous mode
[ 1046.971363][T12680] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1046.996624][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1047.015476][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.042075][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1047.072991][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.087906][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1047.101842][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.112867][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1047.123861][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.301407][T13358] loop2: detected capacity change from 0 to 512
[ 1047.344564][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1047.357817][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.378673][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1047.439581][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.594590][T13019] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1047.717143][T13358] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002]
[ 1047.725873][T13358] System zones: 0-2, 18-18, 34-35
[ 1047.804405][T13358] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1047.815630][T13358] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038 (0x7fffffff)
[ 1047.822600][T12680] usb 2-1: Using ep0 maxpacket: 32
[ 1047.896042][T13363] loop3: detected capacity change from 0 to 512
[ 1047.903945][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1047.912062][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1047.922158][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1047.941937][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1047.960671][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1047.996610][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1048.007508][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1048.017720][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1048.028489][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1048.039081][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1048.056961][T13363] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[ 1048.064533][T12680] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[ 1048.091242][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1048.101729][T12680] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1596, setting to 1024
[ 1048.113389][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1048.124632][T12680] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1048.133961][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1048.134800][T12680] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1048.160752][T13019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1048.180953][T13019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1048.183567][T13352] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1048.193379][T13019] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1048.214707][T13363] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1048.244571][T12680] hub 2-1:4.0: USB hub found
[ 1048.258455][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1048.267265][T13363] EXT4-fs (loop3): revision level too high, forcing read-only mode
[ 1048.272215][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1048.288440][T13363] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1048.308952][T13363] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:476: comm syz.3.2114: Invalid block bitmap block 0 in block_group 0
[ 1048.334411][ T8599] device hsr_slave_0 left promiscuous mode
[ 1048.360828][T13363] Quota error (device loop3): write_blk: dquota write failed
[ 1048.467887][T13363] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[ 1048.591740][T13363] EXT4-fs error (device loop3): ext4_acquire_dquot:6196: comm syz.3.2114: Failed to acquire dquot type 1
[ 1048.941224][T13363] EXT4-fs (loop3): 1 orphan inode deleted
[ 1049.083707][ T3976] Quota error (device loop3): remove_tree: Getting block too big (0 >= 6)
[ 1049.145079][T12680] hub 2-1:4.0: 2 ports detected
[ 1049.158263][ T3976] EXT4-fs error (device loop3): ext4_release_dquot:6219: comm kworker/u4:10: Failed to release dquot type 1
[ 1049.168368][ T8599] device hsr_slave_1 left promiscuous mode
[ 1049.184977][T12680] hub 2-1:4.0: insufficient power available to use all downstream ports
[ 1049.194199][T13363] EXT4-fs (loop3): mounted filesystem without journal. Opts: norecovery,nodiscard,noblock_validity,noquota,resuid=0x0000000000000000,mblk_io_submit,abort,auto_da_alloc=0x0000000000000001,noload,grpjquota=,,errors=continue. Quota mode: writeback.
[ 1049.251109][ T8599] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1049.261229][ T8599] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1049.284586][ T8599] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1049.298998][T13375] loop2: detected capacity change from 0 to 1024
[ 1049.306554][ T8599] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1049.314364][ T8599] device bridge_slave_1 left promiscuous mode
[ 1049.321358][ T8599] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1049.347324][ T8599] device bridge_slave_0 left promiscuous mode
[ 1049.367361][T12680] hub 2-1:4.0: hub_hub_status failed (err = -71)
[ 1049.374526][T13375] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[ 1049.384600][ T8599] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1049.392161][T12680] hub 2-1:4.0: config failed, can't get hub status (err -71)
[ 1049.432227][ T8599] device hsr_slave_0 left promiscuous mode
[ 1049.441971][T13375] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1049.471296][T12680] usb 2-1: USB disconnect, device number 24
[ 1049.510993][ T8599] device hsr_slave_1 left promiscuous mode
[ 1049.548540][ T8599] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1049.560361][   T26] audit: type=1804 audit(2000000672.956:435): pid=13375 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2116" name="/newroot/103/file0/bus" dev="loop2" ino=19 res=1 errno=0
[ 1049.566745][ T8599] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1049.626558][ T8599] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1049.634012][ T8599] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1049.706087][ T8599] device bridge_slave_1 left promiscuous mode
[ 1049.717840][ T8599] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1049.727190][ T8599] device bridge_slave_0 left promiscuous mode
[ 1049.745932][ T8599] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1049.773393][ T8599] device veth1_macvtap left promiscuous mode
[ 1049.785998][ T8599] device veth0_macvtap left promiscuous mode
[ 1049.801366][ T8599] device veth1_vlan left promiscuous mode
[ 1049.813314][ T8599] device veth0_vlan left promiscuous mode
[ 1049.834703][ T8599] device veth1_macvtap left promiscuous mode
[ 1049.865050][ T8599] device veth0_macvtap left promiscuous mode
[ 1049.887330][ T8599] device veth0_vlan left promiscuous mode
[ 1050.148029][T13380] program syz.1.2118 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1050.254292][T13384] QAT: failed to copy from user cfg_data.
[ 1054.987227][ T1388] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.294048][ T8599] team0 (unregistering): Port device team_slave_1 removed
[ 1055.365333][ T8599] team0 (unregistering): Port device team_slave_0 removed
[ 1055.464869][ T8599] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1055.485095][ T8599] device bond_slave_1 left promiscuous mode
[ 1055.573815][ T8599] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1055.585357][ T8599] device bond_slave_0 left promiscuous mode
[ 1056.519225][ T8599] bond0 (unregistering): Released all slaves
[ 1056.807059][T13395] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2121'.
[ 1056.865768][ T8599] team0 (unregistering): Port device team_slave_1 removed
[ 1056.882845][ T8599] team0 (unregistering): Port device team_slave_0 removed
[ 1056.898833][ T8599] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1056.920193][ T8599] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1057.004999][ T8599] bond0 (unregistering): Released all slaves
[ 1057.089544][T13019] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.098946][T13019] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.107742][T13019] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.116868][T13019] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1057.166018][T13398] loop4: detected capacity change from 0 to 1024
[ 1057.367900][T13401] loop3: detected capacity change from 0 to 1024
[ 1057.414315][T13402] netlink: 'syz.1.2124': attribute type 10 has an invalid length.
[ 1057.563118][T13401] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[ 1057.583212][T13401] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[ 1057.638816][T13401] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[ 1057.674186][T13402] 8021q: adding VLAN 0 to HW filter on device team0
[ 1057.689493][T13401] journal_init_common: Cannot get buffer for journal superblock
[ 1057.716779][T13401] EXT4-fs (loop3): Could not load journal inode
[ 1057.777910][ T3663] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1057.803479][ T3663] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1057.882542][ T3976] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1057.911035][ T3663] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1057.953247][ T3976] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1057.964595][   T26] audit: type=1326 audit(2000000681.333:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13399 comm="syz.3.2123" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x0
[ 1058.023259][ T4153] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1058.130056][T13402] syz.1.2124 (13402) used greatest stack depth: 17656 bytes left
[ 1058.211979][T13414] netlink: 'syz.2.2126': attribute type 1 has an invalid length.
[ 1060.148475][T13414] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2126'.
[ 1061.782067][T13432] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2130'.
[ 1062.713662][T13447] 9pnet_virtio: no channels available for device syz
[ 1062.801089][T13444] loop2: detected capacity change from 0 to 2048
[ 1063.020977][T13455] loop1: detected capacity change from 0 to 512
[ 1063.163854][T13444] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobarrier,grpjquota=,,errors=continue. Quota mode: none.
[ 1063.324917][T13455] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #16: comm syz.1.2137: iget: bad extended attribute block 128
[ 1063.587016][T13455] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.2137: couldn't read orphan inode 16 (err -117)
[ 1063.707488][T13455] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1063.762797][T13455] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038 (0x7fffffff)
[ 1063.816294][T13465] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2133'.
[ 1064.106378][T13455] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2137: bg 0: block 352: padding at end of block bitmap is not set
[ 1064.303103][T13473] netlink: 'syz.2.2139': attribute type 16 has an invalid length.
[ 1064.349824][T13473] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2139'.
[ 1064.420261][T13477] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2140'.
[ 1064.448504][T13455] EXT4-fs error (device loop1): ext4_xattr_block_set:2197: inode #12: comm syz.1.2137: bad block 0
[ 1064.739389][ T5669] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[ 1065.290950][ T5669] usb 1-1: New USB device found, idVendor=0582, idProduct=0023, bcdDevice=53.24
[ 1065.354588][ T5669] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1065.497999][ T5669] usb 1-1: Product: syz
[ 1065.578251][ T5669] usb 1-1: Manufacturer: syz
[ 1065.605684][   T26] audit: type=1800 audit(2000000688.901:437): pid=13471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2137" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1065.626415][ T5669] usb 1-1: SerialNumber: syz
[ 1065.645741][T13471] Quota error (device loop1): write_blk: dquota write failed
[ 1065.685144][T13492] loop3: detected capacity change from 0 to 512
[ 1065.717460][ T5669] usb 1-1: config 0 descriptor??
[ 1065.781296][T13471] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[ 1065.839997][T13492] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1065.872518][T13471] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.2137: Failed to acquire dquot type 1
[ 1065.936817][ T5669] snd-usb-audio: probe of 1-1:0.0 failed with error -2
[ 1066.012273][T13385] udevd[13385]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1066.013863][T13492] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1066.059973][T13492] EXT4-fs (loop3): 1 truncate cleaned up
[ 1066.077610][T13492] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1066.200653][T13498] loop4: detected capacity change from 0 to 164
[ 1066.746854][T13502] loop4: detected capacity change from 0 to 1024
[ 1066.772580][T12680] usb 1-1: USB disconnect, device number 27
[ 1067.011048][T13504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1067.053558][T13498] netlink: 'syz.4.2145': attribute type 10 has an invalid length.
[ 1067.133550][T13504] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2147'.
[ 1068.064351][ T4153] hfsplus: b-tree write err: -5, ino 4
[ 1068.070057][ T4153] hfsplus: bad catalog file entry
[ 1068.226186][T13515] loop3: detected capacity change from 0 to 256
[ 1068.471411][T13518] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2150'.
[ 1068.761702][   T26] audit: type=1326 audit(2000000692.127:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1068.844839][   T26] audit: type=1326 audit(2000000692.157:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1068.972503][   T26] audit: type=1326 audit(2000000692.157:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1069.064413][T13535] netlink: 'syz.0.2152': attribute type 4 has an invalid length.
[ 1069.200706][T13535] netlink: 'syz.0.2152': attribute type 11 has an invalid length.
[ 1069.222291][   T26] audit: type=1326 audit(2000000692.167:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1070.399546][T13547] loop4: detected capacity change from 0 to 256
[ 1070.423719][   T26] audit: type=1326 audit(2000000692.167:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1070.549849][T13549] loop3: detected capacity change from 0 to 512
[ 1071.267779][   T26] audit: type=1326 audit(2000000692.167:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1071.310703][T13547] exfat: Deprecated parameter 'namecase'
[ 1071.320041][T13547] exfat: Deprecated parameter 'namecase'
[ 1071.337752][   T26] audit: type=1326 audit(2000000692.167:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1072.575857][T13547] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[ 1073.223822][T13549] EXT4-fs: error -4 creating inode table initialization thread
[ 1073.232115][T13549] EXT4-fs (loop3): mount failed
[ 1073.403384][T13559] loop1: detected capacity change from 0 to 512
[ 1073.593381][T13559] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1073.639432][   T26] audit: type=1326 audit(2000000692.167:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1073.661911][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1074.398370][T13563] fuse: Bad value for 'fd'
[ 1074.552678][   T26] audit: type=1326 audit(2000000692.167:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1074.573901][T13559] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1074.638678][   T26] audit: type=1326 audit(2000000692.167:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1074.722940][T13559] EXT4-fs (loop1): 1 truncate cleaned up
[ 1074.763662][T13559] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1074.799748][   T26] audit: type=1326 audit(2000000692.167:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13516 comm="syz.4.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1074.862461][   T26] audit: type=1804 audit(2000000692.676:449): pid=13540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2153" name="/newroot/4/file0/file1" dev="overlay" ino=41 res=1 errno=0
[ 1075.582475][T13582] i2c i2c-0: Invalid block write size 47
[ 1076.365769][T13592] loop4: detected capacity change from 0 to 16
[ 1076.461082][T13592] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1078.404791][T13606] erofs: (device loop4): z_erofs_get_extent_decompressedlen: unknown type 3 @ lcn 9 of nid 36
[ 1078.428969][T13606] attempt to access beyond end of device
[ 1078.428969][T13606] loop4: rw=0, want=40, limit=16
[ 1078.962795][T13610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2172'.
[ 1079.108186][T13610] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1079.178790][T13612] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2172'.
[ 1079.208547][T13616] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2174'.
[ 1079.224404][T13610] sctp: [Deprecated]: syz.4.2172 (pid 13610) Use of int in max_burst socket option.
[ 1079.224404][T13610] Use struct sctp_assoc_value instead
[ 1079.268870][T13616] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2174'.
[ 1079.392581][T13616] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2174'.
[ 1079.794786][T13627] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2176'.
[ 1079.822468][T13629] loop2: detected capacity change from 0 to 256
[ 1080.468814][T13642] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2181'.
[ 1080.503024][T13644] loop4: detected capacity change from 0 to 512
[ 1080.608185][T13644] EXT4-fs (loop4): VFS: Found ext4 filesystem with unknown checksum algorithm.
[ 1082.469760][T13669] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2187'.
[ 1084.159516][ T4091] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[ 1084.509843][ T4091] Bluetooth: hci6: Injecting HCI hardware error event
[ 1084.521857][ T3583] Bluetooth: hci6: hardware error 0x00
[ 1084.608429][T13687] loop4: detected capacity change from 0 to 1024
[ 1084.663083][T13687] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1084.672932][T13687] EXT4-fs (loop4): inline encryption not supported
[ 1084.682455][T13687] EXT4-fs (loop4): Ignoring removed orlov option
[ 1084.711799][T13687] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,inlinecrypt,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1084.920423][ T4091] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 1085.064047][   T26] audit: type=1800 audit(2000000708.397:450): pid=13699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2192" name="bus" dev="loop4" ino=18 res=0 errno=0
[ 1085.525165][ T4091] usb 4-1: Using ep0 maxpacket: 8
[ 1085.645522][ T4091] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1085.697669][ T4091] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1085.754543][ T4091] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1085.772905][T13703] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2196'.
[ 1085.935914][ T4091] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1085.965239][T13704] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2196'.
[ 1086.001430][ T4091] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1086.063425][T13709] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1086.753641][ T4091] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1087.126804][ T4091] usb 4-1: usb_control_msg returned -32
[ 1087.132428][ T4091] usbtmc 4-1:16.0: can't read capabilities
[ 1088.144379][T13722] loop1: detected capacity change from 0 to 512
[ 1088.423098][T13722] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1088.490690][T13730] xt_CONNSECMARK: invalid mode: 0
[ 1088.490825][T13728] loop4: detected capacity change from 0 to 8192
[ 1088.553988][T13722] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1088.571957][T13736] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2203'.
[ 1088.634584][T13722] EXT4-fs (loop1): 1 truncate cleaned up
[ 1088.637473][T13728] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[ 1088.641338][T13722] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1088.678591][T13728] REISERFS (device loop4): using ordered data mode
[ 1088.687506][T13728] reiserfs: using flush barriers
[ 1088.852964][T13728] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1089.616158][T13728] REISERFS (device loop4): checking transaction log (loop4)
[ 1089.821947][ T5669] usb 4-1: USB disconnect, device number 15
[ 1090.898849][T13754] loop1: detected capacity change from 0 to 128
[ 1090.966333][T13728] REISERFS (device loop4): Using tea hash to sort names
[ 1091.001063][T13728] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[ 1091.196483][T13759] loop2: detected capacity change from 0 to 1024
[ 1091.441761][T13759] hfsplus: bad catalog entry type
[ 1091.841486][T13754] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2216'.
[ 1091.909729][T13754] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2216'.
[ 1093.846987][T13776] loop3: detected capacity change from 0 to 512
[ 1094.060839][T13776] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1094.531252][T13776] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1094.561261][T13776] EXT4-fs (loop3): 1 truncate cleaned up
[ 1094.561767][T13776] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1099.307426][T13814] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2222'.
[ 1100.456060][   T26] audit: type=1326 audit(2000000723.772:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1100.456111][   T26] audit: type=1326 audit(2000000723.772:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1100.537366][T13826] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2227'.
[ 1101.253111][T13837] loop4: detected capacity change from 0 to 512
[ 1101.271062][   T26] audit: type=1326 audit(2000000724.571:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1101.304222][   T26] audit: type=1326 audit(2000000724.571:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1101.356831][T13837] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1101.381445][   T26] audit: type=1326 audit(2000000724.571:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1101.487799][T13837] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1101.489092][   T26] audit: type=1326 audit(2000000724.571:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1101.680276][   T26] audit: type=1326 audit(2000000724.571:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1101.703486][   T26] audit: type=1326 audit(2000000724.571:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1102.434365][T12680] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1102.444022][   T26] audit: type=1326 audit(2000000724.571:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1102.461046][T13837] EXT4-fs (loop4): 1 truncate cleaned up
[ 1102.470966][T13857] netlink: 'syz.3.2235': attribute type 21 has an invalid length.
[ 1102.482112][   T26] audit: type=1326 audit(2000000724.571:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.2.2227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186d365ff9 code=0x7fc00000
[ 1102.504943][T13837] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1102.598109][T13855] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2235'.
[ 1102.628680][T13855] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2235'.
[ 1104.133728][T12680] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1104.183066][T12680] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1104.256873][T12680] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1104.338654][T12680] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1105.013203][T12680] usb 2-1: can't set config #27, error -71
[ 1105.079609][T13882] ip6t_srh: unknown srh invflags 92A7
[ 1105.098751][T12680] usb 2-1: USB disconnect, device number 25
[ 1105.232063][ T5669] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[ 1105.544516][ T5669] usb 1-1: Using ep0 maxpacket: 8
[ 1105.675582][ T5669] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1105.894505][ T5669] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1105.944936][ T5669] usb 1-1: New USB device found, idVendor=056a, idProduct=4135, bcdDevice= 0.cc
[ 1105.966776][T13892] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2245'.
[ 1105.998658][ T5669] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1106.083995][ T5669] usb 1-1: config 0 descriptor??
[ 1107.049754][ T5669] wacom 0003:056A:4135.000D: unknown main item tag 0x0
[ 1107.162326][ T5669] wacom 0003:056A:4135.000D: Unknown device_type for 'HID 056a:4135'. Ignoring.
[ 1109.656820][T13921] loop4: detected capacity change from 0 to 2048
[ 1109.678216][T12680] usb 1-1: USB disconnect, device number 28
[ 1109.750416][T13921] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1110.016691][T13926] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2256'.
[ 1110.368254][T13921] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002]
[ 1110.525018][T13921] System zones: 0-19
[ 1110.539647][T13921] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1111.212671][T13921] EXT4-fs error (device loop4): ext4_add_entry:2484: inode #2: comm syz.4.2254: Directory hole found for htree leaf block 0
[ 1111.480759][T13933] loop3: detected capacity change from 0 to 764
[ 1112.443360][T13952] ip6t_srh: unknown srh invflags 92A7
[ 1112.749610][T13960] loop4: detected capacity change from 0 to 1024
[ 1112.875179][T13967] MTD: Attempt to mount non-MTD device "/dev/nbd0"
[ 1112.882815][T13967] cramfs: wrong magic
[ 1114.209102][T13960] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[ 1114.259899][T13960] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[ 1114.314831][T13960] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[ 1114.648371][T13960] journal_init_common: Cannot get buffer for journal superblock
[ 1115.811082][T13980] loop3: detected capacity change from 0 to 512
[ 1115.821679][T13960] EXT4-fs (loop4): Could not load journal inode
[ 1115.890145][T13980] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1116.695097][ T1388] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.890905][T13980] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2266: invalid indirect mapped block 4294967295 (level 1)
[ 1117.007465][T13980] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2266: invalid indirect mapped block 4294967295 (level 1)
[ 1117.210238][T14002] loop1: detected capacity change from 0 to 256
[ 1117.234770][T13980] EXT4-fs (loop3): 2 truncates cleaned up
[ 1117.247277][T13980] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,dioread_nolock,,errors=continue. Quota mode: writeback.
[ 1118.484987][ T4091] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1118.605714][   T26] kauditd_printk_skb: 58 callbacks suppressed
[ 1118.605731][   T26] audit: type=1326 audit(2000000741.927:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1118.812428][   T26] audit: type=1326 audit(2000000741.927:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=176 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1118.898300][ T4091] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1118.928878][ T4091] usb 3-1: config 0 has no interfaces?
[ 1118.934396][ T4091] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[ 1119.044471][T14023] MTD: Attempt to mount non-MTD device "/dev/nbd3"
[ 1119.070307][T14023] cramfs: wrong magic
[ 1119.254584][   T26] audit: type=1326 audit(2000000741.927:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1119.744126][   T26] audit: type=1326 audit(2000000741.927:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1119.807870][ T4091] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1119.817879][ T4091] usb 3-1: config 0 descriptor??
[ 1119.833375][   T26] audit: type=1326 audit(2000000741.927:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd0f802f033 code=0x7ffc0000
[ 1119.871932][   T26] audit: type=1326 audit(2000000741.927:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd0f802f033 code=0x7ffc0000
[ 1120.138841][   T26] audit: type=1326 audit(2000000741.927:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1120.357158][T14007] loop2: detected capacity change from 0 to 256
[ 1120.745139][   T26] audit: type=1326 audit(2000000741.927:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1120.799664][T14007] FAT-fs (loop2): Unrecognized mount option "uni_xlatc=0" or missing value
[ 1123.533057][   T26] audit: type=1326 audit(2000000741.927:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1123.654185][ T4091] usb 3-1: USB disconnect, device number 27
[ 1123.703517][T14045] loop4: detected capacity change from 0 to 8
[ 1123.839672][   T26] audit: type=1326 audit(2000000741.927:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1124.842773][   T26] audit: type=1326 audit(2000000741.927:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1124.866262][   T26] audit: type=1326 audit(2000000741.927:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1124.952911][T14045] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1124.953130][T14045] SQUASHFS error: Failed to read block 0x1dd: -5
[ 1124.953147][T14045] SQUASHFS error: Unable to read metadata cache entry [1db]
[ 1124.953162][T14045] SQUASHFS error: Unable to read inode 0xa7
[ 1125.074089][   T26] audit: type=1326 audit(2000000741.927:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1125.074134][   T26] audit: type=1326 audit(2000000741.927:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14010 comm="syz.4.2275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0f802eff9 code=0x7ffc0000
[ 1125.097444][T14067] loop3: detected capacity change from 0 to 128
[ 1125.107782][T14068] loop1: detected capacity change from 0 to 256
[ 1126.471889][T14063] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2287'.
[ 1126.679363][T14067] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2287'.
[ 1127.029856][T14082] input: syz1 as /devices/virtual/input/input27
[ 1129.642872][T12680] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 1130.284173][T12680] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1130.446648][T12680] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1130.479432][T12680] usb 4-1: config 0 descriptor??
[ 1130.698205][T14125] usb usb1: usbfs: process 14125 (syz.2.2303) did not claim interface 0 before use
[ 1130.818344][T14131] fuse: Unknown parameter 'dont_appraise'
[ 1130.843990][T14132] loop4: detected capacity change from 0 to 512
[ 1130.902233][T14125] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2303'.
[ 1131.011422][T14132] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2305: inode #1: comm syz.4.2305: iget: illegal inode #
[ 1131.011869][T14132] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2305: error while reading EA inode 1 err=-117
[ 1131.012281][T14132] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2305: inode #1: comm syz.4.2305: iget: illegal inode #
[ 1131.012614][T14132] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2305: error while reading EA inode 1 err=-117
[ 1131.013117][T14132] EXT4-fs (loop4): 1 orphan inode deleted
[ 1131.013144][T14132] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000004c,minixdf,abort,delalloc,usrjquota=,,errors=continue. Quota mode: none.
[ 1132.153384][T12680] ath6kl: Failed to submit usb control message: -71
[ 1132.154710][T12680] ath6kl: unable to send the bmi data to the device: -71
[ 1132.154732][T12680] ath6kl: Unable to send get target info: -71
[ 1132.245042][T12680] ath6kl: Failed to init ath6kl core: -71
[ 1132.855961][T12680] ath6kl_usb: probe of 4-1:0.0 failed with error -71
[ 1132.878253][T12680] usb 4-1: USB disconnect, device number 16
[ 1132.897583][T14161] loop1: detected capacity change from 0 to 512
[ 1133.228245][T14161] EXT4-fs (loop1): Mount option "dioread_lock" incompatible with ext2
[ 1134.994723][T14196] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1135.296654][ T4080] usb 2-1: new full-speed USB device number 26 using dummy_hcd
[ 1135.737023][ T4080] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1135.780830][ T4080] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1135.830156][ T4080] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 10
[ 1135.880885][ T4080] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1135.923563][ T4080] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1135.981743][ T4080] usb 2-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[ 1136.013473][ T4080] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1136.071075][ T4080] usb 2-1: config 0 descriptor??
[ 1136.556735][T14194] loop2: detected capacity change from 0 to 32768
[ 1136.588870][ T4080] ntrig 0003:1B96:000A.000E: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.1-1/input0
[ 1136.907155][ T4080] usb 2-1: USB disconnect, device number 26
[ 1137.005604][T14201] loop4: detected capacity change from 0 to 32768
[ 1137.050262][T14201] XFS (loop4): sunit and swidth options incompatible with the noalign option
[ 1137.286660][T14224] loop3: detected capacity change from 0 to 2048
[ 1137.389633][T14224] UDF-fs: bad mount option "uid=" or missing value
[ 1138.545419][T14246] loop1: detected capacity change from 0 to 1024
[ 1138.588420][T14248] io-wq is not configured for unbound workers
[ 1138.823865][ T5669] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[ 1139.520162][ T3663] hfsplus: b-tree write err: -5, ino 4
[ 1139.870150][ T5669] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1139.888978][ T5669] usb 4-1: config 1 has no interface number 0
[ 1139.923929][ T5669] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1140.034395][T14258] tipc: Started in network mode
[ 1140.039326][T14258] tipc: Node identity 2, cluster identity 4711
[ 1140.045616][T14258] tipc: Node number set to 2
[ 1140.053452][ T5669] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 1140.073253][ T5669] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1140.268527][T14273] input: syz1 as /devices/virtual/input/input29
[ 1141.790777][ T5669] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1141.963859][ T5669] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1142.103838][T14285] xt_SECMARK: invalid mode: 0
[ 1143.169347][T14291] netlink: 'syz.0.2343': attribute type 1 has an invalid length.
[ 1143.327200][T14292] syz.2.2341[14292] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1143.328705][T14292] syz.2.2341[14292] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1143.506716][T14292] loop2: detected capacity change from 0 to 256
[ 1145.203594][ T5669] usb 4-1: can't set config #1, error -71
[ 1146.186874][T14292] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[ 1146.261375][T12680] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[ 1146.274458][T12680] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1146.297652][T14280] QAT: Device 0 not found
[ 1146.323401][ T5669] usb 4-1: USB disconnect, device number 17
[ 1146.664940][T14307] loop2: detected capacity change from 0 to 128
[ 1146.693590][T12680] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1146.793921][T14311] ax25_connect(): syz.0.2348 uses autobind, please contact jreuter@yaina.de
[ 1147.695523][T12680] usb 2-1: device descriptor read/64, error -71
[ 1150.435646][T12680] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1150.496185][T14326] mkiss: ax0: crc mode is auto.
[ 1150.544173][T14325] loop3: detected capacity change from 0 to 2048
[ 1150.611084][T14323] loop4: detected capacity change from 0 to 1764
[ 1150.653225][T14329] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2352'.
[ 1150.674021][T14329] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2352'.
[ 1150.689237][T14334] loop1: detected capacity change from 0 to 256
[ 1150.718274][T14325] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1150.867938][   T26] audit: type=1804 audit(2000000774.166:533): pid=14325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2353" name="/newroot/101/file1/bus" dev="loop3" ino=18 res=1 errno=0
[ 1151.042719][T14348] loop2: detected capacity change from 0 to 512
[ 1151.215542][T14348] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[ 1151.956495][T14348] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,jqfmt=vfsold,noquota,min_batch_time=0x0000000000000003,delalloc,,errors=continue. Quota mode: writeback.
[ 1152.076756][T14348] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038 (0x7fffffff)
[ 1152.090152][T14358] netlink: 'syz.3.2359': attribute type 1 has an invalid length.
[ 1152.279341][T14348] EXT4-fs error (device loop2): __ext4_new_inode:1282: comm syz.2.2360: failed to insert inode 16: doubly allocated?
[ 1152.425781][T14371] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2355'.
[ 1152.674256][T14350] loop4: detected capacity change from 0 to 32768
[ 1154.543313][   T26] audit: type=1800 audit(2000000777.834:534): pid=14384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2366" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1154.822882][T14388] netlink: 'syz.1.2365': attribute type 3 has an invalid length.
[ 1154.830843][T14388] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2365'.
[ 1154.847581][T12680] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 1155.603752][T14395] loop1: detected capacity change from 0 to 256
[ 1155.630098][T14393] mkiss: ax0: crc mode is auto.
[ 1155.648427][T12680] usb 3-1: Using ep0 maxpacket: 32
[ 1155.715514][T14393] loop4: detected capacity change from 0 to 1764
[ 1155.764208][T14394] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2369'.
[ 1155.773515][T12680] usb 3-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91
[ 1155.804775][T12680] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1155.857123][T14394] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2369'.
[ 1155.875942][T12680] usb 3-1: config 0 descriptor??
[ 1155.930756][T12680] gspca_main: sunplus-2.14.0 probing 0458:7006
[ 1156.408364][T14384] futex_wake_op: syz.2.2366 tries to shift op by 32; fix this program
[ 1156.631308][T14415] loop1: detected capacity change from 0 to 256
[ 1156.645158][T14411] loop4: detected capacity change from 0 to 2048
[ 1156.770722][T14411] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1156.780982][T14415] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[ 1156.861473][T14415] exFAT-fs (loop1): error, tried to truncate zeroed cluster.
[ 1156.907190][T14415] exFAT-fs (loop1): Filesystem has been set read-only
[ 1157.309644][ T4091] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[ 1157.419578][T12680] gspca_sunplus: reg_w_riv err -71
[ 1157.428447][T12680] sunplus: probe of 3-1:0.0 failed with error -71
[ 1157.468836][T12680] usb 3-1: USB disconnect, device number 28
[ 1157.719857][ T4091] usb 2-1: config 255 has too many interfaces: 255, using maximum allowed: 32
[ 1157.737485][ T4091] usb 2-1: config 255 has 1 interface, different from the descriptor's value: 255
[ 1157.765818][ T4091] usb 2-1: New USB device found, idVendor=0930, idProduct=0215, bcdDevice= 8.78
[ 1157.802997][T14432] loop3: detected capacity change from 0 to 128
[ 1158.784019][T14432] befs: (loop3): invalid magic header
[ 1159.501425][ T4091] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1159.656434][ T4091] usb 2-1: can't set config #255, error -71
[ 1159.664708][ T4091] usb 2-1: USB disconnect, device number 29
[ 1161.036031][T14446] loop3: detected capacity change from 0 to 256
[ 1161.105922][T14449] mkiss: ax0: crc mode is auto.
[ 1161.138517][T14451] cgroup: Bad value for 'name'
[ 1161.272696][T14454] loop4: detected capacity change from 0 to 512
[ 1161.476576][T14454] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1162.615616][T14454] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1162.667699][T14454] EXT4-fs (loop4): 1 truncate cleaned up
[ 1162.690163][T14468] futex_wake_op: syz.0.2386 tries to shift op by -1; fix this program
[ 1162.719388][T14454] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1162.941433][T14475] netlink: 341 bytes leftover after parsing attributes in process `syz.1.2387'.
[ 1165.448813][T14478] loop2: detected capacity change from 0 to 8
[ 1166.127532][T14486] loop1: detected capacity change from 0 to 512
[ 1166.671531][T14486] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1166.792439][T14489] mkiss: ax0: crc mode is auto.
[ 1166.858034][T14495] loop3: detected capacity change from 0 to 256
[ 1166.930469][T14486] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1167.092987][T14486] EXT4-fs (loop1): 1 truncate cleaned up
[ 1167.112885][T14486] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1167.385463][T13171] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1168.181538][T13171] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1168.445424][T14518] loop2: detected capacity change from 0 to 512
[ 1169.621727][T13171] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1169.635907][T14518] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[ 1169.643935][T14518] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[ 1169.656373][T14518] EXT4-fs (loop2): 1 truncate cleaned up
[ 1169.662114][T14518] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="errors=continue,noload,data_err=ignore,grpjquota="errors=continue,errors=remount-ro,noblock_validity,. Quota mode: writeback.
[ 1169.702012][T14517] EXT4-fs (loop2): re-mounted. Opts: (null). Quota mode: writeback.
[ 1169.712598][T14511] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2398'.
[ 1169.726412][T13171] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1169.745678][T13171] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1169.759164][T13171] usb 5-1: config 0 descriptor??
[ 1169.871033][T14524] 9pnet: Insufficient options for proto=fd
[ 1169.883123][T14524] x_tables: ip_tables: icmp match: only valid for protocol 1
[ 1169.932702][T14526] loop3: detected capacity change from 0 to 512
[ 1170.069847][T14526] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1170.308043][T13171] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[ 1170.330217][T13171] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0
[ 1170.346030][T14530] tmpfs: Bad value for 'mpol'
[ 1170.375635][T13171] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving
[ 1170.420589][T14526] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1170.428709][T14530] overlayfs: missing 'lowerdir'
[ 1170.448175][T13171] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1170.462299][T14526] EXT4-fs (loop3): 1 truncate cleaned up
[ 1170.486052][T14526] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1170.646289][ T4091] usb 5-1: USB disconnect, device number 22
[ 1171.603980][T14538] loop2: detected capacity change from 0 to 512
[ 1171.819566][T14538] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.2405: inode #1: comm syz.2.2405: iget: illegal inode #
[ 1171.848899][T14542] loop4: detected capacity change from 0 to 512
[ 1171.890223][T14538] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.2405: error while reading EA inode 1 err=-117
[ 1171.963683][T14542] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1171.973255][T14538] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.2405: inode #1: comm syz.2.2405: iget: illegal inode #
[ 1171.991713][T14538] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.2405: error while reading EA inode 1 err=-117
[ 1172.034666][T14542] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1172.073575][T14550] loop1: detected capacity change from 0 to 2048
[ 1172.081646][T14542] EXT4-fs (loop4): 1 truncate cleaned up
[ 1172.096811][T14542] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1172.098819][T14538] EXT4-fs (loop2): 1 orphan inode deleted
[ 1172.125508][T14538] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000004c,minixdf,abort,delalloc,usrjquota=,,errors=continue. Quota mode: none.
[ 1172.189704][T14550] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1172.301943][T14552] loop3: detected capacity change from 0 to 2048
[ 1173.779683][T12680] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 1174.278268][T12680] usb 1-1: Using ep0 maxpacket: 32
[ 1174.301756][T14552] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1174.398052][T12680] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1174.577998][T12680] usb 1-1: New USB device found, idVendor=03eb, idProduct=21fe, bcdDevice=17.ac
[ 1174.589416][T12680] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1174.607184][T12680] usb 1-1: Product: syz
[ 1174.618031][T12680] usb 1-1: Manufacturer: syz
[ 1174.625982][T12680] usb 1-1: SerialNumber: syz
[ 1174.646737][T12680] usb 1-1: config 0 descriptor??
[ 1174.689986][T12680] igorplugusb 1-1:0.0: endpoint incorrect
[ 1175.789142][T14577] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2416'.
[ 1175.835102][ T4093] usb 1-1: USB disconnect, device number 29
[ 1175.890686][T14580] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2415'.
[ 1176.690614][T14571] dccp_close: ABORT with 14317 bytes unread
[ 1176.920391][T14591] ax25_connect(): syz.4.2420 uses autobind, please contact jreuter@yaina.de
[ 1177.580845][T14595] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2421'.
[ 1177.968783][ T1388] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.384301][ T4080] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[ 1178.487216][T14604] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2424'.
[ 1179.976323][T14623] loop4: detected capacity change from 0 to 128
[ 1179.983552][ T4080] usb 4-1: device not accepting address 18, error -71
[ 1180.302519][T14623] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1180.319186][T14623] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038 (0x7fffffff)
[ 1180.796223][T14635] netlink: 'syz.2.2430': attribute type 3 has an invalid length.
[ 1180.804141][T14635] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2430'.
[ 1181.608321][T14641] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2432'.
[ 1181.653853][T14641] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2432'.
[ 1181.663267][T14641] device bridge_slave_0 left promiscuous mode
[ 1181.670091][T14641] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1182.554607][T14646] loop1: detected capacity change from 0 to 512
[ 1182.609633][T14647] loop3: detected capacity change from 0 to 764
[ 1182.628070][T14646] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1182.750799][T14646] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1183.311558][T14652] loop2: detected capacity change from 0 to 128
[ 1183.420857][T14653] x_tables: ip6_tables: sctp match: only valid for protocol 132
[ 1183.461289][T14646] EXT4-fs (loop1): 1 truncate cleaned up
[ 1183.498867][T14646] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1183.981268][T14652] befs: (loop2): invalid magic header
[ 1184.029177][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1185.064032][T14655] loop3: detected capacity change from 0 to 16
[ 1185.448597][T14661] loop2: detected capacity change from 0 to 512
[ 1185.484576][T14655] erofs: (device loop3): erofs_read_inode: unsupported datalayout 5 of nid 36
[ 1185.669314][T14661] EXT4-fs (loop2): 1 orphan inode deleted
[ 1185.669347][T14661] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1185.669447][T14661] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038 (0x7fffffff)
[ 1185.755365][T14664] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2438'.
[ 1185.860632][T14668] loop4: detected capacity change from 0 to 1024
[ 1188.189044][T14688] loop1: detected capacity change from 0 to 1024
[ 1188.254313][T14689] loop4: detected capacity change from 0 to 256
[ 1189.731297][T14704] loop2: detected capacity change from 0 to 1024
[ 1189.954902][T14704] EXT4-fs (loop2): Ignoring removed nobh option
[ 1189.961222][T14704] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[ 1190.954153][T14704] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,lazytime,errors=continue,noinit_itable,nobh,jqfmt=vfsold,usrquota,errors=continue,,errors=continue. Quota mode: writeback.
[ 1191.789400][T14704] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2451'.
[ 1191.973145][T14722] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1192.220258][T13088] usb 4-1: new low-speed USB device number 20 using dummy_hcd
[ 1192.256174][T14720] sch_fq: defrate 0 ignored.
[ 1192.269921][T14722] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1192.445886][ T3613] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[ 1192.656228][T13088] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1192.664647][T13088] usb 4-1: can't read configurations, error -61
[ 1192.816282][ T3613] usb 2-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[ 1192.826293][T13088] usb 4-1: new low-speed USB device number 21 using dummy_hcd
[ 1192.833976][ T3613] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1192.859594][ T3613] usb 2-1: config 0 descriptor??
[ 1193.409686][T14733] loop2: detected capacity change from 0 to 2048
[ 1193.426127][T13088] usb 4-1: device descriptor read/all, error -71
[ 1193.439562][T13088] usb usb4-port1: attempt power cycle
[ 1193.456219][ T3613] gs_usb 2-1:0.0: Configuring for 1 interfaces
[ 1193.545267][T14733] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1193.588391][T14733] UDF-fs: error (device loop2): udf_read_inode: (ino 1376) failed !bh
[ 1193.605470][T14733] UDF-fs: error (device loop2): udf_fill_super: Error in udf_iget, block=64, partition=0
[ 1194.193964][T14745] loop3: detected capacity change from 0 to 256
[ 1194.529110][ T3613] usb 2-1: USB disconnect, device number 30
[ 1194.616785][T13089] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1194.675970][T14752] loop1: detected capacity change from 0 to 512
[ 1194.768483][T14752] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1194.905495][T14752] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1194.938608][T14752] EXT4-fs (loop1): 1 truncate cleaned up
[ 1194.944310][T14752] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1195.036796][ T5669] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 1195.125125][T13089] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1195.143604][T13089] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1195.153493][T13089] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[ 1195.162707][T13089] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1195.175399][T13089] usb 5-1: config 0 descriptor??
[ 1195.878834][T13089] gspca_main: spca561-2.14.0 probing abcd:cdee
[ 1196.177590][T13089] spca561: probe of 5-1:0.0 failed with error -22
[ 1196.339508][T14778] print_req_error: 2 callbacks suppressed
[ 1196.339554][T14778] blk_update_request: I/O error, dev loop3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1196.361711][T14778] blk_update_request: I/O error, dev loop3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1196.528281][ T5669] usb 3-1: Using ep0 maxpacket: 8
[ 1196.533954][   T26] audit: type=1326 audit(2000000819.804:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14773 comm="syz.0.2466" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f831d080ff9 code=0x0
[ 1196.563449][T13089] usb 5-1: MIDIStreaming interface descriptor not found
[ 1196.927497][ T5669] usb 3-1: device descriptor read/all, error -71
[ 1197.150388][T13089] usb 5-1: USB disconnect, device number 23
[ 1197.270809][T14784] futex_wake_op: syz.3.2469 tries to shift op by 36; fix this program
[ 1198.848434][ T9058] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1199.180022][T14799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2472'.
[ 1199.727545][T14800] loop4: detected capacity change from 0 to 256
[ 1199.728672][ T9058] Bluetooth: hci3: Injecting HCI hardware error event
[ 1199.807284][ T3583] Bluetooth: hci3: hardware error 0x00
[ 1199.938399][T14813] loop1: detected capacity change from 0 to 512
[ 1199.985601][T14816] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2477'.
[ 1200.025774][T14813] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1200.149081][T14813] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1200.171641][T14813] EXT4-fs (loop1): 1 truncate cleaned up
[ 1200.192459][T14813] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1200.288804][T12680] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[ 1202.946293][T14827] loop2: detected capacity change from 0 to 128
[ 1203.020053][T12680] usb 1-1: device descriptor read/all, error -71
[ 1203.167982][   T26] audit: type=1800 audit(2000000826.432:536): pid=14827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2489" name="bus" dev="loop2" ino=1048851 res=0 errno=0
[ 1206.275836][T14848] loop1: detected capacity change from 0 to 8
[ 1209.021914][T14861] loop3: detected capacity change from 0 to 256
[ 1209.079625][T14870] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2500'.
[ 1209.230568][T14873] device bridge_slave_1 left promiscuous mode
[ 1209.282731][T14873] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.316646][T14873] bridge3: port 1(bridge_slave_1) entered blocking state
[ 1209.331135][T14873] bridge3: port 1(bridge_slave_1) entered disabled state
[ 1209.340780][T14873] device bridge_slave_1 entered promiscuous mode
[ 1209.353888][T14873] bridge3: port 1(bridge_slave_1) entered blocking state
[ 1209.360984][T14873] bridge3: port 1(bridge_slave_1) entered forwarding state
[ 1209.402843][T14874] bridge3: port 2(veth1_to_bond) entered blocking state
[ 1209.418102][T14881] loop4: detected capacity change from 0 to 512
[ 1209.427963][T14874] bridge3: port 2(veth1_to_bond) entered disabled state
[ 1209.449265][T14874] device veth1_to_bond entered promiscuous mode
[ 1209.463576][T14874] bridge3: port 2(veth1_to_bond) entered blocking state
[ 1209.470619][T14874] bridge3: port 2(veth1_to_bond) entered forwarding state
[ 1209.518818][T14881] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1209.531566][T14876] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1209.630633][T14881] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1209.739767][T14881] EXT4-fs (loop4): 1 truncate cleaned up
[ 1209.821184][T14881] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1209.890129][T14894] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2496'.
[ 1211.177900][T14901] loop1: detected capacity change from 0 to 256
[ 1211.247595][T14901] exfat: Deprecated parameter 'utf8'
[ 1211.267573][T14901] exfat: Deprecated parameter 'namecase'
[ 1211.273950][T14901] exfat: Deprecated parameter 'namecase'
[ 1211.304597][T14901] exfat: Deprecated parameter 'utf8'
[ 1211.391213][T14901] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d)
[ 1211.526204][T14909] loop3: detected capacity change from 0 to 512
[ 1211.555908][T14907] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2501'.
[ 1211.882815][T14909] EXT4-fs (loop3): inline encryption not supported
[ 1211.898540][T14909] EXT4-fs (loop3): Unrecognized mount option "euid<00000000000000000000" or missing value
[ 1213.794652][T14923] loop2: detected capacity change from 0 to 256
[ 1214.516334][T14932] loop3: detected capacity change from 0 to 4096
[ 1215.023474][T14932] ntfs: (device loop3): ntfs_is_extended_system_file(): Inode hard link count doesn't match number of name attributes. You should run chkdsk.
[ 1215.038264][T14932] ntfs: (device loop3): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 1215.047340][T14932] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1215.060697][T14932] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1215.095641][T14932] ntfs: volume version 3.1.
[ 1215.105197][T14932] ntfs: (device loop3): ntfs_read_locked_inode(): Index collation rule is not COLLATION_FILE_NAME.
[ 1215.116041][T14932] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xb as bad.  Run chkdsk.
[ 1215.129098][T14932] ntfs: (device loop3): load_system_files(): Failed to load $Extend.
[ 1215.137913][ T9058] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[ 1215.154679][T14932] ntfs: (device loop3): ntfs_fill_super(): Failed to load system files.
[ 1215.263264][T14931] loop3: detected capacity change from 0 to 512
[ 1215.384155][T14931] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1215.393939][T14931] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[ 1215.462236][T14940] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2508'.
[ 1215.514042][   T26] audit: type=1326 audit(2000000838.777:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14935 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f831d080ff9 code=0x7ffc0000
[ 1215.605163][ T9058] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1215.641744][ T9058] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1215.670543][   T26] audit: type=1326 audit(2000000838.807:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14935 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f831d080ff9 code=0x7ffc0000
[ 1215.728527][ T9058] usb 2-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[ 1215.746133][ T9058] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1215.813588][ T9058] usb 2-1: config 0 descriptor??
[ 1215.905230][ T9058] usb 2-1: can't set config #0, error -71
[ 1215.925967][ T9058] usb 2-1: USB disconnect, device number 31
[ 1216.249695][T14952] loop4: detected capacity change from 0 to 16
[ 1216.361026][T14952] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1218.597015][T14968] netlink: 312 bytes leftover after parsing attributes in process `syz.3.2516'.
[ 1218.834802][T14975] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµ
[ 1219.507078][T15028] block nbd3: NBD_DISCONNECT
[ 1219.522245][T15028] block nbd3: Disconnected due to user request.
[ 1219.545828][T15028] block nbd3: shutting down sockets
[ 1219.617590][T14972] block nbd4: shutting down sockets
[ 1219.809541][T15040] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2527'.
[ 1219.822732][T15041] loop4: detected capacity change from 0 to 512
[ 1219.941232][T15041] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1220.031476][T15041] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1220.093437][T15041] EXT4-fs (loop4): 1 truncate cleaned up
[ 1220.161331][T15041] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1220.310742][T15054] loop3: detected capacity change from 0 to 16
[ 1220.351133][T15056] loop2: detected capacity change from 0 to 16
[ 1220.414794][ T9058] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 1220.465446][T15056] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1220.588283][T15054] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1222.677600][ T5669] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1222.715093][ T5669] Bluetooth: hci2: Injecting HCI hardware error event
[ 1222.854485][T13089] Bluetooth: hci5: command 0x0406 tx timeout
[ 1222.874331][ T3583] Bluetooth: hci2: hardware error 0x00
[ 1223.027660][ T9058] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 1223.035689][ T9058] usb 1-1: can't read configurations, error -71
[ 1224.314424][T15075] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2535'.
[ 1224.498385][T15077] syz.2.2536[15077] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1224.498483][T15077] syz.2.2536[15077] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1226.594493][T15090] loop2: detected capacity change from 0 to 1024
[ 1226.726800][T15090] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1227.296391][   T26] kauditd_printk_skb: 3 callbacks suppressed
[ 1227.296660][   T26] audit: type=1326 audit(2000000850.393:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1227.869080][   T26] audit: type=1326 audit(2000000850.393:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1227.919142][   T26] audit: type=1326 audit(2000000850.393:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.030550][   T26] audit: type=1326 audit(2000000850.393:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.067241][   T26] audit: type=1326 audit(2000000850.393:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.137877][   T26] audit: type=1326 audit(2000000850.393:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.161301][   T26] audit: type=1326 audit(2000000850.393:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.184692][   T26] audit: type=1326 audit(2000000850.393:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.257161][   T26] audit: type=1326 audit(2000000850.393:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1228.319750][T15118] loop3: detected capacity change from 0 to 512
[ 1228.729898][T15118] EXT4-fs warning (device loop3): ext4_enable_quotas:6431: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[ 1228.755469][T15118] EXT4-fs (loop3): mount failed
[ 1228.890537][   T26] audit: type=1326 audit(2000000850.393:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15101 comm="syz.3.2543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13b22cff9 code=0x7ffc0000
[ 1229.016815][T15128] loop4: detected capacity change from 0 to 1024
[ 1229.095696][T15128] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[ 1229.113949][T15128] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[ 1229.153142][T15128] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1229.187168][T15128] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1229.225939][T15128] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[ 1229.331981][T15134] binder: 15133:15134 ioctl 9361 0 returned -22
[ 1229.398240][T15138] loop2: detected capacity change from 0 to 128
[ 1229.619610][T13089] usb 4-1: new full-speed USB device number 23 using dummy_hcd
[ 1229.745949][ T4080] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1230.006456][T15138] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1230.169682][T15138] ext4 filesystem being mounted at /198/mnt supports timestamps until 2038 (0x7fffffff)
[ 1230.213874][T13089] usb 4-1: New USB device found, idVendor=2040, idProduct=7080, bcdDevice=4a.2c
[ 1230.213908][T13089] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1230.213932][T13089] usb 4-1: Product: syz
[ 1230.213949][T13089] usb 4-1: Manufacturer: syz
[ 1230.213967][T13089] usb 4-1: SerialNumber: syz
[ 1230.216544][T13089] usb 4-1: config 0 descriptor??
[ 1230.294388][T15138] tipc: Failed to remove unknown binding: 66,1,1/0:2839070550/2839070552
[ 1230.295374][T15138] tipc: Failed to remove unknown binding: 66,1,1/0:2839070550/2839070552
[ 1230.406746][T15138] 9pnet: Insufficient options for proto=fd
[ 1230.520184][T13089] dvb-usb: found a 'Hauppauge Nova-T MyTV.t' in warm state.
[ 1231.166094][T13089] dvb-usb: will use the device's hardware PID filter (table count: 32).
[ 1231.397476][ T4080] usb 1-1: New USB device found, idVendor=0421, idProduct=026c, bcdDevice=1f.2f
[ 1231.407057][ T4080] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1231.431447][ T4080] usb 1-1: config 0 descriptor??
[ 1231.478686][T15151] loop1: detected capacity change from 0 to 512
[ 1231.520377][ T4080] rndis_wlan 1-1:0.0: More than one union descriptor, skipping ...
[ 1231.528565][ T4080] usb 1-1: bad CDC descriptors
[ 1231.542811][ T4080] rndis_host 1-1:0.0: More than one union descriptor, skipping ...
[ 1231.556852][ T4080] usb 1-1: bad CDC descriptors
[ 1231.562748][ T4080] cdc_acm 1-1:0.0: More than one union descriptor, skipping ...
[ 1231.604769][T13089] dvbdev: DVB: registering new adapter (Hauppauge Nova-T MyTV.t)
[ 1231.612644][T13089] usb 4-1: media controller created
[ 1231.619797][T13089] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1231.667464][T15151] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1231.788155][T15155] loop4: detected capacity change from 0 to 1024
[ 1231.928806][T13089] DVB: Unable to find symbol dib7000p_attach()
[ 1231.956815][T13089] dvb-usb: no frontend was attached by 'Hauppauge Nova-T MyTV.t'
[ 1232.187408][ T3613] usb 1-1: USB disconnect, device number 34
[ 1232.473799][T13089] rc_core: IR keymap rc-dib0700-rc5 not found
[ 1232.505957][T15155] hfsplus: extend alloc file! (8192,65536,366)
[ 1232.519587][T13089] Registered IR keymap rc-empty
[ 1232.533086][T15151] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1232.550797][T13089] dvb-usb: could not initialize remote control.
[ 1232.557068][T13089] dvb-usb: Hauppauge Nova-T MyTV.t successfully initialized and connected.
[ 1232.583734][T15151] EXT4-fs (loop1): 1 truncate cleaned up
[ 1232.618542][T15151] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1232.660180][T13089] usb 4-1: USB disconnect, device number 23
[ 1233.944208][T15171] loop3: detected capacity change from 0 to 16
[ 1233.997975][T13089] dvb-usb: Hauppauge Nova-T MyTV.t successfully deinitialized and disconnected.
[ 1234.103291][T15171] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1235.939394][T15181] 9pnet: Insufficient options for proto=fd
[ 1236.296844][ T4080] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1236.538831][T15184] ------------[ cut here ]------------
[ 1236.545224][T15184] WARNING: CPU: 0 PID: 15184 at kernel/softirq.c:363 __local_bh_enable_ip+0x1b3/0x1f0
[ 1236.554824][T15184] Modules linked in:
[ 1236.558751][T15184] CPU: 0 PID: 15184 Comm: syz.1.2562 Not tainted 5.15.167-syzkaller #0
[ 1236.567012][T15184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1236.577085][T15184] RIP: 0010:__local_bh_enable_ip+0x1b3/0x1f0
[ 1236.583075][T15184] Code: 04 25 28 00 00 00 48 3b 44 24 60 75 4a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b e9 d0 fe ff ff e8 3f 00 00 00 eb a2 <0f> 0b e9 02 ff ff ff 48 c7 c1 44 94 e9 8d 80 e1 07 80 c1 03 38 c1
[ 1236.602818][T15184] RSP: 0018:ffffc90003377140 EFLAGS: 00010046
[ 1236.608910][T15184] RAX: 0000000000000000 RBX: 1ffff9200066ee2c RCX: 0000000000040000
[ 1236.616876][T15184] RDX: ffffc9000dd04000 RSI: 0000000000000200 RDI: ffffffff884b8e55
[ 1236.624843][T15184] RBP: ffffc900033771f0 R08: dffffc0000000000 R09: fffffbfff1bd2c16
[ 1236.632815][T15184] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 1236.640787][T15184] R13: 1ffff1100cb68798 R14: ffffc90003377180 R15: 0000000000000200
[ 1236.648756][T15184] FS:  00007fe273fcd6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[ 1236.657680][T15184] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1236.664258][T15184] CR2: 00007ffd6000b000 CR3: 0000000050c00000 CR4: 00000000003506f0
[ 1236.672256][T15184] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1236.680219][T15184] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1236.688272][T15184] Call Trace:
[ 1236.691545][T15184]  <TASK>
[ 1236.694470][T15184]  ? __warn+0x15b/0x300
[ 1236.698624][T15184]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1236.703988][T15184]  ? report_bug+0x1b7/0x2e0
[ 1236.708497][T15184]  ? handle_bug+0x3d/0x70
[ 1236.712819][T15184]  ? exc_invalid_op+0x16/0x40
[ 1236.717496][T15184]  ? asm_exc_invalid_op+0x16/0x20
[ 1236.722522][T15184]  ? local_bh_enable+0x5/0x20
[ 1236.727191][T15184]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1236.732555][T15184]  ? local_bh_enable+0x5/0x20
[ 1236.737222][T15184]  ? _local_bh_enable+0xa0/0xa0
[ 1236.742073][T15184]  __dev_queue_xmit+0x1c56/0x3230
[ 1236.747122][T15184]  ? dev_queue_xmit+0x20/0x20
[ 1236.751787][T15184]  ? __copy_skb_header+0x47b/0x600
[ 1236.756896][T15184]  ? __skb_clone+0x454/0x6c0
[ 1236.761485][T15184]  ? skb_clone+0x1ee/0x350
[ 1236.765896][T15184]  __netlink_deliver_tap+0x4d2/0x760
[ 1236.771199][T15184]  netlink_deliver_tap+0x16c/0x180
[ 1236.776326][T15184]  netlink_broadcast_filtered+0xc2d/0x11a0
[ 1236.782145][T15184]  netlink_broadcast+0x35/0x50
[ 1236.786902][T15184]  genlmsg_multicast_netns+0x8e/0xc0
[ 1236.792185][T15184]  nl80211_frame_tx_status+0x659/0xa40
[ 1236.797644][T15184]  ? cfg80211_control_port_tx_status+0x50/0x50
[ 1236.803791][T15184]  ? do_raw_spin_unlock+0x137/0x8b0
[ 1236.809091][T15184]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1236.815000][T15184]  ? _raw_spin_unlock+0x40/0x40
[ 1236.819866][T15184]  cfg80211_mgmt_tx_status+0x3a/0x50
[ 1236.825169][T15184]  ieee80211_report_used_skb+0x12f6/0x1810
[ 1236.830974][T15184]  ? _raw_spin_lock_irqsave+0xac/0x120
[ 1236.836430][T15184]  ? ieee80211_handle_filtered_frame+0x750/0x750
[ 1236.842754][T15184]  ? _raw_spin_lock_irqsave+0xdd/0x120
[ 1236.848206][T15184]  ? _raw_spin_lock+0x40/0x40
[ 1236.852877][T15184]  ? skb_queue_purge+0x2b9/0x2e0
[ 1236.857924][T15184]  ieee80211_free_txskb+0x1e/0x30
[ 1236.862943][T15184]  ieee80211_do_stop+0x10b8/0x1ce0
[ 1236.868055][T15184]  ? ieee80211_stop_queues_by_reason+0x1ce/0x250
[ 1236.874383][T15184]  ? ieee80211_sdata_stop+0x70/0x70
[ 1236.879667][T15184]  ? ieee80211_get_vif_queues+0x228/0x390
[ 1236.885385][T15184]  ieee80211_if_change_type+0x447/0x9f0
[ 1236.890957][T15184]  ieee80211_change_iface+0x57/0x430
[ 1236.896237][T15184]  ? cfg80211_mlme_purge_registrations+0x1f3/0x220
[ 1236.902738][T15184]  cfg80211_change_iface+0x8ab/0x10c0
[ 1236.908110][T15184]  __cfg80211_wext_siwmode+0x1b7/0x280
[ 1236.913592][T15184]  ? __cfg80211_wext_giwfreq+0x7e0/0x7e0
[ 1236.919237][T15184]  ? apparmor_capable+0x12e/0x190
[ 1236.924252][T15184]  ? full_name_hash+0x8f/0xe0
[ 1236.928924][T15184]  ioctl_standard_call+0xdb/0x280
[ 1236.933940][T15184]  ? __cfg80211_wext_giwfreq+0x7e0/0x7e0
[ 1236.939567][T15184]  ? __cfg80211_wext_giwfreq+0x7e0/0x7e0
[ 1236.945188][T15184]  wext_ioctl_dispatch+0x16f/0x460
[ 1236.950295][T15184]  ? wext_ioctl_dispatch+0x460/0x460
[ 1236.955569][T15184]  ? iw_handler_get_private+0x1e0/0x1e0
[ 1236.961118][T15184]  wext_handle_ioctl+0x15b/0x260
[ 1236.966075][T15184]  ? call_commit_handler+0xf0/0xf0
[ 1236.971191][T15184]  sock_ioctl+0x13b/0x770
[ 1236.975518][T15184]  ? sock_poll+0x410/0x410
[ 1236.979929][T15184]  ? __fget_files+0x413/0x480
[ 1236.984605][T15184]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1236.989558][T15184]  ? security_file_ioctl+0x7d/0xa0
[ 1236.994662][T15184]  ? sock_poll+0x410/0x410
[ 1236.999078][T15184]  __se_sys_ioctl+0xf1/0x160
[ 1237.003683][T15184]  do_syscall_64+0x3b/0xb0
[ 1237.008094][T15184]  ? clear_bhb_loop+0x15/0x70
[ 1237.012796][T15184]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1237.018684][T15184] RIP: 0033:0x7fe275b54ff9
[ 1237.023116][T15184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1237.042716][T15184] RSP: 002b:00007fe273fcd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1237.051122][T15184] RAX: ffffffffffffffda RBX: 00007fe275d0cf80 RCX: 00007fe275b54ff9
[ 1237.059088][T15184] RDX: 0000000020000000 RSI: 0000000000008b06 RDI: 0000000000000007
[ 1237.067049][T15184] RBP: 00007fe275bc7296 R08: 0000000000000000 R09: 0000000000000000
[ 1237.075185][T15184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1237.083152][T15184] R13: 0000000000000000 R14: 00007fe275d0cf80 R15: 00007fff6c4ac828
[ 1237.091129][T15184]  </TASK>
[ 1237.094254][T15184] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1237.101518][T15184] CPU: 0 PID: 15184 Comm: syz.1.2562 Not tainted 5.15.167-syzkaller #0
[ 1237.109799][T15184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1237.119968][T15184] Call Trace:
[ 1237.123371][T15184]  <TASK>
[ 1237.126298][T15184]  dump_stack_lvl+0x1e3/0x2d0
[ 1237.130975][T15184]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[ 1237.136608][T15184]  ? panic+0x860/0x860
[ 1237.140708][T15184]  ? panic+0x860/0x860
[ 1237.144777][T15184]  ? __local_bh_enable_ip+0xe0/0x1f0
[ 1237.150061][T15184]  ? __local_bh_enable_ip+0xe0/0x1f0
[ 1237.155372][T15184]  panic+0x318/0x860
[ 1237.159269][T15184]  ? __warn+0x16a/0x300
[ 1237.163420][T15184]  ? fb_is_primary_device+0xd0/0xd0
[ 1237.168624][T15184]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1237.173989][T15184]  __warn+0x2b2/0x300
[ 1237.177974][T15184]  ? __local_bh_enable_ip+0x1b3/0x1f0
[ 1237.183337][T15184]  report_bug+0x1b7/0x2e0
[ 1237.187667][T15184]  handle_bug+0x3d/0x70
[ 1237.191818][T15184]  exc_invalid_op+0x16/0x40
[ 1237.196401][T15184]  asm_exc_invalid_op+0x16/0x20
[ 1237.201249][T15184] RIP: 0010:__local_bh_enable_ip+0x1b3/0x1f0
[ 1237.207224][T15184] Code: 04 25 28 00 00 00 48 3b 44 24 60 75 4a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b e9 d0 fe ff ff e8 3f 00 00 00 eb a2 <0f> 0b e9 02 ff ff ff 48 c7 c1 44 94 e9 8d 80 e1 07 80 c1 03 38 c1
[ 1237.226905][T15184] RSP: 0018:ffffc90003377140 EFLAGS: 00010046
[ 1237.232986][T15184] RAX: 0000000000000000 RBX: 1ffff9200066ee2c RCX: 0000000000040000
[ 1237.240950][T15184] RDX: ffffc9000dd04000 RSI: 0000000000000200 RDI: ffffffff884b8e55
[ 1237.248913][T15184] RBP: ffffc900033771f0 R08: dffffc0000000000 R09: fffffbfff1bd2c16
[ 1237.256892][T15184] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 1237.264864][T15184] R13: 1ffff1100cb68798 R14: ffffc90003377180 R15: 0000000000000200
[ 1237.272848][T15184]  ? local_bh_enable+0x5/0x20
[ 1237.277534][T15184]  ? local_bh_enable+0x5/0x20
[ 1237.282226][T15184]  ? _local_bh_enable+0xa0/0xa0
[ 1237.287080][T15184]  __dev_queue_xmit+0x1c56/0x3230
[ 1237.292127][T15184]  ? dev_queue_xmit+0x20/0x20
[ 1237.296816][T15184]  ? __copy_skb_header+0x47b/0x600
[ 1237.301927][T15184]  ? __skb_clone+0x454/0x6c0
[ 1237.306518][T15184]  ? skb_clone+0x1ee/0x350
[ 1237.310932][T15184]  __netlink_deliver_tap+0x4d2/0x760
[ 1237.316227][T15184]  netlink_deliver_tap+0x16c/0x180
[ 1237.321337][T15184]  netlink_broadcast_filtered+0xc2d/0x11a0
[ 1237.327176][T15184]  netlink_broadcast+0x35/0x50
[ 1237.331970][T15184]  genlmsg_multicast_netns+0x8e/0xc0
[ 1237.337272][T15184]  nl80211_frame_tx_status+0x659/0xa40
[ 1237.342741][T15184]  ? cfg80211_control_port_tx_status+0x50/0x50
[ 1237.348906][T15184]  ? do_raw_spin_unlock+0x137/0x8b0
[ 1237.354127][T15184]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 1237.360016][T15184]  ? _raw_spin_unlock+0x40/0x40
[ 1237.364862][T15184]  cfg80211_mgmt_tx_status+0x3a/0x50
[ 1237.370144][T15184]  ieee80211_report_used_skb+0x12f6/0x1810
[ 1237.375946][T15184]  ? _raw_spin_lock_irqsave+0xac/0x120
[ 1237.381425][T15184]  ? ieee80211_handle_filtered_frame+0x750/0x750
[ 1237.387747][T15184]  ? _raw_spin_lock_irqsave+0xdd/0x120
[ 1237.393218][T15184]  ? _raw_spin_lock+0x40/0x40
[ 1237.397887][T15184]  ? skb_queue_purge+0x2b9/0x2e0
[ 1237.402822][T15184]  ieee80211_free_txskb+0x1e/0x30
[ 1237.407842][T15184]  ieee80211_do_stop+0x10b8/0x1ce0
[ 1237.412970][T15184]  ? ieee80211_stop_queues_by_reason+0x1ce/0x250
[ 1237.419345][T15184]  ? ieee80211_sdata_stop+0x70/0x70
[ 1237.424558][T15184]  ? ieee80211_get_vif_queues+0x228/0x390
[ 1237.430282][T15184]  ieee80211_if_change_type+0x447/0x9f0
[ 1237.435836][T15184]  ieee80211_change_iface+0x57/0x430
[ 1237.441117][T15184]  ? cfg80211_mlme_purge_registrations+0x1f3/0x220
[ 1237.447619][T15184]  cfg80211_change_iface+0x8ab/0x10c0
[ 1237.452996][T15184]  __cfg80211_wext_siwmode+0x1b7/0x280
[ 1237.458494][T15184]  ? __cfg80211_wext_giwfreq+0x7e0/0x7e0
[ 1237.464154][T15184]  ? apparmor_capable+0x12e/0x190
[ 1237.469198][T15184]  ? full_name_hash+0x8f/0xe0
[ 1237.473874][T15184]  ioctl_standard_call+0xdb/0x280
[ 1237.478897][T15184]  ? __cfg80211_wext_giwfreq+0x7e0/0x7e0
[ 1237.484547][T15184]  ? __cfg80211_wext_giwfreq+0x7e0/0x7e0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1237.490182][T15184]  wext_ioctl_dispatch+0x16f/0x460
[ 1237.495289][T15184]  ? wext_ioctl_dispatch+0x460/0x460
[ 1237.500569][T15184]  ? iw_handler_get_private+0x1e0/0x1e0
[ 1237.506117][T15184]  wext_handle_ioctl+0x15b/0x260
[ 1237.511060][T15184]  ? call_commit_handler+0xf0/0xf0
[ 1237.516200][T15184]  sock_ioctl+0x13b/0x770
[ 1237.520532][T15184]  ? sock_poll+0x410/0x410
[ 1237.524941][T15184]  ? __fget_files+0x413/0x480
[ 1237.529621][T15184]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1237.534552][T15184]  ? security_file_ioctl+0x7d/0xa0
[ 1237.539657][T15184]  ? sock_poll+0x410/0x410
[ 1237.544087][T15184]  __se_sys_ioctl+0xf1/0x160
[ 1237.548700][T15184]  do_syscall_64+0x3b/0xb0
[ 1237.553108][T15184]  ? clear_bhb_loop+0x15/0x70
[ 1237.557775][T15184]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1237.563668][T15184] RIP: 0033:0x7fe275b54ff9
[ 1237.568104][T15184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1237.587711][T15184] RSP: 002b:00007fe273fcd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1237.596116][T15184] RAX: ffffffffffffffda RBX: 00007fe275d0cf80 RCX: 00007fe275b54ff9
[ 1237.604096][T15184] RDX: 0000000020000000 RSI: 0000000000008b06 RDI: 0000000000000007
[ 1237.612092][T15184] RBP: 00007fe275bc7296 R08: 0000000000000000 R09: 0000000000000000
[ 1237.620170][T15184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1237.628238][T15184] R13: 0000000000000000 R14: 00007fe275d0cf80 R15: 00007fff6c4ac828
[ 1237.636255][T15184]  </TASK>
[ 1237.639668][T15184] Kernel Offset: disabled
[ 1237.644630][T15184] Rebooting in 86400 seconds..