last executing test programs:

9m2.289631812s ago: executing program 32 (id=107):
r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f0000000240)={0x1, 0x3, 0x204, 0x7, 0xffffffffffffffff, 0x200000000000008, 0x8, 0x200, 0x7, 0x2c, 0x80000006, 0x2})
ioctl$SNDCTL_DSP_GETOPTR(r1, 0x800c5012, &(0x7f0000000380))

8m42.530076198s ago: executing program 4 (id=188):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xd40, 0xd2)
close(r0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
shutdown(r2, 0x2)
mount$9p_fd(0x0, &(0x7f0000000c40)='./file1\x00', &(0x7f00000000c0), 0x200000, &(0x7f0000000c80)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

8m41.278252522s ago: executing program 4 (id=191):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r0)
eventfd2(0x7, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='clear_refs\x00')
mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x84, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
r2 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r3=>0x0, &(0x7f00000007c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="1a", 0x1}], 0x1})
io_uring_enter(r2, 0x5976, 0x9765, 0x2, 0x0, 0x0)

8m40.711372004s ago: executing program 4 (id=192):
creat(&(0x7f0000000080)='./file0\x00', 0xac)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x2}}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000280)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x4}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
mount$9p_tcp(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x340021, &(0x7f0000000300)={'trans=tcp,', {'port', 0x3d, 0x4e20}})

8m39.641682344s ago: executing program 33 (id=194):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = openat$mice(0xffffffffffffff9c, 0x0, 0x4000)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file0\x00'})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000000c0)={[{@dioread_lock}, {@noblock_validity}, {@abort}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x1f5}}, {@grpjquota, 0x2e}, {@barrier}, {@nolazytime}, {@jqfmt_vfsv1}, {@grpquota}], [], 0x2c}, 0x84, 0x4aa, &(0x7f0000000740)="$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")
open(&(0x7f0000000000)='./file0\x00', 0x44c0, 0x21)
syz_mount_image$hfs(&(0x7f0000000140), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRES32=0x0, @ANYRES8, @ANYRESOCT], 0x1, 0x273, &(0x7f0000001200)="$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")
rmdir(0x0)
openat$vcsu(0xffffffffffffff9c, 0x0, 0x4020, 0x0)

8m39.598560319s ago: executing program 4 (id=198):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000840)={[{@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@fmask={'fmask', 0x3d, 0xa0}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@dmask={'dmask', 0x3d, 0x1}}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x206e)

8m38.920828223s ago: executing program 4 (id=200):
setfsgid(0xee00)
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, 0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000100)='fd/3\x00')

8m37.1260257s ago: executing program 4 (id=202):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)

8m36.166083867s ago: executing program 34 (id=202):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)

6m2.055121861s ago: executing program 7 (id=730):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socket$kcm(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000001dc00)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
mount(&(0x7f0000000180)=@nullb, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000040)='befs\x00', 0x0, 0x0)

6m1.619646083s ago: executing program 7 (id=732):
socket$inet_sctp(0x2, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x20018d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000540)=0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f00000005c0))

5m59.655269239s ago: executing program 7 (id=736):
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
timer_create(0x9, 0x0, &(0x7f00000000c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
rt_sigprocmask(0x2, &(0x7f0000000040)={[0x4]}, 0x0, 0x8)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='lp\x00', 0x3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="540000000a0601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070006000000060004404e2100000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x77359400}, {0x0, 0x3938700}}, 0x0)

5m58.511592696s ago: executing program 7 (id=738):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000580)=""/230, 0xe6}], 0x1}, 0x2000000}], 0x1, 0x101, 0x0)

5m56.423443458s ago: executing program 7 (id=743):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file2\x00', 0xa00010, &(0x7f00000001c0), 0x21, 0x4bf, &(0x7f00000009c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$cgroup_int(r0, &(0x7f0000000380), 0x101bf)
creat(&(0x7f0000000140)='./bus\x00', 0xa6)
r1 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000480)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_WIPHY(r3, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e4c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})

5m52.494655164s ago: executing program 7 (id=752):
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
rename(0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x45c0d00c}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000083c0)="125353421ae911490a535387bf81807a9b59c5726009a7c20cf92d7626acb5e810ee928f04b94f79e402462cdd88475d82b9b361c61f8ffb870101d5f5e74c93e6cc4df2ce3647aa3e23c0085c0c1f9a5a33d10407d3f907867ba9ffd89711a50a39045d42ba58631a2e31fd138a4609b8b060adaf480c395aae518ec0812b49def6f9bd14d97a95e841085c4b7608062d8df8a8e4aa4eab705512c6ddb9d1c6231986ed6773ab652ad9f18eecf01d6f853d2beaee3416bb07de92f6ffd1169eaaea82294095cffa42a308ee44e7d0a10d0397985f171dcf2ff79313d241c1b8343615f5dd3c9ebf2c5952fdfb965760f0109dd4716adc7325353c0a62520657bba5af69d59edc0339ab4529ef4fb924e42c1569049c2246a454e2aece2303d5e9c9a7262da4bc19cb6cee4692c0a34c7260df1d392ba689fde453d412a94f7d96c5ad5c9f17bd919c84e187cf965fd0b020374fbbcf3192c8ad8a892a4ed8c1663f4274dea918b1d66ac4706f8194eda40236966c6736ecb5359660eeb6ccf1ab2310b59ac1801d77cc07e3e7c073ba558ca807c4c5e2000e42282a825193e351d875923a359087d61fc61b146e362ceb5232d9fd846e75c71724cf500a4cbbb042b00636388e0a15c766e144b7a1345757b8c8ff31d55419af0719936386db53c6381b3bd28af103c08bd77985d902979e2f0527b5739068fd35d6d3abde4ee070fdee6a97788e6b2734c92a53025218efcdf3087825fe552f954b13a19e8c363b669cd34688b26ad44e26952f025b90946b4bbc56b02c7203cc518d9877265b1d9259ee9ae9f9763517890aaca2099d88a888c1133927a416a8f432c825722304625239cd193be61b354a0baac9731a2bb2a27e866c24aa03e1eb1d256aa4dc37923b4fbbe11beefc6274e835144faa5f85d7d42abc071f79a1fccb34535986a27f773d0c702123ce4a8537a2ebee1722dc7d65333d17027f1e9eb225134065f0b0759316e888a4f815385a9714046b10f0604f4372e9b86656276270017f2a5014cca179c7bd95210b538f9c69b3694b6e1dc68a7efb47168668904b4bfc1c1e8c9779d31a9e6a5a8b21c7f01b638b0c5bec2381527f6dfe1d349a40f1ac3c9b180e88d77268a25d1ed933e443ab90ced4c6b4f116b7a9fee7216756e83691a58a49875b15dd85c501c8e7e4f86836f8f204c4ca0e0e2eb3407adc10035eaf4cf27d279e1673d3ea409844eced099e396e67ee5c13bd8fc8ca046d0e80b23dc152df473b9f3891994a73abc072dd05bb55cb67f544deff42d1741e37b3ab1458bc24ee92bb598c000171922b05047abef23a466e9f38ceae5874d41063522d5997bb267ee41381c7f08e204713b8439c861cddca429dbe3b5803ee2788bf287cc68a21d060eab5bf4a3ee7d52a560cd357d9928479d500be4c8ea52380bb8bdedea9525611551b0d329bd6c677374f4ff78a1ce749e2b68f29dc2b14abcba53b139225b18b6747d3df61ec3b754903f563183f5d2b8b17a976b23db9c09672c8e90f993ee31a7734d561a641597fd5c1abb1fffbeb7ddabb9cd474c532d9d834e65c9b3c597a35637c6acdde621c4d7d3ffaf64c9c6ba36836533ae278234505d542ae760e7e92deee5f336f6a1047a90d0e35f767113c5eead70c22e7cdfa9815446650efbb1417cbdb20c1415033bce17d3727ba607035f43439b89d2809dc102b0760a9855404f8631e9d837e7ddffc164193a28f1762b20db38aebeff0d5d7d6d7bee5319a20af40380276321fad539bb4ded87f6356bb15723a2fb1f98b4b95e602a59da44a438430911197de685b44dc906d14d539abe5c1ea06dc28ffc48ae00470eddacbc78473401917dc969b62d5979b43ce9dfa41d2edbb9f9918c20591071bc1ad23fd064ea76d29e2e1e5b099173a2a30fe9d65acf23d759e625824841a9955d766dc63c49028bee6342009deeebbc678529817abbe8a9fb8668bc7d168b53ec9c14269387d8e08f11acc8933c42eb87d7aff56b61ca6fbb6d1f294694bd5edd73d27d1bb048b1ec6ed9cd90f745e1d6e5491a7ec241ff09d253a081b4e9b8d4ab0cd392027c13c627744ff881b1d394e1f0866729e4fc13fd0bf4351e0cb342861d55ece2567f0ab45a13fcc1c9de5746b95cd78ecad8b8bdbd2412d7037647f65c74e40773fa96febc69203853b744cfcbf189494e33ff1762382c2c1a3eedbc5c8cb2cd4a34978af1ba15423a22e2933ceb6abfbff4194a221bc323581500319dce117fc44c873f1f1558a0bdc1b7ffab1a229ce62f907c18a3806ab6d55376399742b232a8cc495ec740ccdfc50e501420877705bcef9fac646bb6956029957b4855320078d951b7ecb25fdf4cde840737f22f81400d1db2965c816dfa6ec52dba597109c7cbd6283f29055c9afa874119b97eede6452ad4a371568ef9381ebbf5e854f406c6ddd203055b8b93ef68104071b994a074238b9f376979ab0183d7f3cd6dcaf976a4ddef43bb9f207921238e181b5f36289c08a088fbbd8b1fc4047b68fb93de1486c580a69e7d0a89a74990106dea048868017cdf2ad0b8f784560ddb51812611fee8d64166550bb518ed37c5618c4931f5085f3603a553c4fd87407b9212e1feee73ed69a0bb5e5a7bf2e4e1c47ad3d53be86d8572fa98165c37ee2333b664161630567c874c0428fe3485a5e32ff528c8820cd797cbbd71bac85b64891883765955d9bdd56ad24a0949986730ec0a1a558210fd241bea2f0e546c2268f22f6e1b68bc37d03410fa48ab88798d5853ade1586080c2aaba01684d8d52bc0acc59873b72826d12e67e61a026b1d0feef8d3f8a5f1990af782ff38ea3c85a9a13c210ec2edb8a44f172a179436597dd766695de2484010a6ca45b9e4f4e60cd3ba50259a997deed946068ee833dbaea9da078275745804751b5867adba28c81a03c0cb7f9fe910e75aae81acd27c05d95231de31de45e299791d27eca1a1bd096fd9c08f5210fd1fcaa7e4a6ecf367adb9fac0286b46d26f344b6e0d6fc65cf01d281950895e92a4f57d24db1277167a57b885e6c8286c639c0757af742f027b7801a72a75f01baae40aea6231b148d21cda86528fd15fa7b03d7c75b083b7d6349297adab1baf5c3e9ca2886f9089882ab86bef926fea5879723efee3aac26249cfca8a93d6087a90a2598d5046878fa6bf5eb973927cd4c8bf9b9f558c249d841451c4cbef8dd7dfc273b80c3599aa72174b748b04974a3c6906bd2c46f5f995c8ec50729e09c04e3e56557be2c57026679a5db0016c825a32c6ec6d821b1b17b827b3ca2c12436c9d5d6fc95373cf5d3b79bef53683c0ff972dbe82ae2c9c44a010d36d9837e92b8c56086e57951f923063c81f0de8af1c0aef9b35a63048f52653cb9253177b09a9e570144e66a4779d40e7433769221d3bdd02912a8a77994545eafc2d7928b42adad4058cf4959ac9879b8baf4657fabd7ff11b53df67c103185cec9b86454e706ccb91f730f42af3197004dbc430c2021a85bbabf6caea8dbdd3b8062f2ce85cbb995d16aa15eed2f097030f92df963c280fd5e1cebff43b1cfa97c93fa1755c582212644cc643dc3661960cae2fc8c50935de9c57908b29a30ff28e45a7efc6228d5501cb2fd7aa4ff55c9d49aad6d3162c813b8e8a08991fc383812fd368743431097d7114ee105d194cd4239442a58799f573f5b0f16cfe677699869beb162c641700869205a28259137e3e012fe5704aef7a2b4f70b7cbfc450de62fb6aaf22276e4500b50789bc72397c933d371579f99dc696964421cdfd0531ec4d09ee7b07f9604dda97777242fdec6f345db177c75c395636e5b59d9ab88cf10ffde646be582009962822c84a3bf0abb90bd7edc91ede84d1d4444a3ce977fb9ade7de2dfcd2254e83707386fc246acc34400b2fc85f92221796fc65881eba76ea809f59c01db3ea9a7a8eacccf670efdff2d108a6c93b8159da89e17c4568eccb6a4d79c667258148f719367fdde7be1a2dc50538186415ffa235e2cb6418da4c3060667208ca354a67539255ff56f89204148abd2e1bf5283fd42808d9ac0357b65d94cf8e1d68c83de3896b0de4c205f1d458aa0df91b5af1f2f4f71c3f8d3f853aeb2cb5eb51b70a147bfdb28f41617c9760a592ff67c3772c65f335da35d030e121f30dacc6a5de00111654141e5cfe5d6a5eab32487db94ae5bc67c8f27f9be485d40be32794d12478e69338eb1bee7a991116cbf6c0b64dbfd7ba3a1464752d922af8925feb5d2b87da38b99cf48be96f58864abe94c95a70b3764c1ef60f1411bcbcf52dec9e318715cf76b4346972bbaca08574eeb3d67b47523cbf604cbd6300d7be6574724b8ebd40762aefe6ef0924bd320f0f06cbd13daf0acf1bd5c6221ce22e53e7ef3a38f25d44ae17743f354740c8be706662ea5c94a1cb54eb2726ef0af55ed15fa16a35b60974c861eb3c30261fa9926b4cd317b1b4d488277f295a763cd1c6a9e74f9241c6166056b1bc27bb3ff4ebd7ce98fc2d85f8b596aea0de16a6ed782191783a17ca1cda57cad694e8bd9d33a34577ab9cefff348863746ae53d38ebff125e64fb68f7d8efe5d400ff5b53df5fcd6a85cdc3ef950d11f17d62221b6e5c7d7056a0ee0e86bc15c76e9361f7a1073dfcdbf9fc8a3bdc3b69065c63f3360ced8a4f7a6992fa0e8c8ad4522063884578dc10e4e0759398d5583dac3ae8f61b37793a520dcc7cde284f51e924dbaab81519253dfa2312ce14ecdc490bb680838dc7f6a77b3e0f26058f82ae0445e9e455c257acd42e2fb6ceff53fb2b6239fe132ee1cd8480be25f4cdf02a8b4e395a411db09da3d5df16dab2a356a868a0aba2cbb1fe70cf014d2db742be8b3c74fb8cb2b3aa1b1346c0bc24c5f1f08a5b3e6a2498532518fdca216bcff90bcf2d4c4a9a52e71a22d338ec9965b25185da142cb185905ef5f108e00d816301982adef40a7aa388a87d12db1289ec51135ef4dbcb1c140e256b2d6eb6837dc9e6939ac271a530d6be3f67dd08d41a5a06d5a2195351ef17588999469a1439a5e1ac81f1a9f1176de92ddf946095b77ab534acbd5f7049cffb640e32e76f09a2fa9e43da0f3475677242aa705347e4480f39d640f051dfd9efaffc3d6c732608a07fdaf3413d43c6714e2438c14c77dbf1e41b6c6a92ce600898a1727aa0d96f1a15107a5b801d8ce5cc7b89f4a4ae9000c084e9fe5e26c893bbcf20fe6fd665b76f6c7ddf7abbce8ba4c87049997012732cae347e10f859338785f604658db061f1be29c6b9391e790424f01076c458dc2eceb77f515b5be383be741cc0845be3f027e843623a64e71c70323b83be35c742112d864b41b9e8fe2fcf02cec9e03dea2c8dd8f8a20dc4bb1acd4dcc2a6a41072513fc89704db116093d71f191b88da91b19c4ef41ef4ce0ec0db080517191e0bfdf55a4590f45d813b39560f10a59150216422c3338650975ffb049912511561cb430b02283ed2f5772dfe7a9dbea1776d21be94e6915cbeb6544c8d6193fac6c6443bca7d5c180daae0c136dda63365cf77d4f7243f4a16dfab027dac166354d8ab4ad8eea09c3f4cbdbddc98a3ab9d69e0e3b584ada61cfbbfc487b8ce53bfc337487f6fadeb2a958f2f79eb5fb5781718c2ae42788ea56854aff90f0ea6004ec0b943db9dc9ff8f2e03a021291376fec671df5303bfa5e70187268edfc8f93f39942d2096534492875fa0efba9c3cec4e1306754ffa9bb5394f4bf533c7c5551252b1eba0a8edc869d46d7f9988e51bf65e3a39220e902a3a324421693a1d6cc9f554e36e155c1f98f1381e99b6fd4c95af92d028c58b4263c81b204694ef0ce32573b59a492772c832d1277b8ac188e5a6186e1c3550c5f46fa41b0b18d30c9240b00a6f3ae1185797d6eb8c6c19e16555a299003a0143b44c48e230f10f3bb68c71f6da802d35469b9cad460aa105cbe2a15012db3344813bf26d9c310f9c6efed1548f9d79f3b2e22511b0cc02f3e71b74d674902ea6ba569d28f9917c4ec035a8bedbf2a5cd125236faa05fada606d292023865829ed978fcb02d316206e4b8ee588ec0b1a5ce0eed8205d680c726e55115dad2ea592c1e50c812758f84cd4d9899adb849fbfb821a52144faa51b0a5f4998bf2f7eecfc629fb4286745d111c13f8616df5d1f64287f2507bb8a1a2ed9b935535287fc7d4e49492bad9c5a149bb21500bc27b7f50662efef95dbc8c7d564ff14be60c4f8ad98547edebf1517caae37f8cd937e50d8b2ce5acca7f5b965fb4c87dfbcc105cbefff9885a0f4bbaf6a6f691754a99c35cfe739122736e89cff85761e01839dfadedc2b7c5e410ce1ad02308425142fbd9b10f13ae315af3e572b13e53ce304053c91c8792572fa198d0ee823b0f77f134436c5f60e413b759e7f8e2c240cf800e5d5e052848f0efb1329e67a2404cb611906bba9b42fa9a4d8c0e9bcc617a55b7bbe5c5a9c81f96450ef105787978a609b08d9a9c98577b9001285320aeabf49118f8249e6b0af48192637b7215f27fe7531ec9854adee06f27a80744f7592cc157cb59aae245d01e21f6a9c7afcf78c49f20cfa717d8b7cefb1bebc10bbabb4599f6b44e700f3e5906e8ef144fe0bd0a730e2d09d25f8ba5dce21fb7036a293ef46703098464a089cdda149d94cd587b58b6e6d4efbede8b1f6c71e3d912b4e3a383529e05a8d23f5a418ee4a84b0b0719788430ab8a292c371583de46c0e706e4c9e21040721afe54bd9256ab56173bd0252678f7acd23aa91affc5ff4bb0d365446b9b277085ae3478161808dc6c3d44580f0af43b923fd40dd1bc338c4f13bdd16b56fa41dbfecd29788f8f53af777877f8b980d3847cc99f1fac22c015cef351f9d95cddf02a6bf3ce1032f0d2ff4178a5caa53d9d06b9f7f61a4b9eff30148470d079f3bd48ede859bd130646aed72e5c20d1d796e5e8f4d0f2f3be2030e714b054645561517cb365e7cc8dd51d59e991160f15f3d7d4f9d0dde4161aa85d09828a2afe6384173ad7e1ad45e22b9f701fa4bc71f033def2f2946579b1fd0e1380ac76396a0feb2b3efd532978e3e29ce10f2a82ff2230a6278b343314904f0754758218350cabc3eebbb3544c13fc8194516bd6d1dfc6c2a96e7708150725688f35c4b29379314a803a6fb298bf56f676eef9a1308e05a6583e51d88a49f00c1de31bb2567262dc5032ff2f55f022c17faca1fe275ea00b7d36cfcfb76894000a4fe9227c656b4bda1f2413f4692b52b2edfd1437e8235ec60eefc2ff304d46a0fecb84fedfa521aa3666f1a09f9bcf2fb3cb0441495789a4cb2778bdf294acc81430781ca5d6fe7d5a7b99c7d0ce71a148abdfe57279cfd40483b12efe158e880c20f397964b506bf6c063fd6db7168ecd590b5d8b3c1e8fdf3aca1739f6e92af1ea8c80122a88ca9263de3e412dddba98753e08652bd6ec3ab81e7f12daa6eb511e58dbf60b1fba777bf13d979e7c1136c51dce11febb7ae215ec83307aff9b28b60c509fa9eb604e2bdf736dbe0c3d6ee4a34db2e5a32e594d24a64c32a9947c87cbe08acf848af0796cdfa3c2843cc97d34ee9d87e6ba96f3e6263aca04d1c02eccfc7c0c3262289cd6fb979dba7901ecbb6d15705b11c96ad4f769bd96edda5e82c26c503966ceeb4bf043885c41952a6db4c2ed76ddddb2a6155e61071629f597030e72c019242ec6f0367a8d5658f7c4e4e634e69a901a9168bb22b85b0e26ac0a517637e0070566a06066bb592d49ce0a418e317ab785bf9411f237e6f8c116544b7395db92e58178fe684309fcd9816279170b8bbe50841f1565de222efde69f751881bea8c88d2bd8fc7bccea671230b0efebed9e8d86a99a9111063c253891d54cd6ad2837f81812a09aa4479aa6403f829c7fc5c7edcc71713eb8b3a85ea328de14a07182b60888d923b8bf0f86fe2120f71fcf339dfd2ebb16f9cee1b2419a5166927deb4ffa12cc5e564d96f09cb34eb5a0d930a1ee21001ce04db480249e500085718c03944e602485d78b8f00c812a877c8a76595f04fa64f6d5780d017af3da9dcfd1896382fe0a3c8182ce5a319f006e8f3e63f843684cd3f7b642a40221f05beb41f0a940de59648125e842da03c46cfda0496fdb717aa14a2489daf632877d1a9365f2fd121fbb20d025fabd51850f30b93741d9b30673a64f6274967845607581854dd970726cdfed3690944fc964269e78b31578487edee0ea87c115be2bdf28af460a11fee5f4782b3ddf3dcb5e7e24f320efbdb9c9ed42ab87ac84d3ed3a3f63eea4f3bd73df1b0b3ceffba4f588ff1c8d33fb474d717db7d0930eb7e8bb061359baacc5dceecafc44045dc58b85a7e80751267770c59f780469eaef3dcb8b41f9c2d3d8bd4e102330a417e59d296224fc6e7f4a10da37c19d04c9da8f125870958748c7fcca2361e67fe69d4adb32343603d01a0c2950498f1e57c28a3bfff8dcd3ebf96b9fad889aaab33d86093ab78b83afbcff4cae4cad467170b220bca482f59f8acd472671b8b1640f63a77be94b026f74bf1591010d27bee4c8fc9fbd9fe9af1896eff59dc6c30022470a8c0d38795e2054d6a0934df4125039ba90a57e1fca0b1d1abe84026bd8c03787d869ce6989818af65abce3763cf6f9b696b4daa5205c8662036a3df86440b9f67b30b94c8715ac5148125cc50be5307e5bbdac55efcaeebe9589c6ce52e8a0c1259fbc6bca10882f78e851116f2f480b07291311fc6bf11a29a3702d31e74bbba752590dae5f12423942b112ee1ffec98aebb28eaa0b3a094919d4ad75c6cdc9f22a5b47f7e4b517ee3c07fde90d7cffdbd461fbe934f47b331c7d7a786555955ae108dda2efd5b4a1f66d9ab30b5547427e9e8dcb0c35b83dbacdd8cdedfa297a1ca97c59965f455527ecab8c01df3431df6b4a0cacf641e4eb32ac272c74075f98000836830f4d329a9fe7b35c0d88fa364e16d2c3a27abfe26d51b87e4dd9040080ef9a6b5641a4987b35f256dbcaeccb67e18845a25a1c547a35fc4c27b3eed78d8eac9303d5c57801b53ec4b63b7cc80929bef3f59a88d8a6ab8e6f0bcff60fd2259d6ea8cea91c4bdb8d7dc7c9706caace69b005005bb5c88eddcdae6dff2819d0cac55833c6b14ff5011f218b1e96f74ccb213e2d4d7631acb7e4a8fee6171eaed6f77cb7c119ade2645e81d4dc4be5080cd3d28014334164c2759223e7e226877359fa94f437866869b630e0d653a4dcb5603ee5d8d29b85805034b86b3fed1ed8dce76c79dbbf97b35c00529a0fa3f143556083a73ba7d249d7dc116967e33b6519d5468a730a8a6eb26873ff3b6beb01a222bdd5cd4453253a65484086b9fdd3d21050c66c29dfc16b9f0a7e86f5207a67b37cb35c4adf4455fe56b438cdd755475b335b297b3819c448c7708dc13da64383f9728b3b01d885ce4248b441684a13ca952dd5ccb9fbc82a9c75752f9c30ba886652ab88249cc404a0323fd5344ff4a65fbd3f2b0485d6834521d9ce392d50275c9e03a9b335ba159cbcd7e37f6177738640aa3c3c92e86303bb936d0e78c4b5124187e8ffca041fa77498b7af1994034b686645b1940b80994dfaf322f2647424376564b84fb571d8333061523bc7a2772789e589a47e19bea31dce972912e530864e88345d8025f27df6569ad6f96d4fc1ae3891dfc5d6b8e5ca63cc705a95086308ed83f0c347c25408180edbd656c3b44367f75e7b81a8c6df14850a088a4d0a9345f6cdbb941a2627034eb6daad08a49f08d7e1238a2f361f82da834b893f1f8ed6a3658ecca85f7195f8c0b690b6931273ee5de50ec97996cb142bec8d89789b26853849a12e9df565c90886fc2dffcee07b7a778ef06b9a205e7af24ec3b437742751ad8a711caf677acc3026ecd49fb9e778ecf59265c601a1735612fb5fe756caac9eb759138db80a7c20925e2f8c63757c92cd90131f6620601e955f0030f5227e42787fc266cbbee74a983bd5875a66d771418f6f2b7c2d7379f5f0ee59359c6e4c7d00d6c2cba48fa6caa64a3330ed92df55013e62fe636ea97982820213fb0672e9be9b0b51d7266aee893fe971573920a41e16f8e4cd6e19bc2f964fc8e8489333ede8b4fdec61f1740429c92bf853cd0e2e29ca1947a4165e54444b7251afbe35f397195be8f4599213b329194555ce01cbe3cb5d979be2736583d8659929c32d4e4f32949ee63b3c53f6a17ae8f0d75320b59215e030bc03af8a4aae25d178ce4328397176a6d526aaed2f708eec9a74faffdeec0ebd502998780fa0916c472f3e47a72e4bb43deb3fd12ba05292d63a2ccf422ae9c40587e50ab7b0ff39803300d0e953b614077e529e2b357bf901879a59909ff80f0fa7373f7e3a9020ed0dfd6752aadda5e700369a2a96c884d150389344d1446944b80b2e3332fbf2b286c99af51218f872f4e1e8c7b3a706860c36b88e2e443c9b8e26efa4a1c00daaf8d74e784a1f951191e3b87bd96c676252d70ab64c26fe4722fa52b1fe887979c08b248065ef4011651f037ddd521685761abefbe5cc428962f51ca0ac09089d9155d3fcd9386ef2a628a8ebcfc414ab6cf42d63b89fa6718947e73c9848a384f17947b9e1ccbbdec5a74e92218f495ba80462ab13f4c22f144539c3d2d61cb842d46c95d7adc44e06bdabecfefe777b10a8d512bc5a3742c764dbf8b1d89b3405d722350b3370c03387b3eb322b76c8719f9bf047cea863ca3289125386288373a44ac10a6b2835fc7bd6f966b37c167f73c369f41d34b7e25f1df1f542663c2b63c64c4e4e65fca3e79891a8ae8dc0439ae8001672378dd1f412dde932ea7f06ce9c844d158ed4d664ad490a79314e3a6802cba5be998b017f3dee1747b9e4622999d65bdbcdc8ed6c2e839e9167ce7bfeee23e3d398ba93e8211678e3c4004311260fd20b363113a1df8ef8e529adbba84eb7ca48522a213c7771d31857489854a92b4f19901b75b2101234ec15b2b31b43600086e3193209f3c1e4d04d7e4f3f1dbe93074e5443c76f520928a41d84269fc92c728f38b38995118527c2a5ca60db69b1a3967495be0556e0a1b0ee54ba6a38153cef7370bdd1611103a4450b99d80c67eda3cf0eb862faa040219d7d728337cfc8bb52ce758b778ad3faab55c61bf1b4a85b1ff7b48abe438819a169fba5f1351353ede1ae9f4991e22fc1c013833cb62b79b5df6f204758e233711a605e3b7c5c25360c15e2e8da2b663f4ba2baada84aa599c29ca9d3b69c19091df66d6b1ac52085d31c9f607e9144ee9815f3003cdb468d9c7cafd5be7f6ad136fca054540ea6c5570246814f069022840a2099d7605ae30ed9b751de3b7aaa1fa30bf5514e61b316c7640f9aad65d63dd89ca850419749383586d013fb56c3990d3a028ad691b04a5f681b5b11c53673572379029a6435615c7465d59ad32f9af7c3930958141fbb7dfa9d9e8426a2689c744b04d01ab51abe4ff3f15a5f4c496e44eb01291cb814477c35d0bdf86471ea075ae49416c210", 0x2000, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18, 0x0, 0x0, {0x800007ff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r2}, 0x10)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
llistxattr(&(0x7f0000000240)='./file0\x00', 0x0, 0x8a4b41029b6088c8)

5m36.941113519s ago: executing program 35 (id=752):
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
rename(0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x45c0d00c}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000083c0)="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", 0x2000, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18, 0x0, 0x0, {0x800007ff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r2}, 0x10)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
llistxattr(&(0x7f0000000240)='./file0\x00', 0x0, 0x8a4b41029b6088c8)

3m43.355222301s ago: executing program 0 (id=1058):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x800)
recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

3m41.639281359s ago: executing program 0 (id=1061):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0, 0x100000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000040)={0x1, 0x0, [{0xffff1000, 0xb3, &(0x7f0000000880)=""/179}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x4000003ff, 0x5})
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)

3m41.207186042s ago: executing program 0 (id=1065):
socket(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
fsopen(0x0, 0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ptrace(0x10, r5)
waitid(0x1, r5, 0x0, 0x4, 0x0)

3m39.255118961s ago: executing program 0 (id=1069):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x2000000000000069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xe, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}]}, 0x3, 0x459, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
symlink(&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlink(&(0x7f0000002500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x300001, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x4008, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file1\x00', 0x0, 0x83)

3m38.200852995s ago: executing program 0 (id=1072):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYBLOB="5333c923ead7d62a1aa7e1ad6926618430329b0ea6e6e24d7310d2249d89707d2a2ee55d187812e2a0109f36ed3b24151208962f1353f76d5dc207c8b61a67695d2e4632e520"], 0x1, 0x182, &(0x7f0000000200)="$eJzslT1PwkAYx/93RV6Mn8DFQRJxsLRFjQuJLE4OJr4QBxOJVIIWMdBBSBz8BO5uDn4PXf0QBl10wUnnml6P9jSAxkSJ8fkNj796zx3Xh+QPCIL4tzzcv3a8l/xjEsAE0kjI/z9pUQ9X+u+Sz6c3qyvF852r20RHT/U70/O+/vkxANcFDW649/3utPy7AR76JjhmpRfBoEvfBceWdBsM29IPFK/7/bq+X3Vsfa/ulH0x/GL6xfJL7uP9umcMZeV+TFlvttqHJcexGz8on82vW+DIK/dTv6/ebAxlfiY4TOk5MKxLX0KiN5tgJMr7T8ai87Vffn8SEpK/JlE+eZcMM0o+BVFyIX5qsm7tONtsteeqtVLFrthHlpVbNOYNY8HKiiAK6pD8S4l8GlfOHxvQG2dxnJRct2EGNXy2gtovcbnIP47MdPDsZ398cByLdSb3MWEZbUg7QRDEyJgCE5kpcrkny3LRC7HWRnxPgiAIgiAIgiAIgiC+z1sAAAD//9Zjb/k=")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x3032}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
lstat(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0))

3m36.387362796s ago: executing program 9 (id=1075):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)

3m35.172842631s ago: executing program 9 (id=1078):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

3m31.51867526s ago: executing program 9 (id=1083):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$sndctrl(&(0x7f0000000040), 0xe26, 0x101400)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r3, 0xc0045520, &(0x7f00000000c0)=""/92)

3m29.537913361s ago: executing program 9 (id=1085):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x2000000000000069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xe, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}]}, 0x3, 0x459, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
symlink(&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlink(&(0x7f0000002500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x300001, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x4008, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file1\x00', 0x0, 0x83)

3m29.500811202s ago: executing program 0 (id=1087):
openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r4, 0xab00, r5)
r6 = dup3(r4, r0, 0x80000)
ioctl$NBD_DO_IT(r6, 0xab03)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r3, 0x1, 0x70bd2b, 0x6, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

3m27.091643147s ago: executing program 36 (id=1087):
openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r4, 0xab00, r5)
r6 = dup3(r4, r0, 0x80000)
ioctl$NBD_DO_IT(r6, 0xab03)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r3, 0x1, 0x70bd2b, 0x6, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

3m27.019894744s ago: executing program 9 (id=1094):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x6, 0x8, 0xae, 0x0, 0x1, 0x20727ff}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4006, 0x5, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50)

3m22.163281457s ago: executing program 9 (id=1103):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x4)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./file1\x00', 0x1bb)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xfffffecc)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)

3m20.173695505s ago: executing program 37 (id=1103):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x4)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./file1\x00', 0x1bb)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xfffffecc)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)

44.490491588s ago: executing program 5 (id=1372):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ptrace$peek(0x2, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mkdir(0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20048843)
r3 = eventfd2(0x8, 0x0)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000240)={0x0, r3})
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x40)

41.659104126s ago: executing program 5 (id=1377):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000080)='./file0\x00', 0xa00004, &(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRES16], 0x1, 0xc4d, &(0x7f0000000f40)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x4d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x1e, 0x4, 0x0)
connect$tipc(r4, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
sendmmsg$unix(r4, &(0x7f0000004400), 0x400000000000203, 0x0)

40.36244427s ago: executing program 5 (id=1382):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$inet(r2, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x23, 0x0}}], 0x3284b164842c97f7, 0x8014)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000880)=@mangle={'mangle\x00', 0x1f, 0x6, 0x498, 0x158, 0xa0, 0x328, 0xa0, 0x328, 0x404, 0x404, 0x404, 0x404, 0x404, 0x6, &(0x7f0000000580), {[{{@ip={@remote, @dev={0xac, 0x14, 0x14, 0x3d}, 0xff, 0xffffff00, 'geneve1\x00', 'sit0\x00', {}, {0xff}, 0x6c, 0x1, 0x43}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x8, 0x2}}}, {{@ip={@multicast2, @broadcast, 0xff000000, 0x0, 'veth0_to_bond\x00', 'pimreg1\x00', {}, {}, 0x1d, 0x2, 0xa}, 0x0, 0x94, 0xb8, 0x0, {}, [@inet=@rpfilter={{0x24}, {0xc}}]}, @TTL={0x24, 'TTL\x00', 0x0, {0x0, 0x9d}}}, {{@ip={@broadcast, @remote, 0x0, 0x0, 'veth0_to_hsr\x00', 'syzkaller1\x00', {}, {}, 0x32, 0x0, 0x32}, 0x0, 0xb8, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x24}, {0xd}}, @inet=@rpfilter={{0x24}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x5, 0x61, @rand_addr=0x64010100, 0x4e21}}}, {{@ip={@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0xff, 'ip6_vti0\x00', 'hsr0\x00', {0xff}, {}, 0x2f, 0x1, 0x2}, 0x0, 0xb8, 0xe8, 0x0, {}, [@common=@ttl={{0x24}, {0x3}}, @common=@ttl={{0x24}, {0x0, 0x6}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x3f, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e21}}}, {{@uncond, 0x0, 0xb8, 0xdc, 0x0, {}, [@common=@ttl={{0x24}, {0x3}}, @common=@inet=@socket3={{0x24}, 0x5}]}, @ECN={0x24, 'ECN\x00', 0x0, {0x0, 0x9, 0x1}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x4f4)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x7)
dup2(0xffffffffffffffff, r2)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

39.922918667s ago: executing program 5 (id=1386):
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e21, 0x400000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000340)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)

36.51263386s ago: executing program 5 (id=1392):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x6, 0x2b, 0x0, 0x74efdfe049b861ab)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_UNMAP(0xffffffffffffffff, 0x3b86, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_PROMISC(r3, 0x6b, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x4)

34.324524479s ago: executing program 5 (id=1395):
syz_open_dev$usbmon(0x0, 0x6a2, 0x20000)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x400, &(0x7f0000000080)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRESDEC=0x0], 0x1, 0x68b, &(0x7f0000000a40)="$eJzs3U1sHGf9B/DvbnbX3vz/Sp02SQOqRNRIBRGROLGSYi4NCKFIVKgqB8TRSpzGyiatHBc5EYLwfuDCoXeKRG5cQOIeVM7AqVcfKyFx6SmAxKKZnbXXL7F3ndhri88nmp3nmedlnuc3Mzu7s4oc4H/WtXNpPE4t1869uVzkVx7NdFYezdzpp5NMJKknjd4qtbtJ7aPkanpLPlNsrLqrPW0/HyzMvv3xpyuf9HKNainr17drt8mV+hYbH1ZLziQ5Uq2fwbr+rm/orzVyd7XVGRYBO9sPHIxbM0l3ne+eWivZ0fDXLXBg1Xr3zU0X9FRyNMlk9Tmgd1fs3bMPtYfjHgAAAADsgxd+WX6FPzbucQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBhUv39/1q11PvpM6n1//5/q9qWKn2oPR73AAAAAAAAAABgdN/8/w0bPvckT7KcY/18t1b+5v9qmTlRvv5f3s+9zGcx57OcuSxlKYu5mGSqLG+Wr63luaWlxYtDtLy02jIDLS8NOYP27icPAAAAAAAAAIdFY/QmP861td//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgIKglR3qrcjnRT0+l3kgymaRV1HuY/LWfPpB+/afBXPff3dKmao/3c0wAAAAwJi88yZMs51g/362V3/lPld/7J/N+7mYpC1lKJ/O5UT4L6H3rr688mumsPJq5Uyyb+/3qP0YaRtljes8ett7z6bJGOzezUG45n+t5N53cSL1sWTjdH8/W4/pRMabaG5UhR3ajWhcz/1WaI81qN2pD15wqI1KMqBeR6aptEY3j20dixKPT31M/9hdTX33yc+J5xny5t3r9t711MZ+fjxSTvbYxEpcGzr5T20ci+fwff/edW527tydu3jt3cKY0gomBJ2gbIzEzEImXh43ErcMaiUHTZSROruav5Rv5ds7lTN7KYhbyvcxlKfM5k69nLkcyV53PxevU9pG6ui731k4jaZXHpVm9iw4/pqXM5dWy7bEs5Ft5Nzcynyvlv0u5mNdzOZczO3CETw5x1ddHe6c9+4WBh8m/SNIert0+KAZ2fPXuNHjWT5fXwfF1W9ai9OLzvx81Plslin38pFofDBsjcXEgEi9tH4nflG8r9zp3by/emntvyP29Vq2L6+hnB+ouUZwvLxYHq8ytPzuKspc2lk324tWqfnHpla2/4xZlJ1fLdrpSW9VnuM09XSrLXt6ybKYsOz1Qtu7z1tXe5y0ADryjXzzaav+9/Zf2h+2ftm+135z82sSXJ15ppfnn5lca00deq79S+0M+zA/Wvv8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC7d+/+g9tznc784oZEt9v94VOK9jDRTtLfkuzUqpmd6+xNopWkTDT6idH6mRiqcmvt6Lzx+2cZc3PUVslzCVSjOsnuP7j9z263u++HaYtEc5tzfi3RrWwq6g7VfGyJf3WfX4djfmMC9tyFpTvvXbh3/8GXFu7MvTP/zvzd2cuXZ6dnL1/524WbC5356d7ruEcJ7IW1m/64RwIAAAAAAAAAAAAMaz/+W8JTdv2ffZ4qAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcEhdOzdRpc5PF68rj2Y6xdJPr1Ysq9WT1L6f1D5Krqa3ZGqgu9rT9vPBwuzbH3+68kkv16iWsn59XbvmbmbxsFpyJsmRaj1o8hn6u16tdzWyUm11hkXAzvYDB+P23wAAAP//+B8RmQ==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x2a0000a, 0x0, 0x0, 0x0, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
mknodat(r3, &(0x7f0000000100)='./file0/file0\x00', 0x8910, 0x4)
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)

26.615160507s ago: executing program 2 (id=1410):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
getrlimit(0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

24.466179513s ago: executing program 2 (id=1412):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20400008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000002080)={0x8, {"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", 0x1000}}, 0x1006)
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0x300)

20.25195168s ago: executing program 1 (id=1421):
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
r0 = syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1200800, &(0x7f00000008c0)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303031302c6e6c733d69736f383835392d332c747970653d78fa42012c666f7263652c6769643d", @ANYRESHEX=0x0, @ANYBLOB="00000000f5", @ANYRESHEX=0x0, @ANYBLOB="056c"], 0x3, 0x6ae, &(0x7f0000000e40)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4000, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x7000}}, 0x0, 0x0, 0x0)
epoll_pwait(r4, &(0x7f0000000180)=[{}, {}, {}], 0x3, 0x7, 0x0, 0x0)

18.196920419s ago: executing program 38 (id=1395):
syz_open_dev$usbmon(0x0, 0x6a2, 0x20000)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x400, &(0x7f0000000080)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRESDEC=0x0], 0x1, 0x68b, &(0x7f0000000a40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x2a0000a, 0x0, 0x0, 0x0, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
mknodat(r3, &(0x7f0000000100)='./file0/file0\x00', 0x8910, 0x4)
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)

17.442457296s ago: executing program 6 (id=1423):
r0 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r1, 0x0, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000004340)=""/102376, 0x18fe8)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
pipe(0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
msgget$private(0x0, 0x3ac)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000540)={{@hyper, 0x802}, @hyper, 0x0, 0x0, 0x5e, 0x8})

17.441406559s ago: executing program 1 (id=1424):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00006ee000/0x4000)=nil)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
setreuid(0xee01, 0xee01)
openat(r3, &(0x7f0000000540)='./file1\x00', 0x121143, 0x1db)

15.80979405s ago: executing program 1 (id=1426):
socket$inet6(0xa, 0x3, 0x3c)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)={0x18, r5, 0x1b, 0x0, 0x3, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x4}]}, 0x18}}, 0x0)

15.509796699s ago: executing program 6 (id=1427):
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x4)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x7ff, @private2, 0xeb2}]}, &(0x7f0000000180)=0x10)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000340)="480000001400190d09034beafd0d36020a841a000000230f004e2100a2bc5603ca00000f7f89004e00200000000101ff00c00e03000200000000000000000300005839c900910000", 0x48}], 0x1)

14.174704232s ago: executing program 6 (id=1428):
socket$packet(0x11, 0x3, 0x300)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000440)={0x28, 0x7, r1, 0x0, &(0x7f0000000480)='LLLLLLLL', 0x8, 0x2})
openat$dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
shmctl$IPC_RMID(0x0, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000400)={0x28, 0x7, r1, r1, 0x1c, 0x3, 0x2})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r3, 0x0, 0x48080)

14.059039208s ago: executing program 3 (id=1429):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setfsgid(0xee00)
r3 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(r4, &(0x7f0000000040)='syscall\x00')
pread64(r5, &(0x7f0000000500)=""/31, 0x1f, 0x40000000009)

12.22133113s ago: executing program 3 (id=1430):
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x805, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x7)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_io_uring_setup(0x110, &(0x7f0000000200)={0x0, 0xfec9, 0x8, 0x5, 0x3d4}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0xdb4, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r3, 0x18, &(0x7f0000000000)={0x8, 0xffffffffffffffff, 0x4, {0x4, 0x1}, 0x8}, 0x1)
accept4$unix(r1, 0x0, 0x0, 0x0)

12.166944245s ago: executing program 8 (id=1431):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x4c3, &(0x7f0000000000)={[{@nobh}, {@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0xcb1b}}, {@dax_always}, {@nouid32}, {@jqfmt_vfsv1}]}, 0xff, 0x5d8, &(0x7f0000000c00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
write$nci(0xffffffffffffffff, &(0x7f0000000280)=ANY=[], 0x7)
r5 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r5, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)

12.005396874s ago: executing program 1 (id=1432):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x2, @random, 'tunl0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x3e8, 0x0)
connect(r0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
shmget$private(0x0, 0x400000, 0x184, &(0x7f0000c00000/0x400000)=nil)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000004c00)=""/102392, 0x18ff8)
openat$nullb(0xffffffffffffff9c, 0x0, 0x82, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x484400, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

11.699150256s ago: executing program 6 (id=1433):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x541b, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/fib_triestat\x00')
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7f03)
preadv(r2, &(0x7f0000000080)=[{&(0x7f0000000040)=""/46, 0x2e}], 0x1, 0x0, 0x4)

10.751686149s ago: executing program 8 (id=1434):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x94}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

10.291277657s ago: executing program 3 (id=1435):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x2000c044)
ioctl$TCSETAF(0xffffffffffffffff, 0x5408, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x3})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000340)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x28}, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0xfc, 0x0}, @broadcast, {[@ra={0x94, 0x4}]}}, @timestamp_reply={0xe, 0x0, 0x0, 0x7fff, 0x1ff, 0xfffffff3, 0xc, 0x8000}}}}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2})
ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000002dc0)=@userptr={0x2, 0x1, 0x4, 0x0, 0x1, {}, {0x1, 0xc, 0x9, 0xc, 0x6, 0x8, "bf240fef"}, 0x3, 0x2, {0x0}, 0x96000})
close(r1)

9.975518313s ago: executing program 6 (id=1436):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
mlock(&(0x7f0000475000/0x2000)=nil, 0x2000)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4004000)
r1 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
r2 = fanotify_init(0xf00, 0x2)
fanotify_mark(r2, 0x105, 0x8971, r1, 0x0)
readv(r2, 0x0, 0x0)
rename(&(0x7f0000000100)='./bus\x00', &(0x7f0000000140)='./file1\x00')
accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)

8.55006146s ago: executing program 8 (id=1437):
ioctl$TCSETA(0xffffffffffffffff, 0x5406, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
openat$audio1(0xffffffffffffff9c, 0x0, 0x226381, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
shmget(0x2, 0xc00000, 0x360, &(0x7f0000400000/0xc00000)=nil)
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r3, 0x80044d03, &(0x7f0000000040))

8.541451865s ago: executing program 2 (id=1448):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = getpgrp(0x0)
r5 = syz_pidfd_open(r4, 0x0)
process_madvise(r5, &(0x7f0000000100)=[{0x0}], 0x1, 0x4, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r6, 0x4008af60, &(0x7f0000000040)={@my=0x1})

6.12179978s ago: executing program 3 (id=1438):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007500000004000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000200)=0xb)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000640)=0x10)

6.120703615s ago: executing program 2 (id=1439):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000480)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r4}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
syncfs(r4)

6.115712642s ago: executing program 8 (id=1440):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$eJzs3V1rHFUYAOB3Nkm/tSmUoiIS6IWV2k2T+FFBsF6KFgt6X5dkGmo23ZLdlCYW2l7YG2+kCCIWxB/gvZfFP+CvKGihSAl64U1kNrPtNtnN52q2zvPAtOfMzObM2TPv2Xd2dtkACmsk+6cU8WLcjK+TiMNt2wYj3ziyst/So+uT2ZLE8vInfySR5Ota+yf5/wfzygsR8cuXESdLa9utLyzOVKrVdC6vjzZmr4zWFxZPXZqtTKfT6eXxiYkzb06Mv/P2Wz3r62vn//ru43sfnPnq+NK3Pz04cieJs3Eo39bejx242V4ZiZH8ORmKs6t2HOtBY/0k2e0DYFsG8jgfimwOOBwDedQD/383ImIZKKhE/ENBtfKA1rV9j66DnxkP31+5AFrb/8GV90ZiX/Pa6MBS8tSVUXa9O9yD9rM2fv797p1siQ3eh7jRg/YAWm7eiojTg4Nr578kn/+273TzzeP1rW6jaK8/sJvuZfnP653yn9Lj/Cc65D8HO8Tudmwc/6UHPWimqyz/e7dj/vt46hoeyGvPNXO+oeTipWp6OiKej4gTMbQ3q693P+fM0v3lbtva879sydpv5YL5cTwY3Pv0Y6YqjcpO+tzu4a2Il57kv0msmf/3NXPd1eOfPR/nN9nGsfTuK922bdz/dr3PgJd/jHi14/g/uaOVrH9/crR5Poy2zoq1/rx97Ndu7W+t/72Xjf+B9fs/nLTfr61vvY0f9v2ddtu23fN/T/Jps7wnX3et0mjMjUXsST5au378yWNb9db+Wf9PHF9//ut0/u+PiM822f/bR2933bUfxn9qS+O/9cL9D7/4vlv7mxv/N5qlE/mazcx/mz3AnTx3AAAAAAAA0G9KEXEoklL5cblUKpdXPt9xNA6UqrV64+TF2vzlqWh+V3Y4hkqtO92H2z4PMZZ/HrZVH19Vn4iIIxHxzcD+Zr08WatO7XbnAQAAAAAAAAAAAAAAAAAAoE8c7PL9/8xvA7t9dMC/zk9+Q3FtGP+9+KUnoC95/Yfi6hL/pgUoAIEOxSX+objEPxSX+IfiEv9QXOIfAAAAAAAAAAAAAAAAAAAAAAAAAAAAeur8uXPZsrz06PpkVp+6ujA/U7t6aiqtz5Rn5yfLk7W5K+XpWm26mpYna7Mb/b1qrXZlbDzmr4020npjtL6weGG2Nn+5ceHSbGU6vZAO/Se9AgAAAAAAAAAAAAAAAAAAgGdLfWFxplKtpnMKXQvvxW4fxucv7+ThSedRTto6uGJbTQz2yzAp9LSwyxMTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALT5JwAA//821zOC")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xeb38e000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x2, 0x3a)
r5 = timerfd_create(0x0, 0x0)
read(r5, 0x0, 0x0)
getsockopt$inet6_mreq(r4, 0x29, 0x14, 0x0, &(0x7f00000001c0))

5.951155693s ago: executing program 6 (id=1441):
syz_open_dev$evdev(&(0x7f0000000280), 0x1, 0x20800)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x498, &(0x7f0000000200)={0x0, 0x7279, 0x0, 0x4, 0x125}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xffffffff, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_MAXSEG(r5, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={0x0, 0x2}, 0x8)
shutdown(0xffffffffffffffff, 0x0)

3.44479375s ago: executing program 8 (id=1442):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setfsgid(0xee00)
r3 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(r4, &(0x7f0000000040)='syscall\x00')
pread64(r5, &(0x7f0000000500)=""/31, 0x1f, 0x40000000009)

3.199430324s ago: executing program 3 (id=1443):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x986cd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(0x0, r3)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)

3.199027784s ago: executing program 1 (id=1444):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x80800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

3.10254158s ago: executing program 2 (id=1445):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x100000c, 0x11, r4, 0x0)
r5 = syz_io_uring_setup(0xa0, &(0x7f0000000100)={0x0, 0x200089bb, 0x1, 0x5, 0x1c3}, &(0x7f0000000240)=<r6=>0x0, &(0x7f00000000c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0xc000000, &(0x7f0000000000)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x1e})
io_uring_enter(r5, 0x847ba, 0x0, 0xe, 0x0, 0x0)

1.138701962s ago: executing program 1 (id=1446):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000001340)=@abs={0x0, 0x0, 0x104e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$sock_int(r3, 0x1, 0x29, &(0x7f0000000300)=0x20, 0x4)
readv(r3, 0x0, 0x0)
write$binfmt_misc(r3, &(0x7f0000000300), 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0xf0, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}}, 0xf0}, 0x1, 0x0, 0x0, 0x8801}, 0x0)

49.60125ms ago: executing program 3 (id=1447):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x8145, 0x10100}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000240)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
r4 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x2007, @fd=r4, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="1b000000000000001c000000000004"], 0x48)
io_uring_enter(r1, 0x26c3, 0xdfffeffb, 0x4c, 0x0, 0x1d)
r5 = socket$tipc(0x1e, 0x5, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, 0x0, 0x0)
bind$tipc(r5, 0x0, 0x0)

2.369945ms ago: executing program 2 (id=1449):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x94}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)

0s ago: executing program 8 (id=1450):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0])
pipe(&(0x7f0000000080))
socket$inet_mptcp(0x2, 0x1, 0x106)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0xfffffffffffffff1, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
syz_io_uring_setup(0x49f, 0x0, 0x0, &(0x7f0000000040))
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200), 0x20440, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdir(0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = userfaultfd(0x801)
getsockopt$inet_sctp6_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, 0x0, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{0x0}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_WRITEPROTECT(r2, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)

kernel console output (not intermixed with test programs):

terface, different from the descriptor's value: 2
[  237.717249][ T5994] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  237.755673][ T5994] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  237.806279][ T5994] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  237.864262][ T5994] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.908591][ T5994] hub 8-1:1.0: bad descriptor, ignoring hub
[  237.931172][ T5994] hub 8-1:1.0: probe with driver hub failed with error -5
[  237.957294][ T5994] cdc_wdm 8-1:1.0: skipping garbage
[  237.977249][ T5994] cdc_wdm 8-1:1.0: skipping garbage
[  238.071464][ T5994] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  238.126386][ T7579] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  238.143042][ T5994] cdc_wdm 8-1:1.0: Unknown control protocol
[  238.213138][ T7579] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  238.318871][ T7598] loop0: detected capacity change from 0 to 32768
[  238.424473][ T7598] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  238.432887][ T7598] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  238.546379][ T7598] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  238.558395][ T5960] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  238.579570][ T5960] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  238.673929][ T7601] loop6: detected capacity change from 0 to 32768
[  238.689704][ T7601] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.448 (7601)
[  238.858113][   T48] usb 8-1: USB disconnect, device number 3
[  239.125505][ T7601] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  239.137261][ T7601] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  239.511808][ T7601] BTRFS info (device loop6): rebuilding free space tree
[  239.624345][ T7601] BTRFS info (device loop6): disabling free space tree
[  239.631369][ T7601] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  239.642423][ T7601] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  239.719124][ T7601] BTRFS info (device loop6): enabling ssd optimizations
[  239.726215][ T7601] BTRFS info (device loop6): force clearing of disk cache
[  239.733416][ T7601] BTRFS info (device loop6): enabling auto defrag
[  239.740222][ T7601] BTRFS info (device loop6): doing ref verification
[  239.862525][ T5960] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 1282ms
[  239.901141][ T5960] gfs2: fsid=syz:syz.0: jid=0: Done
[  239.961775][   T30] audit: type=1800 audit(1758508707.321:8): pid=7601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.448" name="file1" dev="loop6" ino=260 res=0 errno=0
[  240.002880][ T7598] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  241.345092][ T6338] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  242.406664][ T7683] input: syz0 as /devices/virtual/input/input8
[  242.593081][ T5960] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  243.742323][ T5960] usb 8-1: Using ep0 maxpacket: 32
[  243.749667][ T5960] usb 8-1: config 0 has an invalid interface number: 191 but max is 0
[  243.838795][ T5960] usb 8-1: config 0 has no interface number 0
[  243.962708][ T5960] usb 8-1: New USB device found, idVendor=04fc, idProduct=0204, bcdDevice=67.67
[  244.020428][ T5960] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.080232][ T5960] usb 8-1: Product: syz
[  244.096885][ T5960] usb 8-1: Manufacturer: syz
[  244.101535][ T5960] usb 8-1: SerialNumber: syz
[  244.144066][ T5960] usb 8-1: config 0 descriptor??
[  244.165780][ T5960] spcp8x5 8-1:0.191: SPCP8x5 converter detected
[  244.182226][ T7707] loop8: detected capacity change from 0 to 2048
[  244.254911][ T5960] usb 8-1: SPCP8x5 converter now attached to ttyUSB0
[  244.361896][ T7707] UDF-fs: error (device loop8): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  244.424988][ T7707] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  244.442738][ T5960] usb 8-1: USB disconnect, device number 4
[  244.460152][ T5960] SPCP8x5 ttyUSB0: SPCP8x5 converter now disconnected from ttyUSB0
[  244.544494][ T5960] spcp8x5 8-1:0.191: device disconnected
[  247.681140][ T7738] loop6: detected capacity change from 0 to 1024
[  247.800636][ T7738] EXT4-fs: Ignoring removed nomblk_io_submit option
[  247.868859][ T7738] EXT4-fs: Ignoring removed nomblk_io_submit option
[  247.936671][ T7738] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  248.007626][ T5925] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  248.061035][ T7738] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  248.208596][ T5925] usb 8-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  248.241485][ T5925] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.282717][ T5925] usb 8-1: Product: syz
[  248.300627][ T5925] usb 8-1: Manufacturer: syz
[  248.325480][ T5925] usb 8-1: SerialNumber: syz
[  249.207245][ T6338] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.201427][ T5925] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[  250.324573][ T7790] ptrace attach of "./syz-executor exec"[5877] was attempted by "./syz-executor exec"[7790]
[  250.352476][ T7789] netlink: 12 bytes leftover after parsing attributes in process `syz.6.489'.
[  250.421727][ T5925] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00001000. ret = -EPROTO
[  250.488335][ T5925] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  250.505575][ T5925] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  250.518217][ T5925] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  250.560695][ T5925] lan78xx 8-1:1.0: probe with driver lan78xx failed with error -71
[  250.696544][ T5925] usb 8-1: USB disconnect, device number 5
[  256.972937][ T7851] fuse: Unknown parameter '0xffffffffffffffff'
[  258.673317][ T7887] ptrace attach of "./syz-executor exec"[6338] was attempted by "./syz-executor exec"[7887]
[  259.569391][ T7899] fuse: Bad value for 'fd'
[  259.648228][ T5925] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  259.874366][ T5925] usb 7-1: Using ep0 maxpacket: 32
[  259.921008][ T5925] usb 7-1: config 0 has an invalid interface number: 89 but max is 0
[  259.949361][ T5925] usb 7-1: config 0 has no interface number 0
[  259.962367][ T5925] usb 7-1: config 0 interface 89 has no altsetting 0
[  259.993444][ T7904] loop0: detected capacity change from 0 to 512
[  259.996626][ T5925] usb 7-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  260.024848][ T7904] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  260.044624][ T5925] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.062448][ T5925] usb 7-1: Product: syz
[  260.066944][ T5925] usb 7-1: Manufacturer: syz
[  260.098417][ T5925] usb 7-1: SerialNumber: syz
[  260.139964][ T5925] usb 7-1: config 0 descriptor??
[  260.198573][ T7904] EXT4-fs (loop0): 1 truncate cleaned up
[  260.237343][ T5925] em28xx 7-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  260.254337][ T7904] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.438738][ T5925] em28xx 7-1:0.89: Video interface 89 found: bulk
[  260.441892][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.478808][ T7920] overlayfs: failed to clone upperpath
[  261.184858][ T5925] em28xx 7-1:0.89: unknown em28xx chip ID (0)
[  261.464915][ T7932] process 'syz.5.522' launched './file2' with NULL argv: empty string added
[  262.092438][ T5960] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  262.219664][ T5925] em28xx 7-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[  262.240321][ T7948] overlayfs: failed to clone upperpath
[  262.261214][ T5925] em28xx 7-1:0.89: board has no eeprom
[  262.296196][ T5960] usb 1-1: Using ep0 maxpacket: 8
[  262.328962][ T5960] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  262.341210][ T5960] usb 1-1: config 179 has no interface number 0
[  262.354053][ T5925] em28xx 7-1:0.89: Identified as Terratec Grabby (card=67)
[  262.368063][ T7952] netlink: 4 bytes leftover after parsing attributes in process `syz.2.532'.
[  262.379180][ T5960] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  262.381859][ T5925] em28xx 7-1:0.89: analog set to bulk mode.
[  262.441727][ T5960] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  262.444710][ T5957] em28xx 7-1:0.89: Registering V4L2 extension
[  262.487171][ T5925] usb 7-1: USB disconnect, device number 5
[  262.498097][ T5960] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  262.504185][ T5925] em28xx 7-1:0.89: Disconnecting em28xx
[  262.565547][ T5960] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  262.618207][ T5960] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  262.698493][ T5960] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  262.741737][ T5960] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.772991][ T5957] em28xx 7-1:0.89: Config register raw data: 0xffffffed
[  262.798580][ T5957] em28xx 7-1:0.89: AC97 chip type couldn't be determined
[  262.829630][ T5957] em28xx 7-1:0.89: No AC97 audio processor
[  262.853364][ T7940] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  262.895586][ T5957] usb 7-1: Decoder not found
[  262.976707][ T5957] em28xx 7-1:0.89: failed to create media graph
[  263.014858][ T5957] em28xx 7-1:0.89: V4L2 device video103 deregistered
[  263.159025][ T7967] [U] 
[  263.162159][ T7967] [U] K{‘
[  263.166745][ T7967] [U] ÄT Ž1ÊÀŠªFÌÇÄFËŠÎ`GÊJǘÜGÖƯ¹¬¡—ÞÈOÕÑ/ÜMCÇ
[  263.176521][ T7967] [U] TžØ–/,�~ˆÄœ­‹JÕßÊ}8ÎÊÞ'O1�Ü"™7-΂JQœK—¤WºÏQÉ5C%"¬H12–¦Y“„‰ž€ÊXÍ`ˆ‚Íȼ`+³Û(·Â¿!(ÉÛÉZ'ÀTXLN»I®GÅJ– °ÜÝ­·PÅ~÷7Í!‘ÕÒ"بÎ¾ª(È5ˆOBܤ‡ÍƒJÖ
[  263.201620][ T5957] em28xx 7-1:0.89: Registering snapshot button...
[  263.237534][ T7967] [U] ±K\&—}6£6œXÎHX�¥Ôµ„ÌÞ.`¸A“$Û40|϶¿�9°ØÞ¨„¯ÀÏU‚Ò4�ÔÄ®VBZÃÐ}ÌWÔM”TºŽÍQŸÝΦR’4”ß
[  263.275933][ T7967] [U] ".H6ØÞ"ÖKÇ[›‰¤ŒJÁ4ÇØI�N¨™[Z(•„C|TË]Z{�Â3ŸC=»¨XÎԞ˅Î4¿W‰)\T‘XJØ�SH{Q;̹¢…ÖTÔÇ+‹¦÷GÍÈß®D„.Ë‚³>Yž�÷ÉWUH„FN—Ž�ÇHL]SÔ2ŠÇÙ\G%ŠO¼&Z)µК'¨PUL‚_<Ã	¢Ø°‰Ò®ÔÅ`Ò±TÔÁÞœÐËÞ;_Ô"(‘U{7Jœ¿2X ‘/€'ÝÙCÑÌÕIº©ÀÏH¿C�Õ³žV¦=�‘AIÇ%W¼ESž RšŸJŠÎœƒÚ”GÂ÷RÁ¹Í¡HI
˜¢œAÏÌ6-ÚD�ÚV¨Á I"ØÅNƨ ÞÚASC~4Áª¹8CØ*­OO5/ßœJš~º§¡W—VK+¬®‰Œ3ÈÇY)Ž¹M°¸ÆV¶ÌYQƽ€DTR¯
OTPEM%F×ÊEJÍA5ÆÔT_-X~ ^AAÛ‚Ò˜½QÖÅ
[  263.320986][ T5957] input: em28xx snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.89/input/input9
[  263.407379][ T7967] [U] 	+�W‰G?]£Ó'A:	»Ú)Õ
ÏÓ™“' B>T¢ ¡F/™÷<'ÈUÓ'–¼H§IÉ.+]EŸ.½-É¿ß¿Ò%÷È>2`¶^Uß8F.Š6¤Å3ÓØ+ËA¾Â««„°G3ÓPÂÓ6:�^0À�TÉÈV÷'EÕT¼€ÛÂYC‰N¾ÞRÏ©ÞNÈPJ×;ÆZ†ÊÔÑÛ‘8!¯È\Ù…¸AØÊ–2Á£$е™Â­WI.ÍÇ#ŠÈ/BAI¼�Ä`ÐÁ4J’ÔDÎY@ÓZ„ÜGW÷5Ë¿Bĵٜ NÓY"VI2ÛÌ
[  263.437269][ T7967] [U] ÔT¦_K5¸T¬YJÐÞÎ9ÐÕCÊ$BRŸLÚNUL¶Ü9WÈÝÍ|žGÅ"ʃÆ%ÇÚ¶ÊCªØ�°¶ºQÎÙ
 ŸÇ3‹ÆQ¯ÔN^HP*½Ü$	µ.Î7YÓ±œ2³
[  263.454551][ T5957] em28xx 7-1:0.89: Remote control support is not available for this card.
[  263.464019][   T48] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input10
[  263.469998][ T7972] netlink: 4 bytes leftover after parsing attributes in process `syz.5.537'.
[  263.546484][ T7967] [U] ½?�©ßHÜÄ*ÙÁ”Î3Í�7ÜÉ�¾^#Q�"0~‡‚Ð(ÉOÏXLŒB£,'VÎÓ=‹ÝËCÌS«…’G‚S¶Þ0•Ö‚‹Ù`˜›žÙ‡Ÿ†=1(÷ξ™÷P#Ò2DO*Ƀ
[  263.568937][ T5925] em28xx 7-1:0.89: Closing input extension
[  263.635553][ T5925] em28xx 7-1:0.89: Deregistering snapshot button
[  263.649632][ T7972] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.738125][ T7967] [U] ©S¹“Gžµ²¶“˜GUÐÔD-{¸™Â|&“�®ŸŸÑ�2µ›LÞC_©œ!`¨ÍOZÖ¥¢B¶³%>ÊRѶÖWχݎSSÂH"£YA4£O.šYÙÛÄ�„RTÔ¶ŒBÚ[+/<<R�B�ÊÄÕ|ФEŽžÑÛ –V96#ÛÚÑͤʦJºUº%
S851ƒ�ÞÒ©S�P±¨\£ƒ?Qª|L�´QXµ0ÂKÔ1ORÉ´2¡½|ÖÜDÖFÌ¿»Ù�ÚË2Þ”–¨×0ÌÅH•}C[/¤»“ŸPX^¼ÈO
[  263.762126][ T7967] [U] ÖØ›·Ü—(JÅЛ•§MÛÜXZ˜;œ½±ÓßØ�_¹»µÔ*3÷3…¿5¸\ƒXM³ÚU�‰AK!AQ`¿
[  263.969484][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  263.977937][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  263.989428][   T48] usb 1-1: USB disconnect, device number 5
[  264.737810][ T5865] udevd[5865]: setting owner of /dev/input/event5 to uid=0, gid=104 failed: No such file or directory
[  264.818353][ T5925] em28xx 7-1:0.89: Freeing device
[  264.819766][ T7972] batman_adv: batadv0: Removing interface: batadv_slave_1
[  265.283428][ T5925] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  265.348624][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  265.359823][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  265.483422][ T5925] usb 7-1: Using ep0 maxpacket: 8
[  265.494773][ T5925] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  265.532875][ T5925] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  265.576792][ T5925] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  265.592752][ T5925] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  265.606559][ T5925] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  265.615996][ T5925] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.688895][ T7990] team0: Port device team_slave_0 removed
[  265.865712][ T5925] usb 7-1: GET_CAPABILITIES returned 0
[  265.886393][ T5925] usbtmc 7-1:16.0: can't read capabilities
[  265.913629][   T13] batman_adv: batadv_iv_ogm_emit: mesh interface switch for queued OGM
[  266.162621][  T914] usb 7-1: USB disconnect, device number 6
[  266.923453][ T8013] netlink: 'syz.7.546': attribute type 4 has an invalid length.
[  267.422436][ T5873] Bluetooth: hci4: command 0x0406 tx timeout
[  268.022924][ T8016] netlink: 'syz.7.546': attribute type 4 has an invalid length.
[  268.671530][ T8029] netlink: 'syz.7.549': attribute type 4 has an invalid length.
[  268.812468][ T5925] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  268.985631][ T5925] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  269.058581][ T5925] usb 9-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[  269.132404][ T5925] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  269.177674][ T5925] usb 9-1: config 0 descriptor??
[  269.731683][ T5925] uclogic 0003:5543:0522.0009: unbalanced delimiter at end of report description
[  269.813232][ T5925] uclogic 0003:5543:0522.0009: parse failed
[  269.819291][ T5925] uclogic 0003:5543:0522.0009: probe with driver uclogic failed with error -22
[  269.824007][ T8046] bpq0: entered allmulticast mode
[  269.937758][ T5925] usb 9-1: USB disconnect, device number 3
[  270.644793][ T8056] loop6: detected capacity change from 0 to 32768
[  270.714436][ T8058] sctp: [Deprecated]: syz.0.557 (pid 8058) Use of int in max_burst socket option.
[  270.714436][ T8058] Use struct sctp_assoc_value instead
[  271.220223][ T8056] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  272.623151][ T6338] ocfs2: Unmounting device (7,6) on (node local)
[  272.976490][ T8082] netlink: 8 bytes leftover after parsing attributes in process `syz.8.563'.
[  273.849238][ T5957] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  273.961059][ T5957] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  274.042850][ T5925] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  274.238350][ T5925] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  274.274383][ T5925] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  274.337751][ T5925] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  274.585235][ T5925] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  274.938734][ T5925] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  274.988866][ T5925] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  275.212351][ T5925] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  275.230252][ T5925] usb 8-1: Product: syz
[  275.234771][ T5925] usb 8-1: Manufacturer: syz
[  275.265643][ T5925] cdc_wdm 8-1:1.0: skipping garbage
[  275.350932][ T8105] netlink: 40 bytes leftover after parsing attributes in process `syz.8.569'.
[  276.012868][ T5925] cdc_wdm 8-1:1.0: skipping garbage
[  276.041114][ T5925] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  276.058324][ T5925] cdc_wdm 8-1:1.0: Unknown control protocol
[  276.070965][ T5925] usb 8-1: USB disconnect, device number 6
[  276.646231][ T8112] netlink: 44 bytes leftover after parsing attributes in process `syz.8.570'.
[  277.699495][ T8119] loop8: detected capacity change from 0 to 512
[  278.005802][ T8119] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  278.085090][ T8119] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.111261][ T5994] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  278.139747][ T8119] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.294607][ T5994] usb 7-1: Using ep0 maxpacket: 32
[  278.329092][ T5994] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  278.356737][ T5994] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  278.417494][ T5994] usb 7-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  278.522788][ T5994] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.718649][ T5994] usb 7-1: config 0 descriptor??
[  278.877208][ T8145] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  279.178022][ T5994] ft260 0003:0403:6030.000B: unknown main item tag 0x0
[  279.211946][ T5994] ft260 0003:0403:6030.000B: unknown main item tag 0x0
[  279.730280][ T5994] ft260 0003:0403:6030.000B: chip code: 6424 8183
[  280.185979][ T5994] ft260 0003:0403:6030.000B: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.6-1/input0
[  280.263960][ T5994] ft260 0003:0403:6030.000B: failed to retrieve status: -32, no wakeup
[  280.297057][ T5994] ft260 0003:0403:6030.000B: failed to retrieve status: -32
[  280.569527][ T5994] usb 7-1: USB disconnect, device number 7
[  283.621676][ T8200] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  284.271822][ T8211] loop6: detected capacity change from 0 to 512
[  284.933322][ T8211] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.162603][ T8211] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.807777][ T8225] overlayfs: failed to clone upperpath
[  285.937977][ T8237] fuse: Bad value for 'fd'
[  285.987805][ T8211] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.597: corrupted xattr block 33: invalid header
[  286.101908][ T8211] fscrypt (loop6, inode 15): Error -117 getting encryption context
[  286.336350][ T6338] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.131542][ T8291] netlink: 20 bytes leftover after parsing attributes in process `syz.2.620'.
[  291.114579][ T8294] netlink: 4 bytes leftover after parsing attributes in process `syz.2.622'.
[  293.856651][ T8358] syz.8.629 uses obsolete (PF_INET,SOCK_PACKET)
[  294.273894][ T8364] loop7: detected capacity change from 0 to 128
[  295.808956][ T8382] loop8: detected capacity change from 0 to 32768
[  295.937810][ T8382] bcachefs (loop8): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  295.937850][ T8382]   allowing incompatible features above 0.0: (unknown version)
[  295.937867][ T8382]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  295.983212][ T8382] bcachefs (loop8): Using encoding defined by superblock: utf8-12.1.0
[  295.991414][ T8382] bcachefs (loop8): initializing new filesystem
[  296.004927][ T8382] bcachefs (loop8): going read-write
[  296.281114][ T8398] netlink: 'syz.5.637': attribute type 29 has an invalid length.
[  296.282024][ T8382] bcachefs (loop8): marking superblocks
[  296.305250][ T8382] bcachefs (loop8): initializing freespace
[  296.314665][ T8382] bcachefs (loop8): done initializing freespace
[  296.324037][ T8382] bcachefs (loop8): reading snapshots table
[  296.329985][ T8382] bcachefs (loop8): reading snapshots done
[  296.399681][ T8402] netlink: 20 bytes leftover after parsing attributes in process `syz.6.636'.
[  297.030982][ T8398] netlink: 'syz.5.637': attribute type 29 has an invalid length.
[  297.031000][ T8382] bcachefs (loop8): done starting filesystem
[  297.092849][ T8403] netlink: 500 bytes leftover after parsing attributes in process `syz.5.637'.
[  298.660276][ T6741] bcachefs (loop8): shutting down
[  298.717136][ T6741] bcachefs (loop8): going read-only
[  298.734512][ T6741] bcachefs (loop8): finished waiting for writes to stop
[  298.923674][ T6741] bcachefs (loop8): flushing journal and stopping allocators, journal seq 4
[  298.941274][   T30] audit: type=1326 audit(1758508766.311:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.5.644" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f050738ec29 code=0x0
[  299.170502][ T6741] bcachefs (loop8): flushing journal and stopping allocators complete, journal seq 4
[  299.242457][ T6741] bcachefs (loop8): clean shutdown complete, journal seq 5
[  299.273334][ T6741] bcachefs (loop8): marking filesystem clean
[  299.575675][ T8451] netlink: 20 bytes leftover after parsing attributes in process `syz.0.648'.
[  300.331258][ T6741] bcachefs (loop8): shutdown complete
[  301.491228][ T8464] loop7: detected capacity change from 0 to 32768
[  301.529079][ T8464] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.653 (8464)
[  301.572505][ T8464] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  301.582866][ T8464] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  301.988492][    C0] vcan0: j1939_tp_rxtimer: 0xffff888059c6cc00: rx timeout, send abort
[  301.996950][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888059c6cc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  302.020020][    C0] vcan0: j1939_tp_rxtimer: 0xffff888059c6ec00: rx timeout, send abort
[  302.028787][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888059c6ec00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  302.142906][ T8464] BTRFS info (device loop7): rebuilding free space tree
[  302.271460][ T8464] BTRFS info (device loop7): enabling ssd optimizations
[  302.278810][ T8464] BTRFS info (device loop7): turning on sync discard
[  302.285698][ T8464] BTRFS info (device loop7): enabling free space tree
[  302.292500][ T8464] BTRFS info (device loop7): force clearing of disk cache
[  302.299626][ T8464] BTRFS info (device loop7): enabling auto defrag
[  302.307333][ T8464] BTRFS info (device loop7): max_inline set to 0
[  304.337688][ T6688] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  306.044921][ T8512] netlink: 20 bytes leftover after parsing attributes in process `syz.5.664'.
[  307.019530][ T8517] overlayfs: failed to clone upperpath
[  307.074777][ T8520] warning: `syz.0.668' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  307.832027][ T8536] netlink: 'syz.0.672': attribute type 4 has an invalid length.
[  308.028699][ T8536] netlink: 'syz.0.672': attribute type 4 has an invalid length.
[  308.475952][ T8540] fuse: Bad value for 'fd'
[  309.351554][ T8560] netlink: 20 bytes leftover after parsing attributes in process `syz.7.679'.
[  309.856094][ T8563] netlink: 4 bytes leftover after parsing attributes in process `syz.5.681'.
[  309.950489][ T8566] netlink: 4 bytes leftover after parsing attributes in process `syz.5.681'.
[  310.784239][ T5873] Bluetooth: hci3: Unknown advertising packet type: 0x72
[  310.784316][ T5873] Bluetooth: hci3: Malformed LE Event: 0x0d
[  310.861176][ T8582] loop6: detected capacity change from 0 to 256
[  310.890382][ T8582] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  310.953115][   T30] audit: type=1800 audit(1758508778.321:10): pid=8582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.687" name="file1" dev="loop6" ino=1048636 res=0 errno=0
[  310.989879][ T8582] FAT-fs (loop6): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  311.020329][ T8582] FAT-fs (loop6): Filesystem has been set read-only
[  311.395543][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807a471400: rx timeout, send abort
[  311.406309][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807a471400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  311.584124][ T8590] loop0: detected capacity change from 0 to 32768
[  311.592774][ T8590] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.690 (8590)
[  311.637556][ T8590] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  311.648354][ T8590] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  311.960136][ T8590] BTRFS info (device loop0): enabling ssd optimizations
[  311.967254][ T8590] BTRFS info (device loop0): enabling free space tree
[  312.712863][ T5869] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  312.816751][ T8630] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  314.189820][ T8659] netlink: 12 bytes leftover after parsing attributes in process `syz.0.698'.
[  315.175628][ T8666] loop0: detected capacity change from 0 to 128
[  315.316780][ T8666] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  315.423819][ T8666] ext4 filesystem being mounted at /135/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  315.925845][ T5873] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  315.926113][ T5873] Bluetooth: hci2: Malformed LE Event: 0x0d
[  316.568202][ T8666] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  316.790098][ T5869] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  316.962672][ T8678] loop7: detected capacity change from 0 to 256
[  317.107076][ T8678] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  317.222072][ T8678] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  318.139644][ T8695] vlan2: entered promiscuous mode
[  318.191648][ T8695] bridge0: entered promiscuous mode
[  318.229673][ T8695] vlan2: entered allmulticast mode
[  318.260889][ T8695] bridge0: entered allmulticast mode
[  319.625085][ T8710] loop0: detected capacity change from 0 to 512
[  319.730040][ T8710] EXT4-fs (loop0): Test dummy encryption mode enabled
[  319.778399][ T8710] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  320.646627][ T8721] Can't find ip_set type hash:ip,
[  320.917313][ T8710] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.717: bad orphan inode 131083
[  320.984266][ T8710] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.338070][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.545994][ T8739] netlink: 4 bytes leftover after parsing attributes in process `syz.6.727'.
[  322.039189][ T8746] befs: (nullb0): No write support. Marking filesystem read-only
[  322.049076][ T8746] befs: (nullb0): invalid magic header
[  323.116644][ T8748] overlayfs: failed to clone upperpath
[  324.009833][ T8756] overlayfs: failed to clone upperpath
[  324.357829][ T8768] netlink: 'syz.6.735': attribute type 1 has an invalid length.
[  324.934412][ T8769] Can't find ip_set type hash:ip,
[  325.272139][ T8768] netlink: 32 bytes leftover after parsing attributes in process `syz.6.735'.
[  327.062712][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  327.069060][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  327.247211][ T8792] netlink: 14 bytes leftover after parsing attributes in process `syz.5.741'.
[  327.489866][ T8796] netlink: 40 bytes leftover after parsing attributes in process `syz.2.744'.
[  327.538637][ T8798] loop7: detected capacity change from 0 to 512
[  327.592558][  T914] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  327.749862][ T8798] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.788451][ T8798] ext4 filesystem being mounted at /55/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.861391][  T914] usb 7-1: Using ep0 maxpacket: 32
[  327.874048][  T914] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  327.894700][  T914] usb 7-1: config 1 interface 0 altsetting 77 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  327.921143][  T914] usb 7-1: config 1 interface 0 has no altsetting 0
[  327.942151][  T914] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  327.977072][  T914] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  328.043632][  T914] usb 7-1: SerialNumber: syz
[  328.107638][ T8806] nvme_fabrics: unknown parameter or missing value 'V' in ctrl creation request
[  328.538962][  T914] cdc_ether 7-1:1.0: invalid descriptor buffer length
[  328.571406][  T914] usb 7-1: bad CDC descriptors
[  328.698741][ T8807] loop7: detected capacity change from 512 to 0
[  328.711385][    C1] I/O error, dev loop7, sector 184 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  328.721123][    C1] Buffer I/O error on dev loop7, logical block 46, lost sync page write
[  328.755923][ T8798] EXT4-fs error (device loop7): ext4_ext_grow_indepth:1367: inode #18: block 46: comm syz.7.743: IO error syncing itable block
[  328.824836][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  328.834477][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  328.844567][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  328.857836][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  328.963487][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  328.984076][  T914] usb 7-1: USB disconnect, device number 8
[  329.069541][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.079287][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.088925][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.108095][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.138331][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.186235][ T8792] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  329.200410][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.210251][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.219841][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.229522][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.240769][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.316157][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.325851][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.335336][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.349418][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.361075][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.374901][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  329.384561][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.396468][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.409735][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.428877][ T8792] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  329.429420][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.455542][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.467895][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.490891][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.499884][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.511621][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.529942][ T8792] bond0 (unregistering): Released all slaves
[  329.561911][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.574124][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.647249][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.673658][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  329.689005][ T8798] EXT4-fs (loop7): I/O error while writing superblock
[  329.797518][ T8798] EXT4-fs error (device loop7): ext4_check_bdev_write_error:227: comm syz.7.743: Error while async write back metadata
[  329.817158][    C1] EXT4-fs warning (device loop7): ext4_end_bio:368: I/O error 10 writing to inode 18 starting block 44)
[  329.829249][ T2990] Buffer I/O error on device loop7, logical block 44
[  329.836348][ T2990] Buffer I/O error on device loop7, logical block 45
[  329.964197][    C0] EXT4-fs warning (device loop7): ext4_end_bio:368: I/O error 10 writing to inode 18 starting block 48)
[  330.058947][    C0] EXT4-fs warning (device loop7): ext4_end_bio:368: I/O error 10 writing to inode 18 starting block 54)
[  330.090476][    C1] EXT4-fs warning (device loop7): ext4_end_bio:368: I/O error 10 writing to inode 18 starting block 58)
[  330.113117][ T2990] Buffer I/O error on device loop7, logical block 48
[  330.119840][ T2990] Buffer I/O error on device loop7, logical block 49
[  330.182509][ T2990] Buffer I/O error on device loop7, logical block 54
[  330.189242][ T2990] Buffer I/O error on device loop7, logical block 55
[  330.210509][ T2990] Buffer I/O error on device loop7, logical block 58
[  330.217285][ T2990] Buffer I/O error on device loop7, logical block 59
[  331.383838][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  331.529426][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  331.628099][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  331.763379][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  331.843813][ T8834] futex_wake_op: syz.5.755 tries to shift op by -1; fix this program
[  331.884805][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  331.931837][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  332.949442][ T8801] EXT4-fs: 143 callbacks suppressed
[  332.949468][ T8801] EXT4-fs (loop7): I/O error while writing superblock
[  332.962093][ T6688] EXT4-fs (loop7): previous I/O error to superblock detected
[  332.981134][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  332.989030][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.011933][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.042406][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.210790][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.592722][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.612413][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.652446][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  333.713814][    C1] blk_print_req_error: 350 callbacks suppressed
[  333.713844][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  333.729810][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  333.739575][    C1] buffer_io_error: 169 callbacks suppressed
[  333.739599][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  333.789984][ T6688] EXT4-fs error: 168 callbacks suppressed
[  333.790096][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 5: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  333.846512][ T8847] netlink: 10 bytes leftover after parsing attributes in process `syz.6.759'.
[  333.891928][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  333.901638][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  333.911937][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  333.941049][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 6: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.027892][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  334.037523][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  334.047034][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.113770][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 7: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.163162][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  334.172835][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  334.182331][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.191106][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 8: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.280663][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  334.290376][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  334.299876][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.312421][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 9: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.442790][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.451182][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 10: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.521269][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.546326][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 11: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.645951][ T8856] loop6: detected capacity change from 0 to 1024
[  334.678669][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.687660][ T6688] EXT4-fs error (device loop7): ext4_empty_dir:3085: inode #11: block 4: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.698589][ T8856] EXT4-fs: Ignoring removed orlov option
[  334.742625][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.753243][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 4: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.875048][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  334.883569][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 5: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  334.985789][ T6688] EXT4-fs warning: 13 callbacks suppressed
[  334.985815][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  335.055531][ T8856] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  335.182529][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  335.212133][ T8856] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.687356][ T8874] Can't find ip_set type hash:ip,po
[  335.884040][ T5873] Bluetooth: hci2: link tx timeout
[  335.890301][ T5873] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  335.978758][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  336.004387][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  336.163675][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  336.366446][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  336.553792][ T8882] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: comm syz.6.762: lblock 0 mapped to illegal pblock 0 (length 4)
[  336.785091][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  337.594204][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  337.674195][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  337.692770][   T48] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  337.713713][ T8882] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 4 with error 117
[  337.739269][ T8882] EXT4-fs (loop6): This should not happen!! Data will be lost
[  337.739269][ T8882] 
[  337.749023][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  337.886365][   T48] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  337.929875][   T48] usb 1-1: config 0 has no interfaces?
[  337.953872][ T6688] EXT4-fs: 172 callbacks suppressed
[  337.953899][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  337.955416][   T48] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0093, bcdDevice=23.5a
[  337.985007][ T5180] Bluetooth: hci2: command 0x0406 tx timeout
[  338.087710][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.095177][   T48] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.248832][   T48] usb 1-1: Product: syz
[  338.254979][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.263403][ T8344] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  338.284687][   T48] usb 1-1: Manufacturer: syz
[  338.290061][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.298122][   T48] usb 1-1: SerialNumber: syz
[  338.304241][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.318052][ T8344] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  338.335649][   T48] usb 1-1: config 0 descriptor??
[  338.340629][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.417125][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.424755][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.431632][ T8344] EXT4-fs (loop6): This should not happen!! Data will be lost
[  338.431632][ T8344] 
[  338.444622][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.453340][ T8344] EXT4-fs (loop6): Total free blocks count 0
[  338.459942][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  338.470714][ T8344] EXT4-fs (loop6): Free/Dirty block details
[  338.614610][ T8344] EXT4-fs (loop6): free_blocks=4293918720
[  338.620473][ T8344] EXT4-fs (loop6): dirty_blocks=16
[  338.686401][ T8344] EXT4-fs (loop6): Block reservation details
[  338.722533][    C0] blk_print_req_error: 463 callbacks suppressed
[  338.722562][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.738509][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.757929][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.767520][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.777014][    C0] buffer_io_error: 228 callbacks suppressed
[  338.777043][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  338.793341][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.802880][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.812378][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  338.825388][ T6688] EXT4-fs error: 228 callbacks suppressed
[  338.825416][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 9: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  338.882329][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.891893][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  338.901385][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  338.913621][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 10: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  339.014341][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  339.023919][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  339.033405][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  339.047605][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 11: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  339.143168][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  339.151884][ T6688] EXT4-fs error (device loop7): ext4_empty_dir:3085: inode #11: block 4: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  339.238272][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  339.259794][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 4: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  339.469427][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  339.479578][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 5: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  339.660688][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  339.669245][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 6: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  340.208034][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  340.216758][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 7: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  340.332464][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  340.340870][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 8: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  340.442818][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 9: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  340.555843][ T6688] EXT4-fs warning: 16 callbacks suppressed
[  340.555869][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  340.661196][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  340.739659][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  340.817227][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  340.994893][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  341.164983][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  341.205718][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  341.276455][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  342.337157][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  342.544433][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  343.086584][ T6688] EXT4-fs: 252 callbacks suppressed
[  343.086608][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  343.596888][ T8926] Can't find ip_set type hash:ip,po
[  343.938048][ T6688] EXT4-fs error: 166 callbacks suppressed
[  343.938083][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 5: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  344.228356][    C1] blk_print_req_error: 349 callbacks suppressed
[  344.228396][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  344.244357][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  344.253849][    C1] buffer_io_error: 169 callbacks suppressed
[  344.253870][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  344.317972][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  344.393352][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 6: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  344.492322][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  344.501864][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  344.511348][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  344.562421][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  344.585188][ T8935] syz_tun: entered allmulticast mode
[  344.598351][ T8934] syz_tun: left allmulticast mode
[  344.612412][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 7: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  344.752869][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  344.762468][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  344.771963][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  344.784877][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  344.815823][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 8: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  344.852492][ T5957] usb 1-1: USB disconnect, device number 6
[  345.020524][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  345.030180][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  345.039841][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  345.048838][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  345.079308][ T5873] Bluetooth: hci3: unexpected event for opcode 0x0c24
[  345.087543][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 9: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  345.194033][ T8946] loop0: detected capacity change from 0 to 64
[  345.270549][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  345.280208][    C1] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  345.289875][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  345.298701][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  345.314728][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 10: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  345.662921][    C1] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  345.671549][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  345.709186][   T30] audit: type=1800 audit(1758508813.071:11): pid=8952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.790" name="file1" dev="loop0" ino=21 res=0 errno=0
[  346.042623][ T6688] EXT4-fs error (device loop7): ext4_readdir:262: inode #11: block 11: comm syz-executor: path /55/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  346.552552][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  346.560960][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  346.702934][ T6688] EXT4-fs error (device loop7): ext4_empty_dir:3085: inode #11: block 4: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  346.761121][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  346.773954][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  346.780838][ T6688] EXT4-fs warning: 9 callbacks suppressed
[  346.780863][ T6688] EXT4-fs warning (device loop7): ext4_empty_dir:3089: inode #11: comm syz-executor: directory missing '.'
[  348.146006][ T8963] Can't find ip_set type hash:ip,po
[  348.395081][    C1] Buffer I/O error on dev loop7, logical block 12, lost sync page write
[  348.676491][ T8970] loop6: detected capacity change from 0 to 1024
[  349.124422][ T5873] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  349.134593][ T5873] Bluetooth: hci3: Injecting HCI hardware error event
[  349.146296][ T5180] Bluetooth: hci3: hardware error 0x00
[  349.934098][ T8970] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  350.036641][ T5872] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  350.050557][ T5872] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  350.061721][ T5872] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  350.073779][ T5872] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  350.081551][ T5872] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  350.266791][ T8987] overlayfs: failed to clone upperpath
[  351.454494][ T6338] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.761357][ T6688] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.863286][ T8998] loop0: detected capacity change from 0 to 2048
[  351.952153][    C0] blk_print_req_error: 7 callbacks suppressed
[  351.952181][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  351.967990][    C0] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  351.977484][    C0] Buffer I/O error on dev loop7, logical block 0, lost sync page write
[  352.023932][ T6688] EXT4-fs (loop7): I/O error while writing superblock
[  352.127933][    C1] I/O error, dev loop7, sector 48 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  352.137706][    C1] Buffer I/O error on dev loop7, logical block 12, lost sync page write
[  352.157867][ T5872] Bluetooth: hci6: command tx timeout
[  352.166566][ T5180] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  352.189814][ T8998] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  352.341388][ T9015] netlink: 12 bytes leftover after parsing attributes in process `syz.8.807'.
[  352.390855][ T9017] netlink: 'syz.0.804': attribute type 4 has an invalid length.
[  352.441376][   T30] audit: type=1800 audit(1758508819.811:12): pid=9013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.808" name="file1" dev="tmpfs" ino=920 res=0 errno=0
[  352.475705][ T1141] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.327032][ T9026] Can't find ip_set type hash:ip,por
[  354.165300][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.233668][ T5180] Bluetooth: hci6: command tx timeout
[  354.447665][ T9037] netlink: 4 bytes leftover after parsing attributes in process `syz.5.812'.
[  354.565265][ T9045] netlink: 4 bytes leftover after parsing attributes in process `syz.5.812'.
[  354.594985][ T1141] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.365915][ T9048] tipc: Started in network mode
[  355.372639][   T48] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  355.429781][ T9048] tipc: Node identity 2, cluster identity 4711
[  355.479507][ T9048] tipc: Node number set to 2
[  355.646604][   T48] usb 1-1: Using ep0 maxpacket: 8
[  355.705798][   T48] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  355.717701][   T48] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  355.755389][ T1141] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.786480][   T48] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  355.835306][   T48] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  355.886586][   T48] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  355.973022][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.998731][ T1141] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.032246][   T48] hub 1-1:1.0: bad descriptor, ignoring hub
[  356.038502][   T48] hub 1-1:1.0: probe with driver hub failed with error -5
[  356.053230][   T48] cdc_wdm 1-1:1.0: skipping garbage
[  356.110506][   T48] cdc_wdm 1-1:1.0: skipping garbage
[  356.150789][   T48] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  356.245198][ T9046] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  356.262618][   T48] cdc_wdm 1-1:1.0: Unknown control protocol
[  356.272921][ T9046] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  356.302782][ T5180] Bluetooth: hci6: command tx timeout
[  356.623598][ T5925] usb 1-1: USB disconnect, device number 7
[  357.977646][ T8980] chnl_net:caif_netlink_parms(): no params data found
[  358.442504][ T5180] Bluetooth: hci6: command tx timeout
	

	

	
	
		
		


	

	

	
	
		
		


[  361.996002][ T9087] loop6: detected capacity change from 0 to 128

syzkaller
syzkaller login: [  363.187090][ T9087] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  363.227105][ T5975] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  363.258343][ T9087] ext4 filesystem being mounted at /85/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  363.420845][ T5975] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  363.449799][ T5975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.491544][ T5975] usb 1-1: Product: syz
[  363.495753][ T5975] usb 1-1: Manufacturer: syz
[  363.550143][ T5975] usb 1-1: SerialNumber: syz
[  363.563190][ T6338] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  364.722581][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  364.738423][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  364.755969][ T1141] bond0 (unregistering): Released all slaves
[  365.236771][ T8980] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.337436][ T8980] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.373640][ T8980] bridge_slave_0: entered allmulticast mode
[  365.389726][ T8980] bridge_slave_0: entered promiscuous mode
[  365.792502][ T8980] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.810085][ T8980] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.822953][ T8980] bridge_slave_1: entered allmulticast mode
[  365.838851][ T8980] bridge_slave_1: entered promiscuous mode
[  365.882895][ T5975] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000080. ret = -EPROTO
[  365.930048][ T5975] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  365.966611][ T5975] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  366.034064][ T5975] lan78xx 1-1:1.0: probe with driver lan78xx failed with error -71
[  366.085615][ T5975] usb 1-1: USB disconnect, device number 8
[  366.493325][ T8980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.613436][ T8980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.867107][ T1141] hsr_slave_0: left promiscuous mode
[  366.936133][ T1141] hsr_slave_1: left promiscuous mode
[  366.998119][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  367.076694][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  367.210682][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  367.308139][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  370.003207][ T9146] loop8: detected capacity change from 0 to 2048
[  370.026606][ T1141] veth1_macvtap: left promiscuous mode
[  370.066878][ T9146] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  370.097376][ T1141] veth0_macvtap: left promiscuous mode
[  370.103297][ T1141] veth1_vlan: left promiscuous mode
[  370.108927][ T1141] veth0_vlan: left promiscuous mode
[  370.197914][ T9153] netlink: 'syz.8.842': attribute type 4 has an invalid length.
[  370.439662][ T9159] binder: 9158:9159 ioctl c0306201 200000000680 returned -14
[  370.571804][ T9161] netlink: 892 bytes leftover after parsing attributes in process `syz.0.846'.
[  370.710891][ T9167] netlink: 892 bytes leftover after parsing attributes in process `syz.0.846'.
[  370.808935][ T9169] overlayfs: statfs failed on './file0'
[  371.924980][ T1141] team0 (unregistering): Port device team_slave_1 removed
[  371.975518][ T1141] team0 (unregistering): Port device team_slave_0 removed
[  372.695165][ T8980] team0: Port device team_slave_0 added
[  372.714028][ T6741] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.731928][ T8980] team0: Port device team_slave_1 added
[  372.939863][ T8980] batman_adv: batadv0: Adding interface: batadv_slave_0
[  372.966596][ T8980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  372.996078][ T8980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  373.010402][ T8980] batman_adv: batadv0: Adding interface: batadv_slave_1
[  373.074403][ T8980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  373.173307][ T8980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  373.216999][ T9198] ptrace attach of "./syz-executor exec"[5881] was attempted by "./syz-executor exec"[9198]
[  373.327390][ T5927] usb 1-1: new low-speed USB device number 9 using dummy_hcd
[  373.545066][ T5927] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  373.565874][ T5927] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.843386][ T8980] hsr_slave_0: entered promiscuous mode
[  373.855834][ T8980] hsr_slave_1: entered promiscuous mode
[  373.862873][ T8980] debugfs: 'hsr0' already exists in 'hsr'
[  373.870537][ T8980] Cannot create hsr debugfs directory
[  373.904372][ T5927] usb 1-1: config 0 descriptor??
[  374.959189][ T5927] asix 1-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  376.984666][ T5927] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0012: -71
[  377.020907][ T5927] asix 1-1:0.0: probe with driver asix failed with error -71
[  377.049020][ T8980] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  377.109260][ T5927] usb 1-1: USB disconnect, device number 9
[  377.169308][ T8980] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  377.261333][ T8980] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  377.364678][ T5975] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  377.473837][ T8980] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  377.532573][ T5975] usb 7-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  377.573807][ T5975] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.614554][ T5975] usb 7-1: Product: syz
[  377.624781][ T5975] usb 7-1: Manufacturer: syz
[  377.652968][ T5975] usb 7-1: SerialNumber: syz
[  379.281029][ T8980] 8021q: adding VLAN 0 to HW filter on device bond0
[  379.392132][ T8980] 8021q: adding VLAN 0 to HW filter on device team0
[  379.422475][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.429724][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.531890][ T8344] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.539140][ T8344] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.312522][ T8980] 8021q: adding VLAN 0 to HW filter on device batadv0
[  380.378264][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000080. ret = -EPROTO
[  380.421435][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  380.452685][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  380.473518][ T5975] lan78xx 7-1:1.0: probe with driver lan78xx failed with error -71
[  380.517094][ T5975] usb 7-1: USB disconnect, device number 9
[  380.918292][ T8980] veth0_vlan: entered promiscuous mode
[  380.965063][ T8980] veth1_vlan: entered promiscuous mode
[  381.136951][ T8980] veth0_macvtap: entered promiscuous mode
[  381.475041][ T8980] veth1_macvtap: entered promiscuous mode
[  382.443341][ T8980] batman_adv: batadv0: Interface activated: batadv_slave_0
[  382.506925][ T8980] batman_adv: batadv0: Interface activated: batadv_slave_1
[  382.541409][   T36] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  382.552532][ T1158] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  382.701287][ T1158] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  382.782618][ T1158] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  383.908871][ T2990] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  384.615639][ T2990] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  384.879786][ T9328] netlink: 4 bytes leftover after parsing attributes in process `syz.5.882'.
[  385.037074][ T2990] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  385.055485][ T9328] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  385.085954][ T2990] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  385.120856][ T9328] batman_adv: batadv0: Removing interface: batadv_slave_0
[  387.103781][ T9341] binder: 9339:9341 ioctl c0306201 200000000680 returned -14
[  388.215294][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  388.221991][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  388.567689][ T9352] loop6: detected capacity change from 0 to 512
[  388.698623][ T9352] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.802296][ T9352] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  388.918891][ T5975] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  388.932835][ T9352] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.738905][ T5975] usb 10-1: Using ep0 maxpacket: 32
[  390.884305][ T9362] loop8: detected capacity change from 0 to 262144
[  390.923697][ T5975] usb 10-1: config 0 has an invalid interface number: 89 but max is 0
[  390.949319][ T9362] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.891 (9362)
[  390.989213][ T5975] usb 10-1: config 0 has no interface number 0
[  391.021687][ T5975] usb 10-1: config 0 interface 89 has no altsetting 0
[  391.065272][ T5975] usb 10-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  391.085330][ T9362] BTRFS info (device loop8): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  391.095810][ T9362] BTRFS info (device loop8): using xxhash64 (xxhash64-generic) checksum algorithm
[  391.107880][ T5975] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  391.147410][ T5975] usb 10-1: Product: syz
[  391.167907][ T5975] usb 10-1: Manufacturer: syz
[  391.173254][ T5975] usb 10-1: SerialNumber: syz
[  391.740152][ T5975] usb 10-1: config 0 descriptor??
[  391.820132][ T5975] usb 10-1: can't set config #0, error -71
[  391.873890][ T9362] BTRFS info (device loop8): enabling ssd optimizations
[  391.881317][ T9362] BTRFS info (device loop8): enabling free space tree
[  391.888212][ T5975] usb 10-1: USB disconnect, device number 2
[  393.615300][ T6741] BTRFS info (device loop8): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  394.735616][ T9407] loop9: detected capacity change from 0 to 32768
[  394.964367][ T9411] netlink: 8 bytes leftover after parsing attributes in process `syz.6.901'.
[  395.335702][ T9407] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  401.543640][ T8980] ocfs2: Unmounting device (7,9) on (node local)
[  402.769625][ T9453] loop8: detected capacity change from 0 to 40427
[  402.912671][ T9453] F2FS-fs (loop8): invalid crc value
[  403.109751][ T9453] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  403.127158][ T9453] F2FS-fs (loop8): Start checkpoint disabled!
[  403.186700][ T9453] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  403.598353][   T30] audit: type=1800 audit(1758509126.995:13): pid=9453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.927" name="file1" dev="loop8" ino=10 res=0 errno=0
[  403.816776][ T9453] bio_check_eod: 1509 callbacks suppressed
[  403.816803][ T9453] syz.8.927: attempt to access beyond end of device
[  403.816803][ T9453] loop8: rw=2049, sector=77824, nr_sectors = 8 limit=40427
[  403.821807][ T5180] Bluetooth: hci5: Malformed MSFT vendor event: 0x02
[  403.849510][ T9453] syz.8.927: attempt to access beyond end of device
[  403.849510][ T9453] loop8: rw=2049, sector=77832, nr_sectors = 2048 limit=40427
[  403.909669][ T9453] syz.8.927: attempt to access beyond end of device
[  403.909669][ T9453] loop8: rw=2049, sector=79880, nr_sectors = 2040 limit=40427
[  403.931213][ T9453] syz.8.927: attempt to access beyond end of device
[  403.931213][ T9453] loop8: rw=2049, sector=49152, nr_sectors = 8 limit=40427
[  403.935354][ T9462] netlink: 4 bytes leftover after parsing attributes in process `syz.9.906'.
[  403.992320][ T9453] syz.8.927: attempt to access beyond end of device
[  403.992320][ T9453] loop8: rw=2049, sector=49160, nr_sectors = 2048 limit=40427
[  404.022417][ T9453] syz.8.927: attempt to access beyond end of device
[  404.022417][ T9453] loop8: rw=2049, sector=51208, nr_sectors = 2040 limit=40427
[  404.038499][ T9453] syz.8.927: attempt to access beyond end of device
[  404.038499][ T9453] loop8: rw=2049, sector=57344, nr_sectors = 8 limit=40427
[  404.082991][ T9453] syz.8.927: attempt to access beyond end of device
[  404.082991][ T9453] loop8: rw=2049, sector=57352, nr_sectors = 4064 limit=40427
[  404.091408][ T9462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  404.136773][ T9465] binder: 9464:9465 ioctl c0306201 200000000680 returned -14
[  404.177346][ T9462] batman_adv: batadv0: Removing interface: batadv_slave_0
[  404.260706][ T7220] kworker/u8:11: attempt to access beyond end of device
[  404.260706][ T7220] loop8: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  404.332967][ T9462] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  404.340394][ T9462] batman_adv: batadv0: Removing interface: batadv_slave_1
[  404.350257][ T7220] CPU: 0 UID: 0 PID: 7220 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[  404.350304][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  404.350328][ T7220] Workqueue: writeback wb_workfn (flush-7:8)
[  404.350390][ T7220] Call Trace:
[  404.350401][ T7220]  <TASK>
[  404.350415][ T7220]  dump_stack_lvl+0x16c/0x1f0
[  404.350476][ T7220]  f2fs_handle_critical_error+0x624/0x9f0
[  404.350535][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.350579][ T7220]  ? f2fs_build_fault_attr+0x53/0x1f0
[  404.350632][ T7220]  f2fs_write_end_io+0x958/0xcf0
[  404.350688][ T7220]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  404.350747][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.350802][ T7220]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  404.350851][ T7220]  bio_endio+0x713/0x860
[  404.350915][ T7220]  submit_bio_noacct+0x306/0x1ed0
[  404.350977][ T7220]  __submit_merged_bio+0x33c/0x770
[  404.351034][ T7220]  __submit_merged_write_cond+0x319/0x3f0
[  404.351104][ T7220]  f2fs_write_cache_pages+0x2067/0x2570
[  404.351195][ T7220]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  404.351258][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.351310][ T7220]  ? __pfx_f2fs_sync_meta_pages+0x10/0x10
[  404.351369][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.351430][ T7220]  ? do_raw_spin_unlock+0x172/0x230
[  404.351590][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.351643][ T7220]  f2fs_write_data_pages+0x4ad/0xd90
[  404.351713][ T7220]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  404.351785][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.351828][ T7220]  ? __lock_acquire+0xb97/0x1ce0
[  404.351890][ T7220]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  404.351951][ T7220]  do_writepages+0x27a/0x600
[  404.352008][ T7220]  ? __pfx_do_writepages+0x10/0x10
[  404.352053][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.352097][ T7220]  ? reacquire_held_locks+0xcd/0x1f0
[  404.352154][ T7220]  ? writeback_sb_inodes+0x3b0/0xfa0
[  404.352212][ T7220]  __writeback_single_inode+0x160/0xfb0
[  404.352268][ T7220]  ? __pfx___writeback_single_inode+0x10/0x10
[  404.352317][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.352360][ T7220]  ? do_raw_spin_unlock+0x172/0x230
[  404.352401][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.352453][ T7220]  writeback_sb_inodes+0x60d/0xfa0
[  404.352539][ T7220]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  404.352590][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.352708][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.352752][ T7220]  ? rcu_is_watching+0x12/0xc0
[  404.352797][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.352841][ T7220]  ? queue_io+0x3f6/0x520
[  404.352890][ T7220]  wb_writeback+0x419/0xb70
[  404.352952][ T7220]  ? __pfx_wb_writeback+0x10/0x10
[  404.352996][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353053][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353095][ T7220]  ? mark_held_locks+0x49/0x80
[  404.353161][ T7220]  wb_workfn+0x14d/0xbe0
[  404.353219][ T7220]  ? try_to_wake_up+0x160/0x1870
[  404.353266][ T7220]  ? __pfx_wb_workfn+0x10/0x10
[  404.353322][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353372][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353423][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353466][ T7220]  ? rcu_is_watching+0x12/0xc0
[  404.353531][ T7220]  process_one_work+0x9cf/0x1b70
[  404.353592][ T7220]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  404.353654][ T7220]  ? __pfx_process_one_work+0x10/0x10
[  404.353695][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353754][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353796][ T7220]  ? assign_work+0x1a0/0x250
[  404.353840][ T7220]  worker_thread+0x6c8/0xf10
[  404.353893][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353939][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.353983][ T7220]  ? __kthread_parkme+0x19e/0x250
[  404.354035][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.354082][ T7220]  ? __pfx_worker_thread+0x10/0x10
[  404.354124][ T7220]  kthread+0x3c5/0x780
[  404.354162][ T7220]  ? __pfx_kthread+0x10/0x10
[  404.354201][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.354242][ T7220]  ? rcu_is_watching+0x12/0xc0
[  404.354288][ T7220]  ? __pfx_kthread+0x10/0x10
[  404.354327][ T7220]  ret_from_fork+0x56d/0x730
[  404.354361][ T7220]  ? __pfx_kthread+0x10/0x10
[  404.354399][ T7220]  ret_from_fork_asm+0x1a/0x30
[  404.354474][ T7220]  </TASK>
[  404.934130][ T7220] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  404.941715][ T7220] CPU: 0 UID: 0 PID: 7220 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) 
[  404.941764][ T7220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  404.941788][ T7220] Workqueue: writeback wb_workfn (flush-7:8)
[  404.941849][ T7220] Call Trace:
[  404.941860][ T7220]  <TASK>
[  404.941874][ T7220]  dump_stack_lvl+0x16c/0x1f0
[  404.941935][ T7220]  f2fs_handle_critical_error+0x624/0x9f0
[  404.941986][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.942029][ T7220]  ? f2fs_build_fault_attr+0x53/0x1f0
[  404.942082][ T7220]  f2fs_write_end_io+0x958/0xcf0
[  404.942139][ T7220]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  404.942197][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.942252][ T7220]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  404.942302][ T7220]  bio_endio+0x713/0x860
[  404.942366][ T7220]  submit_bio_noacct+0x306/0x1ed0
[  404.942427][ T7220]  __submit_merged_bio+0x33c/0x770
[  404.942486][ T7220]  __submit_merged_write_cond+0x319/0x3f0
[  404.942556][ T7220]  f2fs_write_cache_pages+0x2067/0x2570
[  404.942648][ T7220]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  404.942712][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.942764][ T7220]  ? __pfx_f2fs_sync_meta_pages+0x10/0x10
[  404.942825][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.942868][ T7220]  ? do_raw_spin_unlock+0x172/0x230
[  404.943032][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.943084][ T7220]  f2fs_write_data_pages+0x4ad/0xd90
[  404.943153][ T7220]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  404.943225][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.943268][ T7220]  ? __lock_acquire+0xb97/0x1ce0
[  404.943331][ T7220]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  404.943394][ T7220]  do_writepages+0x27a/0x600
[  404.943449][ T7220]  ? __pfx_do_writepages+0x10/0x10
[  404.943494][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.943542][ T7220]  ? reacquire_held_locks+0xcd/0x1f0
[  404.943598][ T7220]  ? writeback_sb_inodes+0x3b0/0xfa0
[  404.943655][ T7220]  __writeback_single_inode+0x160/0xfb0
[  404.943714][ T7220]  ? __pfx___writeback_single_inode+0x10/0x10
[  404.943762][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.943805][ T7220]  ? do_raw_spin_unlock+0x172/0x230
[  404.943846][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.943904][ T7220]  writeback_sb_inodes+0x60d/0xfa0
[  404.943980][ T7220]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  404.944034][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944155][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944198][ T7220]  ? rcu_is_watching+0x12/0xc0
[  404.944243][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944285][ T7220]  ? queue_io+0x3f6/0x520
[  404.944334][ T7220]  wb_writeback+0x419/0xb70
[  404.944395][ T7220]  ? __pfx_wb_writeback+0x10/0x10
[  404.944441][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944499][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944548][ T7220]  ? mark_held_locks+0x49/0x80
[  404.944614][ T7220]  wb_workfn+0x14d/0xbe0
[  404.944670][ T7220]  ? try_to_wake_up+0x160/0x1870
[  404.944717][ T7220]  ? __pfx_wb_workfn+0x10/0x10
[  404.944772][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944820][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944870][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.944912][ T7220]  ? rcu_is_watching+0x12/0xc0
[  404.944967][ T7220]  process_one_work+0x9cf/0x1b70
[  404.945026][ T7220]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  404.945089][ T7220]  ? __pfx_process_one_work+0x10/0x10
[  404.945129][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.945186][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.945229][ T7220]  ? assign_work+0x1a0/0x250
[  404.945272][ T7220]  worker_thread+0x6c8/0xf10
[  404.945325][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.945370][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.945413][ T7220]  ? __kthread_parkme+0x19e/0x250
[  404.945466][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.945520][ T7220]  ? __pfx_worker_thread+0x10/0x10
[  404.945560][ T7220]  kthread+0x3c5/0x780
[  404.945599][ T7220]  ? __pfx_kthread+0x10/0x10
[  404.945638][ T7220]  ? srso_alias_return_thunk+0x5/0xfbef5
[  404.945681][ T7220]  ? rcu_is_watching+0x12/0xc0
[  404.945727][ T7220]  ? __pfx_kthread+0x10/0x10
[  404.945766][ T7220]  ret_from_fork+0x56d/0x730
[  404.945799][ T7220]  ? __pfx_kthread+0x10/0x10
[  404.945838][ T7220]  ret_from_fork_asm+0x1a/0x30
[  404.945911][ T7220]  </TASK>
[  404.946034][ T7220] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  408.438032][ T9513] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  409.249049][ T5960] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  410.372171][ T5960] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  410.388970][ T5960] usb 1-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[  410.658549][ T5960] usb 1-1: string descriptor 0 read error: -71
[  410.667434][ T5960] usb 1-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  410.818004][ T5960] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  410.852765][ T5960] usb 1-1: can't set config #4, error -71
[  410.875654][ T5960] usb 1-1: USB disconnect, device number 10
[  410.929080][ T9534] tun0: tun_chr_ioctl cmd 1074025675
[  410.968040][ T9534] tun0: persist enabled
[  410.994151][ T9534] tun0: tun_chr_ioctl cmd 1074025675
[  411.044574][ T9534] tun0: persist disabled
[  415.308581][ T9589] loop9: detected capacity change from 0 to 512
[  415.586800][ T9589] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  416.285922][ T9589] EXT4-fs error (device loop9): ext4_orphan_get:1392: inode #15: comm syz.9.947: casefold flag without casefold feature
[  416.430252][ T9589] EXT4-fs error (device loop9): ext4_orphan_get:1395: comm syz.9.947: couldn't read orphan inode 15 (err -117)
[  416.654599][ T9589] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  419.189114][ T8980] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.590323][ T9715] overlayfs: failed to clone upperpath
[  428.268625][ T9730] netlink: 12 bytes leftover after parsing attributes in process `syz.6.986'.
[  428.461546][ T9735] overlayfs: failed to clone upperpath
[  428.801993][ T9742] netlink: 8 bytes leftover after parsing attributes in process `syz.9.988'.
[  429.334580][ T9747] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  433.106944][ T9789] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  433.229537][ T9789] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  437.905085][ T9831] ptrace attach of "./syz-executor exec"[5881] was attempted by "./syz-executor exec"[9831]
[  439.537172][ T5925] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  440.208948][ T5925] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  440.221960][ T5925] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  440.243940][ T5925] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  440.263665][ T9855] vlan2: entered promiscuous mode
[  440.278800][ T9855] bridge0: entered promiscuous mode
[  440.286597][ T5925] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.298466][ T9855] vlan2: entered allmulticast mode
[  440.330817][ T9839] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  440.364290][ T9855] bridge0: entered allmulticast mode
[  440.405084][ T5925] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  441.612776][ T5925] usb 7-1: USB disconnect, device number 10
[  442.790761][ T9869] loop8: detected capacity change from 0 to 512
[  443.155629][ T9887] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1017'.
[  443.172442][ T9869] EXT4-fs warning (device loop8): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  443.693180][ T9869] EXT4-fs (loop8): mount failed
[  445.296365][ T9869] binder_alloc: 9868: binder_alloc_buf, no vma
[  447.060669][ T5180] Bluetooth: hci6: link tx timeout
[  447.066418][ T5180] Bluetooth: hci6: killing stalled connection 11:aa:aa:aa:aa:aa
[  447.800674][ T9915] RDS: rds_bind could not find a transport for 0:0:4::1, load rds_tcp or rds_rdma?
[  448.428374][ T5872] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  448.428452][ T5872] Bluetooth: hci1: Malformed LE Event: 0x0d
[  448.620520][ T9921] binder: BINDER_SET_CONTEXT_MGR already set
[  448.745314][ T9921] binder: 9920:9921 ioctl 4018620d 200000004a80 returned -16
[  449.139463][ T5872] Bluetooth: hci6: command 0x0406 tx timeout
[  449.649374][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  449.655741][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  454.393152][ T9974] ptrace attach of "./syz-executor exec"[5869] was attempted by "./syz-executor exec"[9974]
[  454.488056][ T9976] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1045'.
[  457.843444][ T9994] loop8: detected capacity change from 0 to 16
[  458.114598][ T9994] erofs (device loop8): mounted with root inode @ nid 36.
[  464.598494][T10052] loop0: detected capacity change from 0 to 512
[  464.641435][T10052] EXT4-fs (loop0): Test dummy encryption mode enabled
[  464.693891][T10052] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  465.141001][T10052] EXT4-fs (loop0): 1 truncate cleaned up
[  465.206829][T10052] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  471.948692][T10091] loop6: detected capacity change from 0 to 1024
[  472.231016][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.243817][T10091] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.389872][ T6338] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.100497][T10112] loop9: detected capacity change from 0 to 512
[  475.185975][T10112] EXT4-fs (loop9): Test dummy encryption mode enabled
[  475.192804][T10112] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  476.142837][T10112] EXT4-fs (loop9): 1 truncate cleaned up
[  476.207566][T10112] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  477.438694][   T30] audit: type=1804 audit(1758509200.852:14): pid=10125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.1091" name="/newroot/130/bus/file0" dev="overlay" ino=717 res=1 errno=0
[  479.996249][T10144] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1099'.
[  480.509742][ T8980] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.515142][ T5872] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  481.532841][ T5872] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  481.566423][ T5872] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  481.618368][ T5872] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  481.628347][ T5872] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  483.416608][ T1158] bridge_slave_1: left allmulticast mode
[  483.441685][ T1158] bridge_slave_1: left promiscuous mode
[  483.447528][ T1158] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.485408][ T1158] bridge_slave_0: left allmulticast mode
[  483.495377][ T1158] bridge_slave_0: left promiscuous mode
[  483.501197][ T1158] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.681616][ T5872] Bluetooth: hci0: command tx timeout
[  485.842679][ T5872] Bluetooth: hci0: command tx timeout
[  486.834427][T10176] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(5)
[  486.841321][T10176] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  486.852359][T10176] vhci_hcd vhci_hcd.0: Device attached
[  486.919579][T10180] vhci_hcd: connection closed
[  487.474105][   T61] vhci_hcd: stop threads
[  487.612411][   T61] vhci_hcd: release socket
[  487.654678][   T61] vhci_hcd: disconnect device
[  487.858588][ T5960] usb 49-1: new low-speed USB device number 2 using vhci_hcd
[  487.870728][ T5960] usb 49-1: enqueue for inactive port 0
[  487.933198][ T5872] Bluetooth: hci0: command tx timeout
[  487.967302][ T5960] vhci_hcd: vhci_device speed not set
[  490.008526][ T5872] Bluetooth: hci0: command tx timeout
[  490.097674][ T5180] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  490.109348][ T5180] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  490.118077][ T5180] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  490.127816][ T5180] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  490.135655][ T5180] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  490.758171][ T1158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  490.781102][ T1158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  490.793050][ T1158] bond0 (unregistering): Released all slaves
[  492.192193][ T5180] Bluetooth: hci1: command tx timeout
[  494.246356][ T5180] Bluetooth: hci1: command tx timeout
[  494.314239][T10149] chnl_net:caif_netlink_parms(): no params data found
[  494.807523][T10242] loop6: detected capacity change from 0 to 128
[  496.506840][ T5180] Bluetooth: hci1: command tx timeout
[  496.966612][ T5180] Bluetooth: hci4: command 0x0406 tx timeout
[  497.116603][ T1158] hsr_slave_0: left promiscuous mode
[  497.197363][ T1158] hsr_slave_1: left promiscuous mode
[  497.237322][ T1158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.269585][ T1158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.554100][ T5180] Bluetooth: hci1: command tx timeout
[  500.257877][ T5927] IPVS: starting estimator thread 0...
[  500.503638][T10272] IPVS: using max 28 ests per chain, 67200 per kthread
[  502.463113][ T1158] team0 (unregistering): Port device team_slave_1 removed
[  502.529609][ T1158] team0 (unregistering): Port device team_slave_0 removed
[  502.874444][ T5872] Bluetooth: hci2: command 0x0406 tx timeout
[  511.128545][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  511.134956][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  511.523005][T10353] program syz.6.1157 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  511.758101][    C1] sd 0:0:1:0: [sda] tag#7905 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  511.768695][    C1] sd 0:0:1:0: [sda] tag#7905 CDB: Write(6) 0a 00 00 00 00 00
[  513.131252][T10369] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  513.640635][T10375] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1161'.
[  513.708853][T10374] loop6: detected capacity change from 0 to 1024
[  517.159192][T10402] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1167'.
[  517.665544][ T1100] hfsplus: found bad thread record in catalog
[  517.720870][ T1100] hfsplus: found bad thread record in catalog
[  517.729469][T10149] bridge0: port 1(bridge_slave_0) entered blocking state
[  517.803086][T10149] bridge0: port 1(bridge_slave_0) entered disabled state
[  517.862897][T10149] bridge_slave_0: entered allmulticast mode
[  517.905521][T10149] bridge_slave_0: entered promiscuous mode
[  517.955421][T10149] bridge0: port 2(bridge_slave_1) entered blocking state
[  517.962619][T10149] bridge0: port 2(bridge_slave_1) entered disabled state
[  518.009467][T10149] bridge_slave_1: entered allmulticast mode
[  518.056391][T10149] bridge_slave_1: entered promiscuous mode
[  518.379373][T10198] chnl_net:caif_netlink_parms(): no params data found
[  519.523954][T10421] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  521.776113][T10149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  521.928472][T10149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  523.675023][T10149] team0: Port device team_slave_0 added
[  524.561732][T10439] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1177'.
[  526.732152][T10149] team0: Port device team_slave_1 added
[  530.586873][ T1158] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.740895][T10149] batman_adv: batadv0: Adding interface: batadv_slave_0
[  531.767555][T10149] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  531.877363][T10149] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  531.933106][T10149] batman_adv: batadv0: Adding interface: batadv_slave_1
[  531.957392][T10149] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  532.352617][T10149] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  534.653089][ T1158] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.734982][T10198] bridge0: port 1(bridge_slave_0) entered blocking state
[  534.759623][T10198] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.003472][T10198] bridge_slave_0: entered allmulticast mode
[  535.761540][T10198] bridge_slave_0: entered promiscuous mode
[  537.165758][ T1158] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  538.043219][T10198] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.080399][T10198] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.134484][T10198] bridge_slave_1: entered allmulticast mode
[  538.160285][T10516] loop8: detected capacity change from 0 to 128
[  538.184705][T10198] bridge_slave_1: entered promiscuous mode
[  538.380020][T10516] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  538.486770][T10516] ext4 filesystem being mounted at /139/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  539.284073][T10526] netlink: 'syz.5.1198': attribute type 1 has an invalid length.
[  539.354199][T10526] netlink: 'syz.5.1198': attribute type 4 has an invalid length.
[  539.362068][T10526] netlink: 15334 bytes leftover after parsing attributes in process `syz.5.1198'.
[  539.608800][ T1158] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.923418][T10198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  540.964162][T10198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  541.057704][ T6741] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  541.075795][ T5872] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  541.088302][ T5872] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  541.103405][ T5873] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  541.183340][ T5873] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  541.200040][ T5873] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  541.451413][T10198] team0: Port device team_slave_0 added
[  541.473742][   T30] audit: type=1326 audit(1758509264.924:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10552 comm="syz.8.1203" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa545d8ec29 code=0x0
[  541.524428][T10198] team0: Port device team_slave_1 added
[  543.256873][ T5873] Bluetooth: hci6: command tx timeout
[  545.330757][ T5873] Bluetooth: hci6: command tx timeout
[  545.403512][   T48] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  545.618394][   T48] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  545.913286][   T48] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  547.329045][   T48] usb 7-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  547.364393][   T48] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  547.416672][   T48] usb 7-1: Product: syz
[  547.423063][ T5180] Bluetooth: hci6: command tx timeout
[  547.437454][   T48] usb 7-1: Manufacturer: syz
[  547.437565][ T5872] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  547.455538][ T5872] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  547.464259][ T5872] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  547.475389][   T48] usb 7-1: SerialNumber: syz
[  547.480388][ T5872] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  547.489413][ T5872] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  547.515857][   T48] usb 7-1: config 0 descriptor??
[  547.583615][   T48] usb 7-1: can't set config #0, error -71
[  547.609263][   T48] usb 7-1: USB disconnect, device number 11
[  547.649207][T10608] loop6: detected capacity change from 0 to 1024
[  547.706126][ T1158] bridge_slave_1: left allmulticast mode
[  547.728114][ T1158] bridge_slave_1: left promiscuous mode
[  547.768197][ T1158] bridge0: port 2(bridge_slave_1) entered disabled state
[  548.765027][ T1158] bridge_slave_0: left allmulticast mode
[  548.800572][ T1158] bridge_slave_0: left promiscuous mode
[  548.826948][ T1158] bridge0: port 1(bridge_slave_0) entered disabled state
[  549.133268][T10638] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1218'.
[  549.489381][ T5872] Bluetooth: hci6: command tx timeout
[  549.568684][ T5872] Bluetooth: hci0: command tx timeout
[  551.374494][ T1158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  551.405523][ T1158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  551.423990][ T1158] bond0 (unregistering): Released all slaves
[  551.654662][ T5872] Bluetooth: hci0: command tx timeout
[  551.828014][ T8344] hfsplus: b-tree write err: -5, ino 4
[  553.728444][ T5872] Bluetooth: hci0: command tx timeout
[  556.347260][ T5872] Bluetooth: hci0: command tx timeout
[  556.906295][T10706] binder: BINDER_SET_CONTEXT_MGR already set
[  556.912312][T10706] binder: 10704:10706 ioctl 4018620d 200000000040 returned -16
[  558.442124][ T1158] hsr_slave_0: left promiscuous mode
[  558.970331][ T1158] hsr_slave_1: left promiscuous mode
[  559.129804][ T1158] veth1_macvtap: left promiscuous mode
[  559.174671][ T1158] veth0_macvtap: left promiscuous mode
[  559.186786][ T1158] veth1_vlan: left promiscuous mode
[  559.192168][ T1158] veth0_vlan: left promiscuous mode
[  562.192321][ T5957] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  563.133889][ T5957] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  563.144424][ T5957] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  563.159627][ T5957] usb 9-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  563.170401][ T5957] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  563.179772][ T5957] usb 9-1: Product: syz
[  563.191810][ T5957] usb 9-1: Manufacturer: syz
[  563.196583][ T5957] usb 9-1: SerialNumber: syz
[  563.224846][ T5957] usb 9-1: config 0 descriptor??
[  563.559071][  T914] usb 9-1: USB disconnect, device number 4
[  563.906432][ T1158] team0 (unregistering): Port device team_slave_1 removed
[  564.086287][ T1158] team0 (unregistering): Port device team_slave_0 removed
[  569.727875][   T30] audit: type=1326 audit(1758509293.198:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10782 comm="syz.2.1266" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0bd5b8ec29 code=0x0
[  570.036412][T10793] loop8: detected capacity change from 0 to 1024
[  570.987623][T10547] chnl_net:caif_netlink_parms(): no params data found
[  571.582862][ T8346] hfsplus: found bad thread record in catalog
[  571.613116][ T8346] hfsplus: found bad thread record in catalog
[  572.572230][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  572.578668][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  572.834149][T10601] chnl_net:caif_netlink_parms(): no params data found
[  574.606190][    T9] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  575.257499][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  575.284733][    T9] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  575.343588][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  575.442616][    T9] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  575.567887][    T9] usb 9-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  575.712589][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  575.847460][    T9] usb 9-1: Product: syz
[  575.899623][    T9] usb 9-1: Manufacturer: syz
[  575.968852][    T9] usb 9-1: SerialNumber: syz
[  576.083453][    T9] usb 9-1: config 0 descriptor??
[  576.186976][T10547] bridge0: port 1(bridge_slave_0) entered blocking state
[  576.204502][T10547] bridge0: port 1(bridge_slave_0) entered disabled state
[  576.212028][T10547] bridge_slave_0: entered allmulticast mode
[  576.219805][    T9] usb 9-1: can't set config #0, error -71
[  576.220391][T10547] bridge_slave_0: entered promiscuous mode
[  576.237290][T10547] bridge0: port 2(bridge_slave_1) entered blocking state
[  576.244704][T10547] bridge0: port 2(bridge_slave_1) entered disabled state
[  576.252200][T10547] bridge_slave_1: entered allmulticast mode
[  576.260779][T10547] bridge_slave_1: entered promiscuous mode
[  576.306279][    T9] usb 9-1: USB disconnect, device number 5
[  580.008736][T10547] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  580.210550][T10547] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  581.039643][   T30] audit: type=1326 audit(1758509303.863:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10876 comm="syz.5.1279" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f050738ec29 code=0x0
[  581.107497][T10884] program syz.8.1277 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  581.812458][T10889] befs: (nullb0): No write support. Marking filesystem read-only
[  581.832387][T10889] befs: (nullb0): invalid magic header
[  582.166904][T10601] bridge0: port 1(bridge_slave_0) entered blocking state
[  582.192486][T10601] bridge0: port 1(bridge_slave_0) entered disabled state
[  582.199819][T10601] bridge_slave_0: entered allmulticast mode
[  582.284524][T10601] bridge_slave_0: entered promiscuous mode
[  582.461558][T10601] bridge0: port 2(bridge_slave_1) entered blocking state
[  582.497375][T10601] bridge0: port 2(bridge_slave_1) entered disabled state
[  582.512879][T10601] bridge_slave_1: entered allmulticast mode
[  582.527367][T10601] bridge_slave_1: entered promiscuous mode
[  582.834329][T10547] team0: Port device team_slave_0 added
[  583.725842][ T1158] bridge_slave_1: left allmulticast mode
[  583.749182][ T1158] bridge_slave_1: left promiscuous mode
[  583.788447][ T1158] bridge0: port 2(bridge_slave_1) entered disabled state
[  583.827520][ T1158] bridge_slave_0: left allmulticast mode
[  584.054390][ T1158] bridge_slave_0: left promiscuous mode
[  584.060268][ T1158] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.584905][ T1158] bridge_slave_1: left allmulticast mode
[  585.610862][ T1158] bridge_slave_1: left promiscuous mode
[  585.616739][ T1158] bridge0: port 2(bridge_slave_1) entered disabled state
[  585.902366][ T1158] bridge_slave_0: left allmulticast mode
[  585.908069][ T1158] bridge_slave_0: left promiscuous mode
[  585.926583][ T1158] bridge0: port 1(bridge_slave_0) entered disabled state
[  588.399615][T10946] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  588.750746][T10946] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  589.090108][T10946] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  589.493184][T10946] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  589.499342][ T1158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  589.512692][T10946] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  589.651523][ T1158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  589.774220][ T1158] bond0 (unregistering): Released all slaves
[  591.188815][ T1158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  591.539775][ T1158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  591.565025][ T1158] bond0 (unregistering): Released all slaves
[  591.875295][T10547] team0: Port device team_slave_1 added
[  593.105688][T10601] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.154552][T10601] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  596.549747][ T1158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  596.942693][ T1158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  598.860901][T11014] overlayfs: failed to clone upperpath
[  599.684899][ T1158] team0 (unregistering): Port device team_slave_1 removed
[  600.001424][ T1158] team0 (unregistering): Port device team_slave_0 removed
[  601.455016][T11019] loop6: detected capacity change from 0 to 4096
[  601.693283][ T5873] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  601.708988][ T5873] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  601.733446][ T5873] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  601.733762][T11019] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  601.755565][ T5873] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  601.763714][ T5873] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  603.077907][T11019] ntfs3(loop6): Failed to read $UpCase (-4).
[  603.888110][ T5873] Bluetooth: hci1: command tx timeout
[  604.649746][ T1158] team0 (unregistering): Port device team_slave_1 removed
[  605.662257][T11054] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1325'.
[  606.350702][ T5873] Bluetooth: hci1: command tx timeout
[  607.085165][ T1158] team0 (unregistering): Port device team_slave_0 removed
[  607.104314][T11058] netlink: 220 bytes leftover after parsing attributes in process `syz.6.1326'.
[  608.429715][ T5873] Bluetooth: hci1: command tx timeout
[  609.874437][T10547] batman_adv: batadv0: Adding interface: batadv_slave_0
[  609.898589][T10547] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  609.926712][T10547] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  609.971969][ T5872] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  609.982621][ T5872] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  609.996612][ T5872] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  610.263938][ T5872] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  610.277949][ T5872] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  610.498382][ T5872] Bluetooth: hci1: command tx timeout
[  610.646904][T11054] bridge_slave_1: left allmulticast mode
[  610.947906][T11054] bridge_slave_1: left promiscuous mode
[  610.984343][T11054] bridge0: port 2(bridge_slave_1) entered disabled state
[  611.149156][T11054] bridge_slave_0: left allmulticast mode
[  611.154874][T11054] bridge_slave_0: left promiscuous mode
[  611.201649][T11054] bridge0: port 1(bridge_slave_0) entered disabled state
[  612.432436][ T5872] Bluetooth: hci7: command tx timeout
[  612.908447][T11092] ptrace attach of "./syz-executor exec"[6741] was attempted by ""[11092]
[  614.836145][ T5872] Bluetooth: hci7: command tx timeout
[  617.082248][ T5873] Bluetooth: hci7: command tx timeout
[  619.134120][ T5873] Bluetooth: hci7: command tx timeout
[  621.376272][T11075] chnl_net:caif_netlink_parms(): no params data found
[  621.718864][ T1158] bridge_slave_1: left allmulticast mode
[  621.739472][ T1158] bridge_slave_1: left promiscuous mode
[  621.751491][ T1158] bridge0: port 2(bridge_slave_1) entered disabled state
[  621.995686][T11166] overlayfs: failed to clone upperpath
[  622.011613][ T1158] bridge_slave_0: left allmulticast mode
[  622.842006][ T1158] bridge_slave_0: left promiscuous mode
[  622.847949][ T1158] bridge0: port 1(bridge_slave_0) entered disabled state
[  622.957904][ T1158] bridge_slave_1: left allmulticast mode
[  623.191056][ T1158] bridge_slave_1: left promiscuous mode
[  623.205025][ T1158] bridge0: port 2(bridge_slave_1) entered disabled state
[  623.249799][ T1158] bridge_slave_0: left allmulticast mode
[  625.249091][ T1158] bridge_slave_0: left promiscuous mode
[  626.538792][ T1158] bridge0: port 1(bridge_slave_0) entered disabled state
[  627.157911][ T1158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  627.224395][ T1158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  627.253060][ T1158] bond0 (unregistering): Released all slaves
[  628.091141][ T1158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  628.157849][ T1158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  628.199287][ T1158] bond0 (unregistering): Released all slaves
[  628.318721][T11029] chnl_net:caif_netlink_parms(): no params data found
[  629.516368][ T1158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  631.252127][ T1158] team0 (unregistering): Port device team_slave_1 removed
[  631.290870][ T1158] team0 (unregistering): Port device team_slave_0 removed
[  631.483452][T11075] bridge0: port 1(bridge_slave_0) entered blocking state
[  631.492243][T11075] bridge0: port 1(bridge_slave_0) entered disabled state
[  631.499621][T11075] bridge_slave_0: entered allmulticast mode
[  631.508876][T11075] bridge_slave_0: entered promiscuous mode
[  631.525321][T11075] bridge0: port 2(bridge_slave_1) entered blocking state
[  631.532663][T11075] bridge0: port 2(bridge_slave_1) entered disabled state
[  631.556715][T11075] bridge_slave_1: entered allmulticast mode
[  631.573511][T11075] bridge_slave_1: entered promiscuous mode
[  631.691484][T11075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  631.704684][T11075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  631.714702][T11029] bridge0: port 1(bridge_slave_0) entered blocking state
[  631.722404][T11029] bridge0: port 1(bridge_slave_0) entered disabled state
[  631.731026][T11029] bridge_slave_0: entered allmulticast mode
[  631.738799][T11029] bridge_slave_0: entered promiscuous mode
[  631.788225][T11029] bridge0: port 2(bridge_slave_1) entered blocking state
[  631.795708][T11029] bridge0: port 2(bridge_slave_1) entered disabled state
[  631.803984][T11029] bridge_slave_1: entered allmulticast mode
[  631.813614][T11029] bridge_slave_1: entered promiscuous mode
[  631.877177][T11075] team0: Port device team_slave_0 added
[  631.886584][T11029] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  631.906059][T11029] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  631.920579][T11075] team0: Port device team_slave_1 added
[  632.060055][T11075] batman_adv: batadv0: Adding interface: batadv_slave_0
[  632.067160][T11075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  632.108360][T11075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  632.122309][T11029] team0: Port device team_slave_0 added
[  632.136725][T11029] team0: Port device team_slave_1 added
[  632.145366][T11075] batman_adv: batadv0: Adding interface: batadv_slave_1
[  632.152672][T11075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  632.178878][T11075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  632.259946][T11029] batman_adv: batadv0: Adding interface: batadv_slave_0
[  632.266948][T11029] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  632.294398][T11029] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  632.307926][T11029] batman_adv: batadv0: Adding interface: batadv_slave_1
[  632.314943][T11029] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  632.345292][T11029] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  632.444856][T11075] hsr_slave_0: entered promiscuous mode
[  632.459863][T11075] hsr_slave_1: entered promiscuous mode
[  632.611400][T11029] hsr_slave_0: entered promiscuous mode
[  632.623978][T11029] hsr_slave_1: entered promiscuous mode
[  632.631836][T11029] debugfs: 'hsr0' already exists in 'hsr'
[  632.638117][T11029] Cannot create hsr debugfs directory
[  633.502536][T11075] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  633.643155][T11075] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  633.662714][T11075] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  633.700894][T11075] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  633.874418][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  633.880958][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  634.094458][T11075] 8021q: adding VLAN 0 to HW filter on device bond0
[  634.164527][T11075] 8021q: adding VLAN 0 to HW filter on device team0
[  634.217843][ T1158] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.225156][ T1158] bridge0: port 1(bridge_slave_0) entered forwarding state
[  634.263082][ T8346] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.270399][ T8346] bridge0: port 2(bridge_slave_1) entered forwarding state
[  634.372215][T11029] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  634.401684][T11029] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  634.423802][T11029] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  634.462656][T11029] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  634.692448][T11029] 8021q: adding VLAN 0 to HW filter on device bond0
[  634.742413][T11029] 8021q: adding VLAN 0 to HW filter on device team0
[  634.765142][ T8346] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.772378][ T8346] bridge0: port 1(bridge_slave_0) entered forwarding state
[  634.807560][ T6328] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.814740][ T6328] bridge0: port 2(bridge_slave_1) entered forwarding state
[  635.093661][T11075] 8021q: adding VLAN 0 to HW filter on device batadv0
[  635.187608][T11075] veth0_vlan: entered promiscuous mode
[  635.221553][T11075] veth1_vlan: entered promiscuous mode
[  635.291241][T11075] veth0_macvtap: entered promiscuous mode
[  635.312702][T11075] veth1_macvtap: entered promiscuous mode
[  635.349279][T11075] batman_adv: batadv0: Interface activated: batadv_slave_0
[  635.374037][T11075] batman_adv: batadv0: Interface activated: batadv_slave_1
[  635.391769][ T7426] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  635.422627][ T7426] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  635.452120][ T7426] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  635.481536][ T7426] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  635.590686][T11029] 8021q: adding VLAN 0 to HW filter on device batadv0
[  635.713437][ T7220] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  635.749508][ T7220] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  635.848398][T11029] veth0_vlan: entered promiscuous mode
[  635.856275][ T6328] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  635.870608][ T6328] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  635.905132][T11029] veth1_vlan: entered promiscuous mode
[  635.963011][T11029] veth0_macvtap: entered promiscuous mode
[  636.055815][T11029] veth1_macvtap: entered promiscuous mode
[  636.133335][T11029] batman_adv: batadv0: Interface activated: batadv_slave_0
[  638.040696][T11029] batman_adv: batadv0: Interface activated: batadv_slave_1
[  638.835325][ T8344] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  638.845206][T11304] loop1: detected capacity change from 0 to 2048
[  638.886854][ T8344] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  638.927131][T11315] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  638.970902][   T30] audit: type=1800 audit(1758509362.483:18): pid=11304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1105" name="bus" dev="loop1" ino=2097152 res=0 errno=0
[  638.996901][T11304] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12
[  639.057993][ T8344] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  639.069271][T11304] Remounting filesystem read-only
[  639.083312][T11304] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  639.134582][ T8344] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  639.512274][T11328] syz.6.1370 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  641.904901][ T7220] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  642.032654][ T7220] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  642.151087][T11319] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1370'.
[  642.204153][ T1158] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  642.233350][ T1158] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  643.353910][T11342] sctp: failed to load transform for md5: -2
[  643.801241][T11369] overlayfs: failed to clone upperpath
[  652.720654][T11436] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1398'.
[  655.876118][T11469] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1405'.
[  656.825753][T11478] loop3: detected capacity change from 0 to 2048
[  657.877852][T11478] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  658.087759][T11483] loop6: detected capacity change from 0 to 4096
[  658.127756][T11472] UDF-fs: warning (device loop3): udf_truncate_tail_extent: Too long extent after EOF in inode 1346: i_size: 73728 lbcount: 77824 extent 129+28160
[  658.229618][   T30] audit: type=1800 audit(1758509381.742:19): pid=11486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1407" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  658.371400][T11483] EXT4-fs (loop6): Test dummy encryption mode enabled
[  658.424649][T11483] EXT4-fs (loop6): unsupported descriptor size 255
[  665.206613][T11529] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1418'.
[  672.761998][ T5872] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  672.790737][ T5872] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  672.901017][ T5872] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  672.915039][ T5872] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  672.972554][ T5872] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  675.149055][ T5872] Bluetooth: hci0: command tx timeout
[  677.360932][ T5872] Bluetooth: hci0: command tx timeout
[  678.845046][T11623] overlayfs: failed to clone lowerpath
[  679.423796][ T5872] Bluetooth: hci0: command tx timeout
[  680.490798][T11580] chnl_net:caif_netlink_parms(): no params data found
[  682.020635][ T5872] Bluetooth: hci0: command tx timeout
[  683.747076][   T49] ------------[ cut here ]------------
[  683.753448][   T49] WARNING: CPU: 0 PID: 49 at io_uring/io_uring.c:2980 io_ring_exit_work+0x3fc/0x10f0
[  683.763308][   T49] Modules linked in:
[  683.767742][   T49] CPU: 0 UID: 0 PID: 49 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[  683.777194][   T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  683.787687][   T49] Workqueue: iou_exit io_ring_exit_work
[  683.794443][   T49] RIP: 0010:io_ring_exit_work+0x3fc/0x10f0
[  683.801099][   T49] Code: 0f 85 0a 0b 00 00 48 8b 05 e1 67 4a 09 4c 8b 74 24 68 31 ff 49 29 c6 4c 89 f6 e8 0f ee e4 fc 4d 85 f6 79 12 e8 95 f2 e4 fc 90 <0f> 0b 90 48 c7 44 24 60 70 17 00 00 e8 83 f2 e4 fc 48 8b 74 24 60
[  683.821373][   T49] RSP: 0018:ffffc90000b97a90 EFLAGS: 00010293
[  683.827471][   T49] RAX: 0000000000000000 RBX: ffff88806646c6c8 RCX: ffffffff84d6aa31
[  683.835995][   T49] RDX: ffff88802328bc00 RSI: ffffffff84d6aa3b RDI: 0000000000000007
[  683.844596][   T49] RBP: ffffc90000b97c50 R08: 0000000000000007 R09: 0000000000000000
[  683.853079][   T49] R10: ffffffffffffffff R11: 0000000000000000 R12: ffff88806646c000
[  683.861076][   T49] R13: dffffc0000000000 R14: ffffffffffffffff R15: ffff88806646c040
[  683.869601][   T49] FS:  0000000000000000(0000) GS:ffff8881246b3000(0000) knlGS:0000000000000000
[  683.879052][   T49] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  683.886198][   T49] CR2: 0000200000073030 CR3: 0000000050739000 CR4: 0000000000350ef0
[  683.895276][   T49] Call Trace:
[  683.898604][   T49]  <TASK>
[  683.902489][   T49]  ? __pfx_io_ring_exit_work+0x10/0x10
[  683.908021][   T49]  ? try_to_wake_up+0x160/0x1870
[  683.913544][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.919232][   T49]  ? debug_object_deactivate+0x1ec/0x3a0
[  683.925557][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.931241][   T49]  ? rcu_is_watching+0x12/0xc0
[  683.936525][   T49]  process_one_work+0x9cf/0x1b70
[  683.942027][   T49]  ? __pfx_batadv_nc_worker+0x10/0x10
[  683.947446][   T49]  ? __pfx_process_one_work+0x10/0x10
[  683.953461][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.959246][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.965645][   T49]  ? assign_work+0x1a0/0x250
[  683.970291][   T49]  worker_thread+0x6c8/0xf10
[  683.975330][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.981013][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.987000][   T49]  ? __kthread_parkme+0x19e/0x250
[  683.992741][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  683.998412][   T49]  ? __pfx_worker_thread+0x10/0x10
[  684.003960][   T49]  kthread+0x3c5/0x780
[  684.008064][   T49]  ? __pfx_kthread+0x10/0x10
[  684.012782][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.018470][   T49]  ? rcu_is_watching+0x12/0xc0
[  684.023343][   T49]  ? __pfx_kthread+0x10/0x10
[  684.027975][   T49]  ret_from_fork+0x56d/0x730
[  684.032675][   T49]  ? __pfx_kthread+0x10/0x10
[  684.037305][   T49]  ret_from_fork_asm+0x1a/0x30
[  684.042225][   T49]  </TASK>
[  684.045272][   T49] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  684.052571][   T49] CPU: 0 UID: 0 PID: 49 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[  684.061892][   T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  684.071985][   T49] Workqueue: iou_exit io_ring_exit_work
[  684.077613][   T49] Call Trace:
[  684.080913][   T49]  <TASK>
[  684.083857][   T49]  dump_stack_lvl+0x3d/0x1f0
[  684.088505][   T49]  vpanic+0x6e8/0x7a0
[  684.092543][   T49]  ? __pfx_vpanic+0x10/0x10
[  684.097451][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.103137][   T49]  ? io_ring_exit_work+0x3fc/0x10f0
[  684.108391][   T49]  panic+0xca/0xd0
[  684.112173][   T49]  ? __pfx_panic+0x10/0x10
[  684.116655][   T49]  ? check_panic_on_warn+0x1f/0xb0
[  684.121801][   T49]  check_panic_on_warn+0xab/0xb0
[  684.126778][   T49]  __warn+0xf6/0x3c0
[  684.130702][   T49]  ? io_ring_exit_work+0x3fc/0x10f0
[  684.135943][   T49]  report_bug+0x3c3/0x580
[  684.140324][   T49]  ? io_ring_exit_work+0x3fc/0x10f0
[  684.145571][   T49]  handle_bug+0x184/0x210
[  684.150026][   T49]  exc_invalid_op+0x17/0x50
[  684.154562][   T49]  asm_exc_invalid_op+0x1a/0x20
[  684.159444][   T49] RIP: 0010:io_ring_exit_work+0x3fc/0x10f0
[  684.165298][   T49] Code: 0f 85 0a 0b 00 00 48 8b 05 e1 67 4a 09 4c 8b 74 24 68 31 ff 49 29 c6 4c 89 f6 e8 0f ee e4 fc 4d 85 f6 79 12 e8 95 f2 e4 fc 90 <0f> 0b 90 48 c7 44 24 60 70 17 00 00 e8 83 f2 e4 fc 48 8b 74 24 60
[  684.184942][   T49] RSP: 0018:ffffc90000b97a90 EFLAGS: 00010293
[  684.191127][   T49] RAX: 0000000000000000 RBX: ffff88806646c6c8 RCX: ffffffff84d6aa31
[  684.199123][   T49] RDX: ffff88802328bc00 RSI: ffffffff84d6aa3b RDI: 0000000000000007
[  684.207124][   T49] RBP: ffffc90000b97c50 R08: 0000000000000007 R09: 0000000000000000
[  684.215126][   T49] R10: ffffffffffffffff R11: 0000000000000000 R12: ffff88806646c000
[  684.223128][   T49] R13: dffffc0000000000 R14: ffffffffffffffff R15: ffff88806646c040
[  684.231195][   T49]  ? io_ring_exit_work+0x3f1/0x10f0
[  684.236455][   T49]  ? io_ring_exit_work+0x3fb/0x10f0
[  684.241721][   T49]  ? __pfx_io_ring_exit_work+0x10/0x10
[  684.247227][   T49]  ? try_to_wake_up+0x160/0x1870
[  684.252198][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.257869][   T49]  ? debug_object_deactivate+0x1ec/0x3a0
[  684.263572][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.269246][   T49]  ? rcu_is_watching+0x12/0xc0
[  684.274063][   T49]  process_one_work+0x9cf/0x1b70
[  684.279060][   T49]  ? __pfx_batadv_nc_worker+0x10/0x10
[  684.284488][   T49]  ? __pfx_process_one_work+0x10/0x10
[  684.289890][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.295570][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.301237][   T49]  ? assign_work+0x1a0/0x250
[  684.305868][   T49]  worker_thread+0x6c8/0xf10
[  684.310514][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.316196][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.321865][   T49]  ? __kthread_parkme+0x19e/0x250
[  684.326937][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.332611][   T49]  ? __pfx_worker_thread+0x10/0x10
[  684.337764][   T49]  kthread+0x3c5/0x780
[  684.341875][   T49]  ? __pfx_kthread+0x10/0x10
[  684.346527][   T49]  ? srso_alias_return_thunk+0x5/0xfbef5
[  684.352196][   T49]  ? rcu_is_watching+0x12/0xc0
[  684.357004][   T49]  ? __pfx_kthread+0x10/0x10
[  684.361651][   T49]  ret_from_fork+0x56d/0x730
[  684.366281][   T49]  ? __pfx_kthread+0x10/0x10
[  684.370918][   T49]  ret_from_fork_asm+0x1a/0x30
[  684.375890][   T49]  </TASK>
[  684.379168][   T49] Kernel Offset: disabled
[  684.383489][   T49] Rebooting in 86400 seconds..