last executing test programs:

2m21.293085969s ago: executing program 2 (id=63):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x200840, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x5, 0x4445, &(0x7f000000cd00)="$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")
r0 = open(&(0x7f00000000c0)='./file1\x00', 0x14927e, 0x6)
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000580)=ANY=[], 0x21)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x0, 0x1, 0x8ffff)
truncate(&(0x7f0000000280)='./file1\x00', 0x1bf8)
openat$nullb(0xffffffffffffff9c, 0x0, 0x6200, 0x0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a5a438, &(0x7f00000032c0)=ANY=[@ANYRES32=0x0, @ANYRESHEX=0x0, @ANYRES8, @ANYRESHEX, @ANYRESHEX, @ANYRESHEX, @ANYBLOB="4c07f18b4a72a428cdf1fcc6a889d51c7d395bfc15396c272d41b4a79dba0739c1c7461ae19481932aa4c03054c8b2442a4c1e4311032bebb0cb70495acfcf1f08735df868c705", @ANYRESOCT, @ANYRES16, @ANYRES32, @ANYBLOB="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", @ANYBLOB="4b5b40505ce4295c79dcaf712107d5772e50bc7e91c4501e03e44ce7c98e30df04de10ee861097fdc0244296b0cdb9fb091e8872149bc55fc3de32d9bc67139102c0c51604fa", @ANYRESDEC, @ANYRES8], 0xd, 0x0, &(0x7f0000000000))

2m19.997156538s ago: executing program 2 (id=74):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001300)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1208, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x100, 0x52)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x100, 0x52)
socket$packet(0x11, 0x3, 0x300)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fstatfs(r1, 0x0)
fstatfs(r0, &(0x7f0000000180)=""/200)

2m19.13119959s ago: executing program 2 (id=83):
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0xc0)
pipe2$9p(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid={'access', 0x3d, 0xee00}}]}})
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xb2000, 0x10e)

2m18.908616373s ago: executing program 2 (id=90):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x18f883, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
umount2(&(0x7f0000000300)='./file0/../file0\x00', 0x8)

2m18.624873387s ago: executing program 2 (id=93):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x25, &(0x7f00000000c0)=0x79, 0x4)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
r3 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x10000000)

2m16.884042333s ago: executing program 2 (id=101):
r0 = socket$inet6(0xa, 0x3, 0x1)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r3, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x44004)

2m16.582891957s ago: executing program 32 (id=101):
r0 = socket$inet6(0xa, 0x3, 0x1)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r3, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x44004)

1m31.480218582s ago: executing program 1 (id=396):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000004e00)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x40}], 0x30, 0x88010}], 0x1, 0x20000010)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[], 0x63}, 0x1, 0x0, 0x0, 0x20000045}, 0x40046)
recvmmsg(r1, &(0x7f0000007bc0)=[{{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000300)=""/122, 0x7a}], 0x1}, 0x33}], 0x1, 0x10020, 0x0)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x2000c800}, 0x40810)

1m31.348306934s ago: executing program 1 (id=397):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x4d, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000700)=@newqdisc={0x434, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdf8, {0x0, 0x0, 0x0, r3, {0x10}, {0x8}, {0xa, 0x3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x800, 0x9, 0x1, 0x0, 0x7, 0x196, 0x2, 0x6, 0x4, 0xc, 0x8, 0xc9cd, 0x2, 0x9, 0x0, 0x200, 0x3, 0x9, 0xd, 0x2, 0x7, 0x4, 0x6, 0x9, 0x8000000a, 0xc4, 0x60, 0x8000, 0x7, 0x2000db3a, 0x800, 0x3, 0x9, 0x3, 0x9, 0x0, 0x401, 0x3, 0x6, 0x33, 0x6, 0x8, 0x8001, 0x4, 0x6, 0x4, 0x5, 0xd, 0x2, 0x7, 0x1, 0x0, 0x3, 0x81, 0x3, 0x1ff, 0xfffffff5, 0xc9, 0x5, 0x65e1, 0x10001, 0xc, 0x8001, 0xffffb5ca, 0xe, 0x3, 0x97, 0x7, 0xb, 0xffff6f3c, 0x1, 0x7ff, 0xb4, 0xf, 0x1, 0x3, 0xff, 0xfff, 0x0, 0xee3, 0x43, 0x9, 0x1, 0x3, 0x1, 0x3796, 0x8, 0x6, 0xbe, 0x3, 0x45, 0xdd1, 0x5, 0x7, 0x7de, 0x0, 0x3, 0x345, 0x4, 0x9da, 0x4, 0x6, 0xea6, 0x3, 0x5, 0x10, 0x3, 0xffffffff, 0x3ff, 0x96, 0x7, 0x2, 0x6, 0x9, 0x5, 0x5, 0x3, 0xd7da, 0x82, 0x7f, 0x9, 0x1, 0xb8, 0x6, 0x4, 0x6, 0x3f0a, 0x4, 0x9, 0x5, 0x1ff, 0x4, 0x4, 0x1, 0x7, 0x7ff, 0xfffffffe, 0x0, 0xb, 0xfffffff7, 0x8, 0x101, 0xc57, 0x5, 0x2, 0x5, 0x8, 0xfffffffc, 0xf, 0x1982, 0x1, 0x80000000, 0x5, 0x9, 0x6, 0x8000, 0x2, 0x1, 0x2, 0x2, 0x5, 0x6, 0xffffff1c, 0x5, 0x5, 0x7, 0x692, 0x92, 0x4, 0x0, 0x2, 0x43d, 0x1b8f, 0x14, 0x65, 0xc00, 0x9, 0x9, 0x3, 0x8, 0x10001, 0x295, 0x6, 0xcb1, 0x1, 0xb7e, 0x10001, 0x2, 0x7, 0x6, 0x1, 0x2, 0x3ff, 0xfb5, 0x8, 0xa, 0x0, 0x9, 0xc, 0xc3d4, 0x2, 0x8000, 0xec, 0xd, 0x5, 0x84d3, 0xfffffeff, 0x2, 0x7ff, 0x7fffffff, 0x80, 0x2, 0x90, 0x2, 0x6, 0x3, 0x70, 0x0, 0x0, 0x400, 0x8, 0x10000, 0x9, 0x101, 0xefba, 0x7, 0x3, 0xfffffffe, 0xa4a, 0x7, 0x400, 0xc, 0xfffffff9, 0x8001, 0xd, 0x1, 0x9, 0xfff, 0x421, 0x3ff, 0x2, 0xd, 0xfb6, 0x5, 0xfffffffd, 0xac, 0x7fff, 0xa, 0x0, 0x6, 0x7f, 0x2dd, 0x7, 0x4, 0x7, 0x1]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x40098}, 0x0)

1m30.891275271s ago: executing program 1 (id=404):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec778000)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000200)={0x4c, 0x14, 0x101, 0x70bd25, 0x25dfdbfd, {0x1, 0x1f, 0x8, 0x10, {0x4e24, 0x4e22, [0x3, 0x7fffff, 0xd, 0x200000c3], [0x9, 0xe, 0x40000000, 0x7], 0x0, [0x19, 0x7fffffff]}, 0x9, 0x1c6}}, 0x4c}, 0x1, 0x0, 0x0, 0x404c0dc}, 0x8080)

1m30.659956604s ago: executing program 1 (id=409):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4016, &(0x7f0000000780)={[{@dioread_nolock}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@noauto_da_alloc}, {@commit={'commit', 0x3d, 0x3}}, {@orlov}, {@quota}]}, 0x1, 0x43c, &(0x7f0000000280)="$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")

1m30.404163788s ago: executing program 1 (id=414):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='illinois', 0x8)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000840)="89000000120081ae08060cdc030000fe7f03214e000000000001ffca1b1f0000000024c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00150c00014003080c00bdad446b31007a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947e", 0x75}, {&(0x7f0000000140)="11d6cb557c8496a2fe7a81f38210bfa9b70ee09c", 0x14}], 0x2}, 0x4000000)

1m28.632028784s ago: executing program 1 (id=439):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x77c})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000580000/0x4000)=nil)
mremap(&(0x7f0000580000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00007ff000/0x2000)=nil)
close_range(r0, 0xffffffffffffffff, 0x0)

1m28.527466236s ago: executing program 33 (id=439):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x77c})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000580000/0x4000)=nil)
mremap(&(0x7f0000580000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00007ff000/0x2000)=nil)
close_range(r0, 0xffffffffffffffff, 0x0)

28.855880468s ago: executing program 5 (id=969):
socket$kcm(0x2, 0x3, 0x2)
socket$igmp(0x2, 0x3, 0x2)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @multicast})
write$tun(r0, &(0x7f0000000480)={@void, @void, @eth={@multicast, @random, @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x2, 0x7, 0x5c, 0x6c, 0x4000, 0x7, 0x1, 0x0, @rand_addr=0x64010101, @local}, @redirect={0x5, 0x3, 0x0, @broadcast, {0x10, 0x4, 0x0, 0x4, 0x6, 0x65, 0x1, 0x8, 0x2, 0xf, @loopback, @loopback, {[@generic={0x86, 0x5, "c80842"}, @ra={0x94, 0x4}, @timestamp_prespec={0x44, 0x4, 0xf3, 0x3, 0x8}, @cipso={0x86, 0x1c, 0xfffffffffffffffe, [{0x0, 0x4, "0612"}, {0x7, 0xf, "c43e8c34f8ca4be4cdb6364607"}, {0x1, 0x3, '`'}]}]}}}}}}}}, 0x6e)

28.679957211s ago: executing program 5 (id=972):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x70)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r2, r1, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x81, &(0x7f0000000580)=ANY=[], 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4)

28.659040931s ago: executing program 5 (id=973):
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x2, 0x69100f4f, 0xd, 0xe000, 0x10, 0x2, 0x0, 0x0, 0x80, 0x5}}, 0x50)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000025000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

27.640024637s ago: executing program 5 (id=990):
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)='.\x00\x00\x00', 0x4}], 0x1}, 0x80054)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000380)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x80004, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x20000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x2082, 0x0)

27.515826599s ago: executing program 5 (id=993):
mkdir(&(0x7f0000000080)='./file0\x00', 0x190)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file2\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f0000000040)='./file0\x00')
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000038c0)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000700)="f84cb452a3b88d7db62ac721d3599e6c587a09776cf50619cb093932a59cb3be741146338e32355d85af94c31bf8b76d87fa90bc4b94acb258168311d66e2b76e521cd3c557db549d45a011f52330272c515a6a272633d5aae", 0x59}], 0x1}}], 0x1, 0x4000801)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
pwritev2(r0, &(0x7f00000005c0)=[{&(0x7f0000000180)="c897", 0x2}], 0x1, 0x2e, 0x4, 0x11)
ioctl$FS_IOC_RESVSP(r0, 0xc0189436, &(0x7f0000000680)={0x0, 0x0, 0x2, 0x7, 0x3})

25.846963114s ago: executing program 5 (id=1010):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000280)='./bus\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000000080))
chdir(&(0x7f0000001180)='./bus\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000a80)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x946058, 0x0, 0x0, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, 0x1)
syz_mount_image$vfat(&(0x7f0000002180), &(0x7f0000000040)='./bus\x00', 0x2034459, 0x0, 0x1, 0x0, &(0x7f00000021c0))

25.656367567s ago: executing program 34 (id=1010):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000280)='./bus\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000000080))
chdir(&(0x7f0000001180)='./bus\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000a80)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x946058, 0x0, 0x0, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, 0x1)
syz_mount_image$vfat(&(0x7f0000002180), &(0x7f0000000040)='./bus\x00', 0x2034459, 0x0, 0x1, 0x0, &(0x7f00000021c0))

5.151929113s ago: executing program 4 (id=1202):
connect$l2tp6(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158b33d4fec877f1b6d76745b686158bbcfe8875afdef001e000000002c"], 0x66)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10b8}, 0xff00)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1e000000000000000700400009"], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x890b, &(0x7f0000000000))
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000))

5.010965335s ago: executing program 7 (id=1203):
close(0x4)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @private=0xa010101, 0x15, 0x3, 'sh\x00', 0x0, 0x5, 0x3f}, 0x2c)
r1 = socket$kcm(0xa, 0x2, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e20, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@loopback, 0x4e20, 0x10000, 0x2, 0x2}}, 0x44)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e25, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e25, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffc}, 0x80, 0x0}, 0x0)

5.010852645s ago: executing program 4 (id=1204):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x2, 0x5006, 0xff, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
r1 = epoll_create1(0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r2, &(0x7f00000001c0), 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0x80000011})
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)

4.650421591s ago: executing program 0 (id=1205):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
setsockopt$inet_int(r0, 0x0, 0x19, &(0x7f0000000180)=0x1f5, 0x4)
setsockopt$inet_int(r0, 0x0, 0x12, &(0x7f0000000280)=0x40, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

4.649576261s ago: executing program 7 (id=1206):
pipe(&(0x7f00000045c0))
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mremap(&(0x7f0000097000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f0000bff000/0x400000)=nil)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f0000000100)={&(0x7f0000ffb000/0x3000)=nil, 0x3000})

4.578572062s ago: executing program 7 (id=1208):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x5)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
sendto$packet(r1, &(0x7f0000000600)="5f0efc3e1792a50972d2eb21bdff9ca4ac804c2847fe7bf05ddc63ff512d4074687760a5fbd1fc97772c6f5027dcea15b6658de3b024a6ea22baafb445bf8427c8055d00", 0xffffff3d, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)=[{0x0}, {&(0x7f0000000140)=""/49, 0x31}], 0x2}, 0x100)

4.295503616s ago: executing program 4 (id=1209):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0x5)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e63, 0x6, @ipv4={'\x00', '\xff\xff', @loopback}, 0x100000b}, 0x1c)
listen(r1, 0xb)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe0064e630001590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

4.184169417s ago: executing program 4 (id=1210):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e26}, 0x73)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x30)

1.622108526s ago: executing program 0 (id=1220):
socket$inet_sctp(0x2, 0x39341ad41c14835a, 0x84)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
fsmount(0xffffffffffffffff, 0x1, 0x8)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0)
ioctl$sock_SIOCINQ(r0, 0x541b, 0x0)

1.614146136s ago: executing program 7 (id=1221):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
pipe2(&(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
vmsplice(r1, &(0x7f0000000c40)=[{&(0x7f0000000200)="91", 0x1}], 0x1, 0x0)

1.604132746s ago: executing program 4 (id=1223):
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x9}, 0x8)
sendmsg$NFNL_MSG_CTHELPER_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3400481606"], 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000300)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x20000880)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)=ANY=[], 0x1000f)

1.279157801s ago: executing program 3 (id=1211):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r2, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

1.278056021s ago: executing program 0 (id=1225):
io_uring_setup(0x528, &(0x7f0000000040)={0x0, 0x3cb1, 0x2, 0xa, 0x20002f7})
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_open_dev$dri(&(0x7f0000000840), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fff0006}]})
unshare(0x2a060400)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2842, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'vlan0\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0x41, 0x1, 0x107fff, 0x1, 0x4, 0x89, 0x0, 0xffb, 0x7, 0xb6b, 0x0, 0x4, 0x0, 0x3, 0x9, 0x0, 0x1000, 0xc, 0x3, 0x3, 0x80000001, 0xfffffffa, 0x0, 0xffffffff, 0x9, 0x4, 0x7, 0x5, 0x7, 0x9, 0x3, 0x639, 0x8e, 0x7, 0x2, 0x6, 0x4, 0xb, 0x40, 0x40bed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x8, 0x5, 0x79b, 0x3, 0x1, 0x7f, 0x6ff, 0x9, 0x7, 0xf, 0x101, 0xa, 0x1fa08607, 0x7, 0x100aa, 0x7f, 0x2, 0x180000, 0x1, 0x8b, 0x5, 0x2af, 0x3, 0x3, 0x2, 0x1, 0x9, 0x4, 0x4, 0x1, 0x0, 0x4, 0x100002, 0x8, 0x752, 0x0, 0x3, 0x0, 0x10000, 0x3f6, 0xffffffff, 0x6, 0x86, 0x9, 0x0, 0xfdffffff, 0xfffffffe, 0x0, 0x84, 0x100, 0x5, 0x252, 0x81, 0xb, 0x4, 0x20004, 0xc50, 0x2, 0xb, 0x2, 0xa, 0xc8, 0x2a2, 0xfffffffd, 0x3, 0x2, 0x5, 0x8, 0x0, 0x4, 0x2, 0x40, 0x8, 0x4, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x5, 0x1fc, 0x5, 0xffffffff]}})
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

1.229590972s ago: executing program 6 (id=1212):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3801009, 0x0, 0x11, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x81c0, 0x8103)
linkat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000380)='./file0/file0\x00', 0x400)
chdir(&(0x7f00000003c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc00, 0x836d9fb164f927b3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file0\x00', 0x1ac)

1.089678484s ago: executing program 6 (id=1213):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x400c8c0)
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x180c8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x1, 0x24b, &(0x7f00000006c0)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000280)='./bus\x00', 0x8584b4, &(0x7f0000000500)=ANY=[], 0x1, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000000)='./bus/file0\x00', 0x0)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00')

1.003835995s ago: executing program 3 (id=1214):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x20040055}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c000380180000800c00018006000100d1de0000080003400000000114000000110001"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x2c, 0xd, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

1.003039705s ago: executing program 0 (id=1229):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
mremap(&(0x7f000004f000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f000016c000/0x2000)=nil)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, &(0x7f0000001600))
syz_mount_image$fuse(0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

877.639817ms ago: executing program 6 (id=1215):
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r0, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000000c00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="000000000000000005000000000000009500000000000000b1f8306e05d1e4aab009c16b5c05077115d0749619ca39f89974785ae0619b77c6585f678ac92a3b6b4148f56b43c3dd75d75f97c8f92f60a2def458df05e2fbfb3e849b2b3cffd4f29446ae60dd76654b2639b2bc14350706214a6ab7a712d4317fbc3ca01d0d3ed6110b3775903141a5091a4d3db8eb335414fbdb288aba73aaf6d18000a3a2a069cf7f9402e1425bb6bc370576aa1faea0fe222671ecf99038fce8dba53dcb11f87cca"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r1, 0x11}, 0x20)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[], 0x10)

808.781558ms ago: executing program 6 (id=1216):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)={{0x2000, 0x41000, 0x8, 0x9, 0x3, 0xe4, 0x40, 0x2d, 0x0, 0x30, 0x19}, {0x248004, 0x3000, 0xe, 0x0, 0x44, 0x5, 0x79, 0x9, 0x58, 0x3, 0x3}, {0xdddd1000, 0xe000, 0xb, 0x5, 0x3, 0x7, 0x2, 0x89, 0x3, 0xab, 0x5, 0x81}, {0xdddd0000, 0xffff1000, 0x3, 0x5d, 0x4, 0x43, 0x9, 0xfa, 0x80, 0x7, 0x6, 0x4}, {0xdddd0000, 0x9000, 0x10, 0x1, 0x3, 0xb, 0xab, 0x7f, 0x47, 0x83, 0xf7, 0x82}, {0x1000, 0x3000, 0x8, 0xa0, 0x3, 0xf, 0x4, 0xd, 0x88, 0xf, 0xfe, 0xfd}, {0x70000, 0x2, 0x4, 0x5, 0x7, 0x2, 0xb, 0x0, 0x5, 0x7e, 0xff, 0x70}, {0xd000, 0xb000, 0x9, 0x5, 0xf, 0x7, 0x1, 0x16, 0x2, 0x3, 0x7, 0x9}, {0xb000, 0x2d}, {0x10000, 0x3ff}, 0x80000031, 0x0, 0x6000, 0x42024, 0xb, 0x0, 0x25000, [0x6840000000000002, 0x3, 0x91, 0xff]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001b00)=[@textreal={0x8, 0x0}], 0x1, 0xe, 0x0, 0x0)

802.706718ms ago: executing program 3 (id=1217):
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f00000000c0)="0f01c80f205066b98200004066b80000000066ba000000000f3067660f5e00baf80c66b8e4844e8866efbafc0c66ed660f090f01d764660fdceff30f0966f3aa", 0x40}], 0x1, 0x72, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x4, 0x1000000000, 0x800000000000, 0x10043, 0x2000001, 0x3, 0x2004cb, 0x3, 0x3c00000000000000, 0x9, 0x9, 0x9, 0x403, 0x0, 0x7], 0x25000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

704.04633ms ago: executing program 4 (id=1218):
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000080)
r0 = syz_open_dev$MSR(&(0x7f0000000180), 0x29, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="09000000010000006d05000002", @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r1}, 0x38)

608.223881ms ago: executing program 6 (id=1219):
r0 = fsopen(&(0x7f0000000040)='configfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
lseek(r2, 0x100, 0x0)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

607.334981ms ago: executing program 0 (id=1224):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d65b"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x68}, 0x1, 0x0, 0x0, 0x24000840}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close(0x3)

517.664212ms ago: executing program 3 (id=1226):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000007100)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r2, {0x7, 0x2b, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x80}}, 0x50)
read$FUSE(r0, &(0x7f000000cdc0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r3}, 0x10)
syz_fuse_handle_req(r0, &(0x7f0000004940)="4f50356c9e70ce6dcbe3d22a41991ada3384a3cc61e92a72df663226dcad115a3308ae59bd26134ca5b1d27458f3aebf34acb004e78edccd1c3d66ebfda95d8369a12684acfd2a04e36c20ef64cbf1b5bbc16a9783fcf708a9b8b981d1439e1a70c847592b26218c9a35c8cbf385a246ac35fb857113366f18ebf2038f6f5fe538f19afed142f05dfa55e8e5ec4234f6bd050a4d3033bb36ec207606c74bdbb57dc854f6df4c8c9baa253c94555881384fe2f47514f5b07ec99616b751cfb680bc45603bd053c910f9cd9f7d954178f2385becf76f2acacd3a5f570f9ec36203fdd74b03259ce7df7c4c833708d24e1da50717cf88499739f009f6a0d0f9cfeee33134e807ff90cd8984a2f377c22595be32493ade61f85925cb5803dad77b642a067d357d05fd01e6af9a0b3c1d8e2f871bf2e5d082fb410ca5b5a8b67471a2024d8d8a8f54bb82fc7a858223aed1a741e89cd539823ff5417f0bdd5963502c243a126d3a9bbf66adf1631148a90693467a4d255260760389a5717c9b3c79a0057061c4cfe3ca8d9d5d179526090dad4ea4816f291bb8649ed07de9128e6881f581a7989c9533c7bb6186c1c4266f813ad201d0ac241d9dc7990092b0f59d11bd5d457f722ededd6a147bc22e11d28c48d80f5ed97b66eed8f974ad611c03c76420332deb2bdccf260c7182b5ce9aaef10bfad7241d285bf4beea9d3ffd4e5933c4048ca9a044dac8a712836fafe4988ec3849330c6e929f5a0520bfd21079f603b990986202c08f589c3017c10b087f8fdec4fc56d0f89c2b00bcd5d931daa4219e6efc054f60d0988a3ac98f81324d22b5909bfc1f4d1b7172b30e0ec3b21f776553a4507ef0bd813a94d76733e84b0c7067457650e9fcde01840bf5a04399cf4d40b4c66ac1bb55b1aca704afbae4db5744953acb0e6cb0448153f848c774f74282e6c541f9bd1bec0e1b5044423425f182b95949edc8074e257056241df49812c2cf7ceb0b8d28f65f317523b4a47b9e2b693a89ef7c95d180b318ef70b7ee2d6e0a0cad96043c1df61f09613c1cd6f6d6461a761c8ef9c1338cd918318774502da24b0b9d38030533ff6c0359d3b273a18815a1f0a71df5e6452252fa0ddeefe55e6f9d6e3f7941ee84d76143ffb4d32093351ed67674c9862c5df14ae5f430012ebad4d8bd546e8149facb0c2b15ae86f38588ee617ff2874a668e7f755061460094f8e7e56590ba3f30582fa5341b0339b3d6115d631178424f2d8698a2efd847a5567f54e67eb555d4d8a8b548edaa48d47a7b9c06b04d03ee1ecfdfbda40049d0e2eac6150866bc3102bcd5feb4a62b0ac49601adc9c19450530685d54cd53c654fa4bcee4862b010cf6875a97a77e8c6dd1395d440c003091f241baa97eb2995e363b54e1f23f143e3c45af005100fc582e7730c0abf1ef58170942740709f9946f1d29765ed85f3d13bdeb7816afff414d806d80c2033493d2f3fa80a7ad476037891feca18d7625b27779ec4cd8d14de8afdc6c428005513e795f2e7a1e3410201474d9cf4e315f8e05ba591b242f14094149bfe42812ee05e387b5e791107a32578e2a8297238a0075bbda9a4427f379841ea86508c5fba5e235ed4a3754c846569e9a329494d579d066777ec2f189de2aa55a3549e87bf7cda53b7e9af98355b04264189cc95205bf2955e4ffc692e0e6c48d816758ff322244b4268f69a0b72274c429128d8489e13064c925b9d5f3c82be62445860545927b2ea2f3e439888795780e7c4a2b3f3ff62ff2d25e4a44013f9df631c3a0b68bbad82ebe551bf4ff36f1a260f6347c59685ba09d9d9871ef910cce643ba01c5d3f17a50d7daffa2010d274da5570dd19acdd373b55e55701e638f8d31c6d31315a50cdeda2aaad2b71bccd321619120be8cc92dbc696d810b188119ddfb578054bbd343fd5e9e889719dffdae9488c410bc2ce68ec2f85a337ec8fd5bd522bde64b930813efdd670193d91b37fd93aa02f68f67e884130ada337fcf873a984d91467896a703e15b3718e6fd5f6993da9288dabb6f3876a6db06bd8be05b14a5bc63db5ee4f55103640cf30746cdafa8563f5e8c1cccbb58e538b484e0565ed140f2de8437a20ca422f173c829311919a2156d22f3b8bf349f299494c5e37283b1a373390e08df6a551c608ba42ee6e1577043adf6b9e7c0edbd20be866279cd9ae36af67f198e43fd31737cf70312776f4e695327b4fe957641cd3a46b48b198c32a8fd1998b20ace3d9780d1258b3e131ac51c946d022ddec1daebd8b2d225580efd68c7035b301860f6070daf273637e626c3380226a550a33a0346ebb3b87c2b26f15c923b9a490d97a05fb6fcaa5cab19101ce26adb3dc5bbd9604bd5299ceaa872a8ea956a48772852d5702ae3f322f8bb97e79805f7355b781c4fb7dc55e0f1fbc3125def8973302fb48052605366082dce1c8d92fdfa5d8f56f12bd2f73ae2c3c8a12215428861fdd247f36538c8ef0dacd594a709c656124fd8bdf36d69ff1cbb3903c35ae0a36129f64f65190fe37fa22c173ba32d22d61ba7411b3ca9d94a48022c0f0d305e5986cf008cc3e775b683ce5600f25f85dbed4b6c4a3a596da796b03d67ed072991ecfab88a8c7b5fced1bdd8c6049da0b3caec8e46eb9606ba6e53ad058cf8f7da4f107878ab0208c7324e125440d54749b10f64fb27b236feae37a427b287e0ef6a54cd5e864faedc4fb2125a0dd88ac96732ca025f5989e33ab7b521e6fa98ed3af16c83a6661864dc067b9072c980f64e2d008fafc676e60a26703f1fc7330a0c9503d88872d780bebb6c815e52608c04e74e48bbe66e1c0dab838f36c705957cfaab2ed98692db57ebac0c48b257e9386a8584aba15f86019e20cbcfe0b3b57be3b3407c48256e4531efdeca186c93bc3e9bfbc8f45ec864f32f7b38a63479a3bb4fa75a8b25f606f35b1147c1b53ebfd590418f926bad68807279027617af0d06651e5f977c615055f4dc91819bff755f8e6a2e0fb46dd7b1283de2652944d2b1cde5c72f43fd6456149ab2bda78e4cb8de135c160877e0b0820f95c4524e4cd386d44991055ea3accd2a694fb23793e57e49913f3cb86501bce08795695bfef260dd2d14761e404ce593e3b1e661a01d16b492a3cedf683736840178d08ea575534865c699bef830dbd0d259da79e5c05d7003af642412fa55b59ee5f2c032f1919af3c5067afe6876b154e29065d14224481971f94bc5ed45e48371053d69635e78b7a46cf76d999418011b58cff533c009316e33e87093117951fa4821241eaeef61d1122cd4e2962d6596259b7acf9e46d23d4efe9739189d99a9cf8776a34ad90a6e901872fd377c4f58886787baf9c2785ea437aa54195fbd34f2c5f5b4c4a76a018f5689feeccb6b153b34fc23cd0a8fa0699bff806521cb11172e4d4d45a1fad1cc8c4646b1846f1ba04f99a91db12da738ac1ee104ba3193119f325c600ab4f10e1e664dd7c17e285924487d394c7323ced471fd42728ceb9c25822885c1c6ab6b012d7a9b876958b2819e1a708afaacc537e6ac588e58c33934cea32ed3bfa27bb3d63554539e19bf69f30d03e0f47db84132a39a6dbbfddfdb673dd5cabe21d6d552317db8be0477536a69e2fe4f2e9a772dedc8a3ef34256565090c488c08fef2a3dd247fcbc2864d1862676ad5cfed2fd86871cce47b2ba28625ee67dd7518a6da3345614ff18307f20c27f68a69e4a1a6a3c8f76cf31df45b3b0b660aadbcf9698a32d36829c8aef481b09dabc8c9e449b96a2571af8eeef04bcb1785b596709f5aa1ace3804fc703ed9ec544667f350cb8bfb40a86caad45feb77d58aa1888f203cd963bcd9296feb0b68e0a695ed5cf8e7bca26a77d2bd61662f07bc721233a868805202469d8ee504be1d7cf135bc1bf7a215bbb96ff5514eeba1c0ffb68e4b3d6c20e1afadd2a3cecb002fc5ae0c59315dbf8f775ae5c63da31056a9c088e18477e2f925f7ff88df2786e8d014f0c98c580400e931cd8cdb258c4d8ed82b7f9beab0db9ae0b35b2790ff7e02d11fcf992b365ce82b94eaa0d5b2fec4aeb984f29c6af84e10ce4aa6df7e9c6b0ee842027c8d2552efc6b4084ef9af751524b3acbca12c5c313381b443cd44e862d8c8b0394dda05aeccda371226ebdf5aed6efd6dfcba73b09ae8e92ad54d4b43db9b7f84b46b307c66a4ec69933e47ef22244250f1c82fe42683fc13fcbfcd1c2ed1b537adb2e83885bb368209f89cfe8d4bc59e6df61ec794fa310f290e56320b39fb843163752a726240236b3a45b59927333e94d0c0b30a862d61c6144ac0a59f96e08651fba2d299a37a1a1010ac12ead549404421bce2b95a05d54d44f0df5d08ac469cbc7e1988e4fc913d98e3eb9a8102ed7d40021274948acf58a10c43f1078076e36ee7cbe548638b273a40347415d20dd153885b6429af1c8e82d8d9f22bcd5b48f60484aca751c29c0ac031001e8d5dd49a889665e4ec41e257e8f3013eeab0e382b281c3463c035d3412a0ab0fadf5753ed735f250e56f24bedce1748accb4af749b12f8cf660127d7b9e710f19483cd9bb09d292355103188625a5fb4b81f22a87498d63a5dbdd78e64b4d2feecba4a3dd881a1c4103f9697e09a23ed1db866e40dcb51aba96b83766028b653cabc365fe5694b4f946ad32d9681252373e6017a9413f5fd02ec689dd9e1e179fa9d607b6a8ede028420b0fe6da5f9a678b3b717df1d48e862c2485f789947dd5baf8c3a4a641e460279827354fee33d97bea7ed36546160354bce0f2f58815e28622590418b99b1499250d5469a66d1d461852b384e99073906c64e0aba5d6a0dc7813ff58c63d32e3992b0fb89be5811a646056714718a7039cfbb82678eebeec54bc4350ea85446ba062e53e239d74509dea0d2c1d5c803e333d37761d311f5c402bf43e6b8d84d036d35c0fbe98d7eb9d5bc6165a5771d048647ad16061c55e57c53dbf64c1a08a2a639672d650b4cc6c0f90ab3b8b3ebfc1ff1844e9791ead72b167ef6b57b81f7b6c751fba73a0835edb2c68a55b5e2d2b2c350bac375153c15e6a1180f09f9c2b984ccab971926ad85980026c4610b7dbcae8bb86b98136ed27facd94e571270187a6bb194cc0ebf24b7acada441b23dbe380c7c3221d1677e5af7bc81c3264a958fb5ceee61e4795dc863da2f13cc59a2fce73070af121983410df1a99fdd864bb62d67c30ab0a98300597d7160646bd2759b950bc0468fe74918dca8fc59c9dbdcff736f0f61d234328f1b560bdf6df54663c7f80be5175d67fc37eb85e491650cac6a8da06d3dbb0743ef8d0a9ae90d2d67c11a77ea52545d53c64991b9005b6e3aae54f1cc39672ed59f3d881d65d6b9da133c1201c105972efd039d2210bafbd2f9d964459a4bc72877c51b7ca9ce6fae62ec3bbdd6d09e4fefaeaac5145b141eb06e7c9537e58a7e78526dc7d0511e399ea983d471eb5e19a1ebd5a0a1149d48afa688507952df4afd85f8c296e678a221055e89451e0920f7fd38ac866a54b932a0a608d3e2126dedba84af8fe86f719647e9fe44f4c85641dcb3347c580fa2e1d6e863ca30625f56da0b6125e6c35075451eb93ce3ce6478c474dae7df27737fd2a37fed7c1d9d793cde4728d80a3480d19771876375be29cc9f9d30433be1c999cc6d6b4295b5963f248baae070c609d49a68ef7db094a7c3bb442c9908b7251a2b1d3058bc71c450bacb88bbded6c99943b618fe9d3c7df4834323942a9b13ea821ce062d85904c5078156e3325da50bce2848598eade14f121ee9de8f6b98ef6bf592933103f567cbaf4b5b082b24ccc461118bc081ca925a0f6d0ab84b9eaaf64a956af511d254d6d1c09299ece040905f7c8fd1d6007907ef795d38744a5b0d9476f7e59476addf0b5f4abb0f7da7b5e21eb9842a7df6b4466913b41a08b06e9684ddf5ef1ba3e730f12be4c80d79ea573549dd3badaded7b7a9f5274e44154ddddf3907c08b977b19820eba4a5a0a40bfd4773d91f3c6329ddb88dd923e2b611cf4fc64fed3c98f9402d2a6c5179ace6f0ac50875e361cabd6610dd789138444ebefd72d0608272716a2359dc3e660ba047970991ac1aa83a665bb5245d9fb16eb4a8db99389d3f1386af7f2931fd09979475f0f4489aa99e6628f9cea46790be34f9d7e3aeceafc2b174650850fdabd4af0e6f84c8620cb0bba96b67f1599fec9406060be53b0c0e626e5cc88b0abb74f2c99f3157076e68cbc6593c544862aaa43b8489c1bf6b0bee80c9a608619e4641447d5422172f46774686b7efa3cedc8a837fc7debbe8598874c52c48c85df82e2f796daf04489458e74936e95ca63aa1594dac0a6708462f342747a43ca99fce71488794166fd1cedda1d444ca877ee10b56194a3ebf2114c2924210de0fb0698a6082ba171145150cf0c433adc7617520ca7626a9842929ab1831da8ccc128ba534ff27ae20f063d16b46f67654e372217e9d5f908d35cb1993b23dd4a83796009b68533270434744bc18b608c3bdc0ffcf64f691455795628987185ae688994e34541f630179533cf6b6ab12d0a150761aa490652a987e9906050c3ccb1fc677dde544296d35410c2f8b70bcc8b1927869db81cf1cdcabf190a9e946dce8439f09a98ae39e08f4d54a489cb7bab7795173c3c0dd0be506f9f8d38425b4e78882a028fd8fb2b9051d3eafcbad61a4a78f4caeab1c2041cdf7b55d3fff546f37beb9454c795e9e19a678cd087d74191e27c8a35584dc548d8fc57c5f92ec630723b335848ea5405c56631d58fa365d9fb88c2ab13d262403518dd862e9111bff48db9554fe512e2e40f96c47186aab5b9365c09692c7b2ff2e1bc5514726396abfc36263922e58be98abd1ddaef1ad23fb0f6f31e2c67315fe19d3a38477ce82d965b2c6c14ebb6872eb2acf6ca9a5860c2ea4d691d46b9cbd19352cb6b328486a07c6bf38af80e423cd6394bd9b7fc892011672833ce3d4c02561887a546d27837ca2662b5d72f595c035018a0511e22b72b8682ab65f8d59edab36389c69b5d8e64c35dd9dc78e6261fa3d141258ed9e9e8553f98e152751d5c9ba8712647e46b093a61984fc08172419a5a2aa08aacc487af4a7854d2ed34c812e96c3c56d8b7beaca74db439b1447b5102e6f66f686fb91e16cd82dc52182bbe5a6f2648d09163b3ef9c17f1b4c9867351913b2653cf4e60c5d44706245989da8f0a8392c941af9d7067496809102608fe8b60734b0c90da122c3432b40eaccafed5f5b37948dc9764337eb7016c24d717ae5ecff4d4f8c5c4aea686680a4b5a79b7f254acb0b46530782484cf8041fab719a3549c70767574c7e6aaa87e60b384ce53180540a6448e2c6743890d8eb6a5c38255cf6f86343bb82e2e57f2cd89ff8029e60267f821b7994199c741098be16e9fcdfd08d76a150761c6094776e270833d8d0cb83d2aeb13ecf2146dd46768338b4ecd8124252c2e620fd98b11d50728aed97a475c36e92b07a12792be948e95e3d26d15f4cc7c669d23d93f7cbead515f7f996afe9119415ed3b03d15e59474ba9e3c9a7c1476f3b8f66c099d85689785b712e82316f5afb6e16db12911b2d19b650e547608ea35af216561d61f36c5bcd3af7f64d9c56732f999e6e33c6e63aef13b3cf3ef69c773b4d0def25269296d535dae2948abd7918b95ffcfbce0236dac8b08b91d91aba716668bd5556d1aaf4e50d296af985a52cf35669b3aa29ea192c9fb34c471f65ec7242648c6fe22abafeb2b9bf349276eb55d0a9ec35399d98aa8ecb5613ffe530c6a5b93d4f713f3256e7a74cbf40e15a402df80c2bc287fc7ad1d1f665dba5139f56a865c0dae06048698a886da045ebb6bdddc29755947d090a6cddfe14f23dc400245211d55314160d2d852a659de834af8e24effd2e0396982c03e29fb94d3f10cd8bd57bbbb9e0945d5deacc5b33969aea3f7af0821327b9a976e8e4a82a41635c4137dee27741ccd001e559f6f6165e0b2d8062d352442689e7aa747438412c4a43dab94ac7f839eefe38c81b8277e565143e4a550c122ab0eef1cf3ddb6e41fd95ec763b636ed3aa62a85da14b1278d93d4e0ce8efb5ae1ada9dccc8c07dee130991098521bdba59399f7f0ad5f3349fe60745cf19f84e4f060a1efadd7c0a864177b46ee853a5d51e6da6382228cab564aee9a688f96e4f0e992dbb9be22629204910f4185085461ae92c5fdda4683212b1f8f03d6730dcce43f0932b6ad3866dbaa9e40493889c7857822e8ea1d498e2690bd232e4a383dee59071fe7cbc0db53d23d60ecf1a7adab5116eda840c57440f1e20989202d6b010d0fd58dc57a83ab1f5ee19c79d7d0819995ebaa36d4c952a861c0958911997d84f2c249a0e29f602966adce8f41f9b8bc051bf4c127aa39b26632e81a00b365d6447725311bdcb9db6a5d62aa46c2049fd2d54b670e308c2f62c9c58a6343905f34fb7a12fdadca999ca13e7bbfba72100ec625eec11d9ffdbf898d57ce95fd606aa57e3d259c6889e2af4e4ead2d9c38327b42d68f65453be8f2798df47ae392817ae9ae6200c3659ee9b8622c948943e5aaee24be9d35a333a20a803c18d3a4f18c22018f4a1f4dca3fef010f00150badbf90c04bfcba748329e835eeeb0783cc2f5246b01e853a84e391a9bf0332fd6fac22c64b83987b51040d09110d0b66a24fe213c72281eef8e79021c9b445056bca406ba1a4f805672f724247b7b2d0bc712cac7bf6e7a8d9a3206762633fd663760c4183309e3209a017514f7f23b350d80c009ae501f46e053b2eefde5f2b8a7ee1d3d4128cc1fd9cd8fc42b5504e2176eb802b21ae7a57d6e6928b82982fcf96615bc4d5b3f8cec1e4a6193961ba5493d9e992ffc933aa3e0d2c47b1217e199223d48e69800ed9a4d2fa5d9d4a8f16e86062b0ee2ca9f11fdfb4331effbda733a1764136e192f49a439910d67056cfed89d05558adcdf54e7eb014d510c35250bf6bffefbf7c3f6ac3d4f26fa205b8857f38256378006209644587d4c56a06eebbfe9cfb0d20a214797699a8960db62dcf84595014a8bcd60d626bbfa0d0647d966635f24111f2ce5a9dedadf34f38217879d27c4e9745b068fb0acc30d4b9a78f753aa286a4cb08ee58a451bc47f64b41cd1cd602db92f691befefbd139a1f919d275dad6e4fef7266999f1ec6f0018435b578032eba39a15b0cdc34ee53acbacbf4a7eca103bec5ff72b08068bf2183643fa24ff1aa69d5125a0d1f666d648550193ccb22f6692590ddfac8866f63fc33eb14844ea6b3b4e18bc613c1d6561506f933d1e8f72b7aa43f7c47e34b921459e230ccf7e333215025482e67f1df4db4aedf4566d5783a64c4511367b69d08ee5076878a22c8db871018ea8d581fb5c0f9e6a9e61f2dc9758c06a6647e4f09c1eff6061ab095b76a60a22ec7cb8a5528d218ef3484ac7574a7b3f63915d867e26b155400b50e1cf6a9d03b8a10ec8e2c4768cf1d2c02de656e7114ffc030ced3f94c0dd0b875cb1ad5cd64e2cf318118d50b45254e0a000a2cb09627489840ce0f4f7c9cecb8e19f01ddff7573a4183e4ff4f85991a15dd5c677f940b57667728b53126a4b45b53c25b6bdf6902ff5ab974995709babdeea1a5c484463fe349efe694c02035a2c149eb3fd813e4d71398503d0a4286443891cd0caf5d9450e27c9142b77565594935c590f44eca1a7d0a74d7059e4017d92e3cb53d3a13f6de6d4ab62800ab64afedfe678f500d8ca51c4e88765247fe88160e4c1ebebee15d0dfdcb138f81d290cb77c0270d7a8666de54e0f255454df5877c7b78bc694175a7e6cf5ce997c9776c208b03b6e11df17d1570d17f7614b5c1da400871268e010727ee8c54db25736d2bac7c56eabf0a8a3aa1e1801f00d24b56f2e30559c39d6bdd655c0e2bed036b616bdac6f11feb41d33608bb9d262c069e102e3079b2ba55614ee7ca498311e72897544db3e6dcb2cb3cd6f1ada2b4f71318b2d5b443cc76907774eaff4c7bed9c77fe264058b5becabc79bf185c0b5a3ad7aed92c28326a188328aedc9cf405541cf2ea2941102cfa5b52f261c550753ecc1ce767015e782f74f2ab3b913d7aff321c138368f77239fce68e9205718f9a87cd8590d1ca56659373e18d951744774b69831f0e51f04a1c5a86462b168890f6f5e12fc0248aeb245f26885a504a0962fb95b1448c629c3c3cb36d3d15bd7d56076c867002f9e58e12fe0d2f86b7508215896c839ea071c5507f30737e34d791f4614687dd0aea9c4debdc95a7dd6d436e9baaac51bffad1ada7d683387eabc5fd384c70469c971342599c6c90c90a57b23df95c7730e25220a8f830d9f9f978945859a1267072a8475d4e5e5011ce6144a6eec6d01d2be2cc558bffee47f7feeb87aa4c38aab5938b444e314c2939322fe81aaf0d32ba9d1c43c4b9f85c84e9284a50a169c65e2100064eb587ace01e361ee6c1bad211867dac692932e23e84795bf6cc58dd06fa1c1c31544e5dce729bb25ca3691b9470d5fa26c627e55127a9fdd4028ae2320192c0df9061db198445c0fcadca9862f0c29f3e62898c00479d0e8c8fb1d619c53ce8181d2b14240da714f82c8c50815ce059fc954595036e41d36bca909b6c8555d152c13ef5f4ff9f6fe7ac6632ebdcf19238d11c2359e6ffd7dd2053378e57ba44704eef580aae7cdf553eed5b0c6892b86e522e6a0912c8d9ccfb639e1f6ea7fccd6c9d04a676ce7e17642b61125329665e21aaa704b2679d698b32ae8388f1f7438e6b50b3d1c5dda7958e0be0be4e286a7a37ea3a6863a99bd4056e80a16866c6d6a121f4d936db302d5335033412ada903ad9bc492f3eb61b3384a4a86717df9e517cf593caab9b4ac8b229a80b934783cae88357c4cc7da8f0d819ebd1eb2961acb7b014411d23ee42e853e85f4f3863005a0a8356cacc15a26f90c549cfd307bdc88bf1c5a21778301ebd20054cfed89acc59cf29237e6c382f2e4f43e6eef14dabce06df261e2bcbadab8c60b9bfc684aceece9e1cf2f0b3751564a037aed891c2686547cb01c6982f073cb0b2882860b6daf111a034f5738d3ea1f67a0e7f4097eec1f9c355c6a9cd5646feed86f4ba075969ad71406f56e16fd5f3e05fc05fe18ea724d114aba4a2d7f312fc77b7b0d1616b00a124ded31251f2218eb95fb444241eca65c051205e7c1a04a6096a0cf9b9a8831907d569ec6de4a92610cf9147bfc0838e1b232d1642d16dcfd7de72c0ecd45c45506ec5641b526c40866c465e8bb64656677e8c1c81fbb00e26b8f775065298e6274a8ab8ca63e8c43a90edce5bede53526e7c2d37808a010627635e1b0d397850edcf6108e5ef1d85233be77b3838a4efda50de1662b9ee643416f92be4896bc6636c9eeddc4a87eb2b5e44635331aadd7cf9a49a4218e941dc76151c6d2363083fcd3f9cb5afb32345ad9b307a5625122fdca8b930cb7864362d890ded2df208ffec06085ab9404199ae419475360abec16d28", 0x2000, &(0x7f0000007040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000007000)={0x20}, 0x0})
ioctl$FS_IOC_RESVSP(r1, 0x40086602, &(0x7f0000001200)={0x0, 0xdaff, 0x0, 0x1})

297.635235ms ago: executing program 7 (id=1227):
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x4)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r0, &(0x7f0000000100)=[{{0x0, 0xffffffc2, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x51, 0x0)
r2 = accept4$unix(r1, 0x0, 0x0, 0x800)
recvfrom$unix(r2, &(0x7f0000000140)=""/248, 0x40000, 0x0, 0x0, 0x0)

296.871026ms ago: executing program 6 (id=1238):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000340)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_cmd={0x0, 0x80000000, 0x3, 0x9, 0xf, 0x3, 0x5, 0xfc, 0x0, 0xff, 0x0, 0x0, 0x6, 0xff, 0x0, 0x5}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000340)={'tunl0\x00', 0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, 0x0)

296.262446ms ago: executing program 0 (id=1228):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$netlink(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)={0x3c, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xc}, @crypto_settings=[@NL80211_ATTR_SOCKET_OWNER={0x4}], @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4044044}, 0x0)

222.298247ms ago: executing program 3 (id=1230):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r2, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

118.775889ms ago: executing program 7 (id=1231):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000680)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x9, 0x28, 0x265, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x4}}}}}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001800410100000000ffdbdf2502180000ff0000080000000208000100ac1414"], 0x3c}}, 0x40)
syz_emit_ethernet(0x36, &(0x7f0000000680)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x9, 0x28, 0x68, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x4, 0x2}}}}}}, 0x0)

0s ago: executing program 3 (id=1232):
socket$kcm(0xa, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(0x4)
close(0xffffffffffffffff)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

T4296] Call Trace:
[   76.383050][ T4296]  <TASK>
[   76.386023][ T4296]  dump_stack_lvl+0x188/0x250
[   76.390866][ T4296]  ? __rwlock_init+0x140/0x140
[   76.396105][ T4296]  ? show_regs_print_info+0x20/0x20
[   76.401480][ T4296]  ? load_image+0x410/0x410
[   76.406206][ T4296]  ? do_raw_spin_unlock+0x11d/0x230
[   76.411461][ T4296]  ? _raw_spin_unlock+0x24/0x40
[   76.416534][ T4296]  p9_client_clunk+0x2a9/0x380
[   76.421575][ T4296]  ? v9fs_statfs+0xb4/0x380
[   76.426255][ T4296]  v9fs_statfs+0x1b7/0x380
[   76.430976][ T4296]  ? slab_free_freelist_hook+0xec/0x170
[   76.436934][ T4296]  ? v9fs_drop_inode+0x130/0x130
[   76.442280][ T4296]  ? rcu_is_watching+0x11/0xa0
[   76.447294][ T4296]  user_statfs+0x1fa/0x5e0
[   76.451772][ T4296]  ? vfs_statfs+0x2c0/0x2c0
[   76.456464][ T4296]  __x64_sys_statfs+0x11d/0x260
[   76.461584][ T4296]  ? fd_statfs+0x390/0x390
[   76.466252][ T4296]  ? __context_tracking_exit+0x4c/0x80
[   76.471808][ T4296]  ? __lock_acquire+0x7b50/0x7b50
[   76.476992][ T4296]  ? lockdep_hardirqs_on+0x94/0x140
[   76.482331][ T4296]  do_syscall_64+0x4c/0xa0
[   76.486887][ T4296]  ? clear_bhb_loop+0x30/0x80
[   76.491880][ T4296]  ? clear_bhb_loop+0x30/0x80
[   76.496849][ T4296]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   76.502980][ T4296] RIP: 0033:0x7f045bd0ce59
[   76.507643][ T4296] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   76.528603][ T4296] RSP: 002b:00007f0459f45028 EFLAGS: 00000246 ORIG_RAX: 0000000000000089
[   76.537200][ T4296] RAX: ffffffffffffffda RBX: 00007f045bf86090 RCX: 00007f045bd0ce59
[   76.545315][ T4296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[   76.553898][ T4296] RBP: 00007f045bda2e6f R08: 0000000000000000 R09: 0000000000000000
[   76.562436][ T4296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.564134][ T4298] netlink: 48 bytes leftover after parsing attributes in process `syz.1.8'.
[   76.570532][ T4296] R13: 00007f045bf86128 R14: 00007f045bf86090 R15: 00007fff5be5a448
[   76.570568][ T4296]  </TASK>
[   76.867355][ T4310] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   77.223454][ T4325] loop0: detected capacity change from 0 to 4096
[   77.363355][ T4325] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   77.376131][ T4331] netlink: 8 bytes leftover after parsing attributes in process `syz.2.20'.
[   78.121489][ T4189] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[   78.413037][ T4335] loop2: detected capacity change from 0 to 131072
[   78.510580][ T4335] F2FS-fs (loop2): invalid crc value
[   78.564805][ T4335] F2FS-fs (loop2): Found nat_bits in checkpoint
[   78.626957][ T4335] F2FS-fs (loop2): Cannot turn on quotas: -2 on 2
[   78.646161][ T4335] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[   78.980880][ T4355] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   79.244286][ T4363] netlink: 'syz.3.30': attribute type 1 has an invalid length.
[   80.269921][ T4382] loop0: detected capacity change from 0 to 512
[   80.509375][ T4382] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   80.576266][ T4382] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.615459][ T4393] loop1: detected capacity change from 0 to 512
[   80.656421][ T4393] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   80.674361][ T4393] EXT4-fs (loop1): invalid journal inode
[   80.680938][ T4393] EXT4-fs (loop1): can't get journal size
[   80.734113][ T4393] EXT4-fs (loop1): 1 truncate cleaned up
[   80.740958][ T4393] EXT4-fs (loop1): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[   80.834452][ T4398] loop2: detected capacity change from 0 to 128
[   80.878169][ T4400] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.890637][ T4400] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.928998][ T4398] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_dev=0x0000000000000005,,errors=continue. Quota mode: none.
[   80.943926][ T4398] ext4 filesystem being mounted at /6/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   81.097216][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   81.130829][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   81.151213][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   81.191710][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   81.207582][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   81.219840][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   81.260647][ T4404] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.268374][ T4404] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.287960][ T4404] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.295688][ T4404] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.659028][ T4424] fuse: Bad value for 'fd'
[   82.664145][ T4430] loop3: detected capacity change from 0 to 32768
[   82.722399][ T4430] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.50 (4430)
[   82.855389][ T4430] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[   82.896575][ T4430] BTRFS info (device loop3): turning off barriers
[   82.921519][ T4430] BTRFS info (device loop3): turning on async discard
[   82.937962][ T4430] BTRFS info (device loop3): doing ref verification
[   82.951140][ T4430] BTRFS info (device loop3): using free space tree
[   82.961671][ T4430] BTRFS info (device loop3): has skinny extents
[   83.181659][ T4461] loop2: detected capacity change from 0 to 32768
[   83.193009][ T4430] BTRFS info (device loop3): enabling ssd optimizations
[   83.234877][ T4461] =======================================================
[   83.234877][ T4461] WARNING: The mand mount option has been deprecated and
[   83.234877][ T4461]          and is ignored by this kernel. Remove the mand
[   83.234877][ T4461]          option from the mount to silence this warning.
[   83.234877][ T4461] =======================================================
[   83.405934][ T4461] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   83.739401][ T4461] (syz.2.63,4461,0):ocfs2_parse_options:1459 ERROR: Invalid heartbeat mount options
[   84.001150][ T4190] ocfs2: Unmounting device (7,2) on (node local)
[   84.632139][ T4527] loop2: detected capacity change from 0 to 8192
[   85.106240][ T4548] loop3: detected capacity change from 0 to 1024
[   86.086145][ T4562] loop0: detected capacity change from 0 to 32768
[   86.281388][ T4562] XFS (loop0): Mounting V5 Filesystem
[   86.379256][ T4562] XFS (loop0): Ending clean mount
[   86.597108][   T26] audit: type=1800 audit(1782271731.776:2): pid=4562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.96" name="file1" dev="loop0" ino=6156 res=0 errno=0
[   86.933138][ T4189] XFS (loop0): Unmounting Filesystem
[   86.974341][ T4190] syz-executor (4190) used greatest stack depth: 20336 bytes left
[   87.255081][ T4276] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.545328][ T4276] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.779512][ T4276] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.822729][ T4600] netlink: 'syz.0.100': attribute type 11 has an invalid length.
[   88.054252][ T4276] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.654966][ T4622] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input5
[   89.011759][ T4633] fuse: Bad value for 'fd'
[   89.078184][ T4602] chnl_net:caif_netlink_parms(): no params data found
[   89.125465][ T4636] netlink: 4 bytes leftover after parsing attributes in process `syz.1.116'.
[   89.480130][ T4602] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.492636][ T4178] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   89.495867][ T4602] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.509903][ T4602] device bridge_slave_0 entered promiscuous mode
[   89.545924][ T4602] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.559836][ T4665] loop3: detected capacity change from 0 to 4096
[   89.564082][ T4602] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.586460][ T4665] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[   89.597048][ T4602] device bridge_slave_1 entered promiscuous mode
[   89.671491][ T4602] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.735221][ T4602] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.844536][ T4602] team0: Port device team_slave_0 added
[   89.865581][ T4602] team0: Port device team_slave_1 added
[   89.904622][ T4178] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   89.921446][ T4178] usb 1-1: config 0 has no interfaces?
[   89.930150][ T4178] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   89.947352][ T4178] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.002797][ T4676] loop1: detected capacity change from 0 to 512
[   90.028675][ T4602] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.038003][ T4178] usb 1-1: config 0 descriptor??
[   90.058876][ T4602] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.097938][ T4272] Bluetooth: hci0: command 0x0409 tx timeout
[   90.110004][ T4602] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.155106][ T4676] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   90.377854][ T4602] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.391118][ T4602] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.496875][ T4602] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.734196][ T4602] device hsr_slave_0 entered promiscuous mode
[   90.766095][ T4602] device hsr_slave_1 entered promiscuous mode
[   90.788463][ T4602] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   90.809802][ T4602] Cannot create hsr debugfs directory
[   90.860678][ T4697] netlink: 24 bytes leftover after parsing attributes in process `syz.1.128'.
[   90.977036][ T4276] device hsr_slave_0 left promiscuous mode
[   91.022965][ T4276] device hsr_slave_1 left promiscuous mode
[   91.046761][ T4276] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.112358][ T4276] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.208584][ T4276] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.295438][ T4276] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.350263][ T4276] device bridge_slave_1 left promiscuous mode
[   91.417032][ T4276] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.511930][ T4276] device bridge_slave_0 left promiscuous mode
[   91.518703][ T4276] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.554558][ T4276] device veth1_macvtap left promiscuous mode
[   91.563585][ T4276] device veth0_macvtap left promiscuous mode
[   91.571361][ T4276] device veth1_vlan left promiscuous mode
[   91.578304][ T4276] device veth0_vlan left promiscuous mode
[   91.987163][ T1110] cfg80211: failed to load regulatory.db
[   92.152199][    T7] Bluetooth: hci0: command 0x041b tx timeout
[   92.186480][    T7] usb 1-1: USB disconnect, device number 2
[   92.465843][ T4276] team0 (unregistering): Port device team_slave_1 removed
[   92.510584][ T4276] team0 (unregistering): Port device team_slave_0 removed
[   92.559189][ T4276] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   92.600556][ T4276] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   92.823096][ T4276] bond0 (unregistering): Released all slaves
[   93.191690][ T4752] netlink: 36 bytes leftover after parsing attributes in process `syz.4.144'.
[   93.395343][ T4756] netlink: 'syz.3.143': attribute type 8 has an invalid length.
[   93.403061][ T4762] syz.1.147 uses obsolete (PF_INET,SOCK_PACKET)
[   93.471705][ T4756] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.479761][ T4756] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.681305][ T4769] bond1: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[   93.785010][ T4769] bond1: (slave lo): making interface the new active one
[   93.813812][ T4769] bond1: (slave lo): Enslaving as an active interface with an up link
[   93.854507][ T4769] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[   94.023704][ T4602] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   94.080586][ T4602] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   94.139299][ T4602] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   94.192317][ T4602] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   94.223710][    T7] Bluetooth: hci0: command 0x040f tx timeout
[   94.540257][ T4792] 9pnet: p9_errstr2errno: server reported unknown error 0x000000
[   94.612504][ T4602] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.712096][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   94.720610][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   94.784723][ T4602] 8021q: adding VLAN 0 to HW filter on device team0
[   94.832269][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   94.841569][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   94.932584][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.939806][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.015035][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.078104][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   95.136075][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   95.222593][  T155] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.229869][  T155] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.004623][ T4807] loop0: detected capacity change from 0 to 131072
[   96.057621][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   96.097395][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   96.186840][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   96.211763][ T4807] F2FS-fs (loop0): Found nat_bits in checkpoint
[   96.301483][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   96.312331][    T7] Bluetooth: hci0: command 0x0419 tx timeout
[   96.319233][ T4807] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   96.393472][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   96.424666][ T4807] F2FS-fs (loop0): inode (7) has corrupted xattr
[   96.445256][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   96.470249][ T4807] F2FS-fs (loop0): inode (7) has corrupted xattr
[   96.477739][ T4807] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[   96.491355][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   96.503618][ T4807] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[   96.514786][ T4807] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[   96.525237][ T4807] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[   96.535696][ T4807] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[   96.552970][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   96.613880][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   96.656915][ T4602] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   96.717154][ T4602] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   96.778833][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   96.798260][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   97.485015][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   97.549163][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   97.609616][ T4602] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.111995][ T4178] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   98.402907][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   98.433440][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   98.492294][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   98.512652][ T4178] usb 2-1: config 1 has an invalid interface number: 69 but max is 0
[   98.520950][ T4178] usb 2-1: config 1 has no interface number 0
[   98.538558][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   98.552476][ T4178] usb 2-1: config 1 interface 69 has no altsetting 0
[   98.573131][ T4602] device veth0_vlan entered promiscuous mode
[   98.610922][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   98.652892][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   98.678785][ T4602] device veth1_vlan entered promiscuous mode
[   98.772100][ T4178] usb 2-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=ac.d9
[   98.781501][ T4178] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.806081][ T4602] device veth0_macvtap entered promiscuous mode
[   98.830306][ T4178] usb 2-1: Product: syz
[   98.836364][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   98.844745][ T4178] usb 2-1: Manufacturer: syz
[   98.849622][ T4178] usb 2-1: SerialNumber: syz
[   98.856241][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   98.899364][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   98.932796][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   98.989664][ T4602] device veth1_macvtap entered promiscuous mode
[   99.025713][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   99.064087][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   99.152730][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.192323][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.237747][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.287728][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.301441][ T4178] comedi comedi5: This driver needs USB 2.0 to operate. Aborting...
[   99.331944][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.349107][ T4178] usbduxfast 2-1:1.69: driver 'usbduxfast' failed to auto-configure device.
[   99.383327][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.441973][ T4518] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   99.447050][ T4178] usb 2-1: USB disconnect, device number 2
[   99.456340][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   99.514477][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.560807][ T4602] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.580987][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   99.603346][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   99.620685][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.651820][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.664325][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.681888][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.712258][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.743680][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.787581][ T4602] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.812192][ T4518] usb 1-1: config 0 has an invalid interface number: 50 but max is 0
[   99.830555][ T4518] usb 1-1: config 0 has no interface number 0
[   99.832567][ T4602] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.864468][ T4518] usb 1-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   99.931312][ T4602] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.955562][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   99.965918][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  100.008007][ T4602] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.032049][ T4602] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.061905][ T4602] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.062044][ T4518] usb 1-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  100.062073][ T4518] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.070917][ T4602] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.113332][ T4518] usb 1-1: Product: syz
[  100.128882][ T4518] usb 1-1: Manufacturer: syz
[  100.147380][ T4518] usb 1-1: SerialNumber: syz
[  100.176418][ T4518] usb 1-1: config 0 descriptor??
[  100.207493][ T4897] netlink: 24 bytes leftover after parsing attributes in process `syz.1.171'.
[  100.254642][ T4518] yurex 1-1:0.50: USB YUREX device now attached to Yurex #0
[  100.420020][ T4902] loop3: detected capacity change from 0 to 1024
[  100.534138][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.569368][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.600276][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  100.709945][ T4518] usb 1-1: USB disconnect, device number 3
[  100.724850][ T4823] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.738114][ T4823] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.784593][ T4518] yurex 1-1:0.50: USB YUREX #0 now disconnected
[  100.802508][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  100.833448][ T4905] device syzkaller1 entered promiscuous mode
[  100.894211][ T4905] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  101.011684][ T4917] netlink: 12 bytes leftover after parsing attributes in process `syz.5.103'.
[  101.320957][ T4928] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  101.719915][ T4944] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  101.753840][ T4944] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  101.802762][ T4946] loop0: detected capacity change from 0 to 8192
[  102.333705][ T4963] Zero length message leads to an empty skb
[  103.726542][ T5016] netlink: 12 bytes leftover after parsing attributes in process `syz.5.205'.
[  104.515270][ T5041] netlink: 'syz.5.212': attribute type 1 has an invalid length.
[  104.542895][ T5041] netlink: 'syz.5.212': attribute type 22 has an invalid length.
[  104.631420][ T5041] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.639133][ T5041] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.985496][ T5027] loop3: detected capacity change from 0 to 32768
[  105.040311][ T5062] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  105.093698][ T5027] xfs: Unknown parameter 'smackfstransmute'
[  105.121362][ T5023] syz.3.208 sent an empty control message without MSG_MORE.
[  105.173329][ T5066] netlink: 'syz.0.219': attribute type 4 has an invalid length.
[  105.417950][ T5070] netlink: 'syz.0.219': attribute type 4 has an invalid length.
[  105.462975][ T5077] loop3: detected capacity change from 0 to 128
[  105.504716][ T5082] netlink: 12 bytes leftover after parsing attributes in process `syz.1.223'.
[  105.644290][ T5077] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  105.765072][ T5077] ext4 filesystem being mounted at /40/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  106.055127][ T5101] af_packet: tpacket_rcv: packet too big, clamped from 32 to 4294967272. macoff=96
[  106.156998][ T4234] libceph: connect (1)[c::]:6789 error -101
[  106.192519][ T4234] libceph: mon0 (1)[c::]:6789 connect error
[  106.249723][ T5094] ceph: No mds server is up or the cluster is laggy
[  106.304048][ T1110] libceph: connect (1)[c::]:6789 error -101
[  106.332183][ T1110] libceph: mon0 (1)[c::]:6789 connect error
[  106.624075][    T7] libceph: connect (1)[c::]:6789 error -101
[  106.636386][    T7] libceph: mon0 (1)[c::]:6789 connect error
[  106.641953][    C1] sched: RT throttling activated
[  107.244848][ T5126] IPv4: Oversized IP packet from 127.202.26.0
[  107.369712][ T5132] netlink: 4 bytes leftover after parsing attributes in process `syz.4.239'.
[  107.422218][ T5132] netlink: 12 bytes leftover after parsing attributes in process `syz.4.239'.
[  107.514251][ T5140] loop0: detected capacity change from 0 to 128
[  107.621796][    C1] Unknown status report in ack skb
[  107.704002][ T5140] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  107.811117][ T5140] ext4 filesystem being mounted at /58/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  107.994926][ T5140] syz.0.240 (pid 5140) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  108.379126][ T5162] netlink: 'syz.4.249': attribute type 4 has an invalid length.
[  108.452137][ T5166] netlink: 'syz.4.249': attribute type 4 has an invalid length.
[  109.006555][ T5149] loop3: detected capacity change from 0 to 32768
[  109.137646][ T5196] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  109.178591][ T5149] XFS (loop3): Mounting V5 Filesystem
[  109.405273][ T5149] XFS (loop3): Ending clean mount
[  109.498724][ T5118] loop1: detected capacity change from 0 to 40427
[  109.589140][ T5182] loop0: detected capacity change from 0 to 40427
[  109.638623][ T5118] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  109.655474][ T4191] XFS (loop3): Unmounting Filesystem
[  109.690675][ T5182] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  109.717428][ T5182] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  109.783797][ T5182] F2FS-fs (loop0): invalid crc value
[  109.801911][ T5118] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  109.847381][ T5182] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  109.925156][ T5118] F2FS-fs (loop1): invalid crc value
[  109.988763][ T5118] F2FS-fs (loop1): Failed to start F2FS issue_checkpoint_thread (-12)
[  110.116708][ T5182] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  110.142674][ T5182] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  110.370809][ T4189] attempt to access beyond end of device
[  110.370809][ T4189] loop0: rw=2049, want=45104, limit=40427
[  112.565652][ T5276] loop0: detected capacity change from 0 to 256
[  112.769153][ T5276] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  113.144516][ T5268] loop5: detected capacity change from 0 to 131072
[  113.206555][ T5268] F2FS-fs (loop5): invalid crc value
[  113.250784][ T5268] F2FS-fs (loop5): Found nat_bits in checkpoint
[  113.292939][ T5268] F2FS-fs (loop5): Cannot turn on quotas: -2 on 2
[  113.321556][ T5268] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  113.387214][ T5295] IPVS: rr: FWM 3 0x00000003 - no destination available
[  116.351990][ T4178] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  116.641992][ T4178] usb 6-1: Using ep0 maxpacket: 8
[  116.782138][ T4178] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  116.813033][ T4178] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  116.844089][ T4178] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  116.881931][ T4178] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  116.924299][ T4178] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  116.978637][ T4178] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  117.018972][ T4178] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.206863][ T1110] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  117.672095][ T1110] usb 4-1: config 0 has an invalid interface number: 35 but max is 0
[  117.680257][ T1110] usb 4-1: config 0 has no interface number 0
[  117.707128][ T1110] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0xE has an invalid bInterval 0, changing to 10
[  117.741986][ T1110] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  117.962256][ T1110] usb 4-1: New USB device found, idVendor=07d0, idProduct=4101, bcdDevice=ec.5c
[  117.972273][ T5405] usbtmc 6-1:16.0: simple usb_control_msg returned 0
[  117.990234][ T1110] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.021916][ T1110] usb 4-1: Product: syz
[  118.027344][ T1110] usb 4-1: Manufacturer: syz
[  118.040066][ T1110] usb 4-1: SerialNumber: syz
[  118.074062][ T1110] usb 4-1: config 0 descriptor??
[  118.199832][ T1110] cypress_m8 4-1:0.35: Nokia CA-42 V2 Adapter converter detected
[  118.234718][ T1110] nokiaca42v2: probe of ttyUSB0 failed with error -22
[  118.679589][ T4178] usb 6-1: USB disconnect, device number 2
[  119.181825][ T5441] process 'syz.4.309' launched './file0' with NULL argv: empty string added
[  119.854828][ T5458] bond1: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  119.884338][ T5458] bond1: (slave lo): making interface the new active one
[  119.923318][ T5458] bond1: (slave lo): Enslaving as an active interface with an up link
[  119.959867][ T5458] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  120.034881][ T5462] device bond1 entered promiscuous mode
[  120.041029][    T7] usb 4-1: USB disconnect, device number 2
[  120.074974][ T5462] device lo entered promiscuous mode
[  120.102868][    T7] cypress_m8 4-1:0.35: device disconnected
[  120.112330][ T5462] 8021q: adding VLAN 0 to HW filter on device bond1
[  120.450305][ T5480] netlink: 12 bytes leftover after parsing attributes in process `syz.5.317'.
[  120.506025][ T5484] HTB: quantum of class 80060008 is big. Consider r2q change.
[  120.691768][ T5490] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  120.806139][   T26] audit: type=1326 audit(1782271766.036:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5495 comm="syz.0.324" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f807747de59 code=0x0
[  120.861997][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  121.203972][ T5512] xt_hashlimit: max too large, truncated to 1048576
[  121.300794][ T5521] netlink: 24 bytes leftover after parsing attributes in process `syz.4.332'.
[  121.408737][ T5521] netlink: 12 bytes leftover after parsing attributes in process `syz.4.332'.
[  122.745881][ T5558] tipc: Started in network mode
[  122.751180][ T5558] tipc: Node identity ac1414aa, cluster identity 4711
[  122.784067][ T5558] tipc: Enabled bearer <udp:syz2>, priority 10
[  122.807478][ T5558] netlink: 'syz.4.345': attribute type 13 has an invalid length.
[  122.816170][ T5546] loop0: detected capacity change from 0 to 40427
[  122.847667][ T5546] F2FS-fs (loop0): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  122.847808][ T5558] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  122.869926][ T5546] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  122.892624][ T5546] F2FS-fs (loop0): invalid crc value
[  122.935167][ T5558] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  122.948239][ T5546] F2FS-fs (loop0): Found nat_bits in checkpoint
[  122.967346][ T5558] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  123.032389][ T5558] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  123.105759][ T5546] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  123.118810][ T5546] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  123.360203][ T5546] attempt to access beyond end of device
[  123.360203][ T5546] loop0: rw=2051, want=45064, limit=40427
[  123.386813][ T5546] attempt to access beyond end of device
[  123.386813][ T5546] loop0: rw=2051, want=81920, limit=40427
[  123.404643][ T5546] F2FS-fs (loop0): Issue discard(4614, 4614, 1019) failed, ret: -5
[  123.404700][ T5546] F2FS-fs (loop0): Issue discard(5637, 5637, 4603) failed, ret: -5
[  123.856939][ T5586] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  123.999262][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805fc10000: rx timeout, send abort
[  124.147552][ T5588] loop0: detected capacity change from 0 to 1024
[  124.287918][ T5579] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.295582][ T5579] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.296892][ T5588] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  124.499331][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805fc12400: rx timeout, send abort
[  124.509599][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805fc10000: abort rx timeout. Force session deactivation
[  124.531320][ T5588] EXT4-fs error (device loop0): __ext4_get_inode_loc:4334: comm syz.0.353: Invalid inode table block 5 in block_group 0
[  124.556399][ T5588] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5873: Corrupt filesystem
[  124.577504][ T5588] EXT4-fs error (device loop0): ext4_setattr:5586: inode #16: comm syz.0.353: mark_inode_dirty error
[  124.591952][ T5588] EXT4-fs error (device loop0) in ext4_setattr:5645: Corrupt filesystem
[  125.007741][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805fc12400: abort rx timeout. Force session deactivation
[  125.174391][ T5579] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  125.181983][    C1] hrtimer: interrupt took 246183 ns
[  125.237686][ T5579] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  125.783191][ T5579] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  125.797336][ T5579] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  125.806785][ T5579] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  125.817055][ T5579] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  126.072895][ T5583] netlink: 4 bytes leftover after parsing attributes in process `syz.5.355'.
[  126.157255][ T4518] tipc: Node number set to 2886997162
[  126.269273][ T5609] loop1: detected capacity change from 0 to 1024
[  126.341354][ T5609] EXT4-fs (loop1): Ignoring removed orlov option
[  126.387256][ T5609] EXT4-fs (loop1): mounted filesystem without journal. Opts: block_validity,bsddf,user_xattr,norecovery,debug_want_extra_isize=0x0000000000000010,orlov,usrquota,grpquota,norecovery,,errors=continue. Quota mode: writeback.
[  126.560899][ T5604] loop0: detected capacity change from 0 to 32768
[  126.644226][ T5604] 
[  126.644226][ T5604]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  126.644226][ T5604] 
[  126.732161][ T4272] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  126.780980][ T5604] ERROR: (device loop0): dbAlloc: the hint is outside the map
[  126.780980][ T5604] 
[  126.892693][ T5604] ERROR: (device loop0): remounting filesystem as read-only
[  127.033106][ T4272] usb 6-1: Using ep0 maxpacket: 16
[  127.152113][ T4272] usb 6-1: config 0 has an invalid interface number: 68 but max is 0
[  127.160439][ T4272] usb 6-1: config 0 has no interface number 0
[  127.194556][ T4272] usb 6-1: config 0 interface 68 altsetting 0 endpoint 0x81 has invalid maxpacket 254, setting to 64
[  127.412449][ T4272] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=dc.c4
[  127.432943][ T4272] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.464091][ T4272] usb 6-1: Product: syz
[  127.480104][ T4272] usb 6-1: Manufacturer: syz
[  127.493404][ T5647] netlink: 24 bytes leftover after parsing attributes in process `syz.4.381'.
[  127.494503][ T4272] usb 6-1: SerialNumber: syz
[  127.558048][ T4272] usb 6-1: config 0 descriptor??
[  127.563177][ T5647] netlink: 12 bytes leftover after parsing attributes in process `syz.4.381'.
[  127.678655][ T4272] usb 6-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  127.699951][ T5655] xt_hashlimit: size too large, truncated to 1048576
[  128.733987][ T4823] usb 6-1: Failed to submit usb control message: -110
[  128.742308][ T4823] usb 6-1: unable to send the bmi data to the device: -110
[  128.753549][ T4823] usb 6-1: unable to get target info from device
[  128.760157][ T4823] usb 6-1: could not get target info (-110)
[  128.802537][ T4823] usb 6-1: could not probe fw (-110)
[  129.472701][ T1108] usb 6-1: USB disconnect, device number 3
[  129.717623][ T5669] bridge0: port 3(syz_tun) entered blocking state
[  129.790745][ T5669] bridge0: port 3(syz_tun) entered disabled state
[  129.839148][ T5669] device syz_tun entered promiscuous mode
[  129.876435][ T5669] bridge0: port 3(syz_tun) entered blocking state
[  129.883861][ T5669] bridge0: port 3(syz_tun) entered forwarding state
[  130.313877][ T5678] loop0: detected capacity change from 0 to 512
[  130.618801][ T4272] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  131.039229][ T4272] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  131.048740][ T4272] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  131.064645][ T4272] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  131.078673][ T4272] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  131.093741][ T4272] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  131.262511][ T4272] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  131.279790][ T4272] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  131.288949][ T4272] usb 2-1: Product: syz
[  131.293623][ T4272] usb 2-1: Manufacturer: syz
[  131.363395][ T4272] cdc_wdm 2-1:1.0: skipping garbage
[  131.371948][ T4272] cdc_wdm 2-1:1.0: skipping garbage
[  131.401171][ T4272] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  131.410523][ T4272] cdc_wdm 2-1:1.0: Unknown control protocol
[  131.653431][ T4520] usb 2-1: USB disconnect, device number 3
[  131.769294][ T5672] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.869359][ T5695] loop1: detected capacity change from 0 to 128
[  131.878968][ T5672] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  132.029547][ T5695] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  132.538572][ T5672] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.552307][ T5672] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.561484][ T5672] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.571427][ T5672] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.747740][ T5688] netlink: 24 bytes leftover after parsing attributes in process `syz.3.391'.
[  132.947669][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  132.954465][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  132.963660][ T5717] Illegal XDP return value 4294967262, expect packet loss!
[  133.149294][ T5731] netlink: 4 bytes leftover after parsing attributes in process `syz.5.406'.
[  133.178136][ T5731] netlink: 12 bytes leftover after parsing attributes in process `syz.5.406'.
[  133.345965][ T5735] loop1: detected capacity change from 0 to 512
[  133.959929][ T4192] bridge0: port 3(syz_tun) entered disabled state
[  133.976820][ T4192] device syz_tun left promiscuous mode
[  134.014507][ T4192] bridge0: port 3(syz_tun) entered disabled state
[  134.083170][ T5773] netlink: 'syz.3.421': attribute type 1 has an invalid length.
[  134.095138][ T5773] netlink: 'syz.3.421': attribute type 4 has an invalid length.
[  134.114137][ T5773] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.421'.
[  134.446541][ T5787] sctp: [Deprecated]: syz.3.427 (pid 5787) Use of struct sctp_assoc_value in delayed_ack socket option.
[  134.446541][ T5787] Use struct sctp_sack_info instead
[  134.603614][ T5793] netlink: 4 bytes leftover after parsing attributes in process `syz.4.430'.
[  134.627194][ T5793] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  134.637221][ T5793] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  134.646221][ T5793] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  134.655350][ T5793] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  134.683412][ T5793] netlink: 4 bytes leftover after parsing attributes in process `syz.4.430'.
[  134.935985][ T5800] team0 (unregistering): Port device team_slave_0 removed
[  134.990903][ T5800] team0 (unregistering): Failed to send options change via netlink (err -105)
[  135.042148][ T5800] team0 (unregistering): Failed to send port change of device team_slave_1 via netlink (err -105)
[  135.085512][ T5800] team0 (unregistering): Port device team_slave_1 removed
[  135.172081][ T5804] netlink: 32 bytes leftover after parsing attributes in process `syz.0.435'.
[  135.207231][  T155] bond0: (slave bond_slave_0): interface is now down
[  135.222748][  T155] bond0: (slave bond_slave_1): interface is now down
[  135.237838][ T5807] netlink: 'syz.5.437': attribute type 1 has an invalid length.
[  135.272882][ T4241] bond0: (slave bond_slave_0): interface is now down
[  135.290492][ T4241] bond0: (slave bond_slave_1): interface is now down
[  135.359710][ T4241] bond0: (slave bond_slave_0): interface is now down
[  135.379758][ T4241] bond0: (slave bond_slave_1): interface is now down
[  135.406614][ T4823] bond0: (slave bond_slave_0): interface is now down
[  135.420011][ T5807] 8021q: adding VLAN 0 to HW filter on device bond1
[  135.431972][ T4823] bond0: (slave bond_slave_1): interface is now down
[  135.481945][ T4823] bond0: (slave bond_slave_0): interface is now down
[  135.507314][ T4823] bond0: (slave bond_slave_1): interface is now down
[  135.521239][ T5810] bond1: (slave syz_tun): Enslaving as a backup interface with an up link
[  135.562204][  T155] bond0: (slave bond_slave_0): interface is now down
[  135.569058][  T155] bond0: (slave bond_slave_1): interface is now down
[  135.605515][  T155] bond0: now running without any active interface!
[  135.663710][ T1503] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  135.719575][ T5819] loop0: detected capacity change from 0 to 8192
[  135.809721][ T5819] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  135.856598][ T5819] REISERFS (device loop0): using ordered data mode
[  135.869378][ T5819] reiserfs: using flush barriers
[  135.915583][   T26] audit: type=1804 audit(1782271781.146:4): pid=5824 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.443" name="/newroot/51/bus/file1" dev="overlay" ino=305 res=1 errno=0
[  135.964923][ T5819] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  136.044822][ T5819] REISERFS (device loop0): checking transaction log (loop0)
[  136.271342][ T5828] chnl_net:caif_netlink_parms(): no params data found
[  136.368055][ T5841] overlayfs: failed to clone upperpath
[  136.378528][ T5819] REISERFS (device loop0): Using tea hash to sort names
[  136.418632][ T5819] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  136.430193][ T1108] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  136.569437][ T5830] loop3: detected capacity change from 0 to 32768
[  136.634516][ T5830] JBD2: Ignoring recovery information on journal
[  136.610921][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.693180][ T5847] sctp: [Deprecated]: syz.4.449 (pid 5847) Use of int in maxseg socket option.
[  136.693180][ T5847] Use struct sctp_assoc_value instead
[  136.716795][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.763551][ T5828] device bridge_slave_0 entered promiscuous mode
[  136.815603][ T1108] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.854152][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.882059][ T1108] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.893819][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.909976][ T1108] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  136.930516][ T5828] device bridge_slave_1 entered promiscuous mode
[  136.937502][ T5830] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  136.966552][ T1108] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  136.977300][ T1108] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.023077][ T1108] usb 6-1: config 0 descriptor??
[  137.052642][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.088764][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.265022][ T5828] team0: Port device team_slave_0 added
[  137.311315][ T5830] syz.3.445 (5830) used greatest stack depth: 18560 bytes left
[  137.329364][ T5828] team0: Port device team_slave_1 added
[  137.441441][ T4191] ocfs2: Unmounting device (7,3) on (node local)
[  137.453280][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[  137.484425][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  137.524728][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  137.538768][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[  137.547321][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  137.580644][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  137.618660][ T1108] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[  137.708160][ T1108] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  137.802907][ T5828] device hsr_slave_0 entered promiscuous mode
[  137.848754][ T5828] device hsr_slave_1 entered promiscuous mode
[  137.902094][ T5697] Bluetooth: hci2: command 0x0409 tx timeout
[  137.983577][ T5864] netlink: 12 bytes leftover after parsing attributes in process `syz.4.453'.
[  138.148647][ T5867] team0 (unregistering): Port device team_slave_0 removed
[  138.211224][ T5867] team0 (unregistering): Failed to send options change via netlink (err -105)
[  138.224542][ T5867] team0 (unregistering): Failed to send port change of device team_slave_1 via netlink (err -105)
[  138.236499][ T5867] team0 (unregistering): Port device team_slave_1 removed
[  138.269848][ T5864] netlink: 'syz.4.453': attribute type 1 has an invalid length.
[  138.291219][ T5874] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  138.627472][ T5828] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  138.688497][ T5828] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  138.708221][ T5828] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  138.747464][  T154] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.781563][ T5828] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  138.815717][  T154] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.877166][  T154] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.960634][  T154] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.008343][ T5891] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  139.026609][ T5891] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  139.069465][ T5891] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  139.095267][ T5891] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  139.129617][ T5891] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  139.155319][ T5891] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  139.247194][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[  139.306970][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  139.318545][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  139.361182][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[  139.411226][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  139.435775][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  139.467243][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.474777][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.511920][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  139.554403][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  139.585428][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  139.621606][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.629936][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.678176][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  139.724680][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  139.796601][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  139.823889][ T1108] usb 6-1: USB disconnect, device number 5
[  139.824246][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  139.911997][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  139.982979][ T2286] Bluetooth: hci2: command 0x041b tx timeout
[  140.067724][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  140.088655][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  140.169616][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  140.199288][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  140.224348][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  140.253402][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  140.278243][ T5828] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  140.335524][ T5927] netlink: 'syz.3.471': attribute type 18 has an invalid length.
[  140.362233][ T5927] netlink: 4 bytes leftover after parsing attributes in process `syz.3.471'.
[  140.386614][ T5927] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  140.396112][ T5927] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  140.405483][ T5927] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  140.414533][ T5927] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  140.465326][ T5927] netlink: 'syz.3.471': attribute type 18 has an invalid length.
[  140.488664][ T5927] netlink: 4 bytes leftover after parsing attributes in process `syz.3.471'.
[  140.990239][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  141.007007][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  141.090313][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.444479][  T154] device hsr_slave_0 left promiscuous mode
[  141.463901][  T154] device hsr_slave_1 left promiscuous mode
[  141.500021][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.537792][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.568725][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.589732][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.610174][  T154] device bridge_slave_1 left promiscuous mode
[  141.631106][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.648371][  T154] device bridge_slave_0 left promiscuous mode
[  141.663666][  T154] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.717518][  T154] device veth1_macvtap left promiscuous mode
[  141.739694][  T154] device veth0_macvtap left promiscuous mode
[  141.763601][  T154] device veth1_vlan left promiscuous mode
[  141.770018][  T154] device veth0_vlan left promiscuous mode
[  142.062133][ T2286] Bluetooth: hci2: command 0x040f tx timeout
[  142.236365][  T154] bond1 (unregistering): (slave lo): Releasing active interface
[  142.258978][  T154] device lo left promiscuous mode
[  142.274341][  T154] bond1 (unregistering): (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  142.302661][ T5970] loop0: detected capacity change from 0 to 32768
[  142.308922][  T154] bond1 (unregistering): Released all slaves
[  142.378614][ T5970] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.491 (5970)
[  142.453126][ T5970] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  142.480582][ T5970] BTRFS info (device loop0): setting nodatacow, compression disabled
[  142.525718][ T5970] BTRFS info (device loop0): force clearing of disk cache
[  142.552725][ T5970] BTRFS info (device loop0): turning off barriers
[  142.569766][ T5970] BTRFS info (device loop0): use no compression
[  142.585831][ T5970] BTRFS info (device loop0): disabling free space tree
[  142.601904][ T5970] BTRFS info (device loop0): enabling ssd optimizations
[  142.618088][ T5970] BTRFS info (device loop0): using spread ssd allocation scheme
[  142.634475][ T5970] BTRFS info (device loop0): not using ssd optimizations
[  142.647284][ T5970] BTRFS info (device loop0): not using spread ssd allocation scheme
[  142.675565][ T5970] BTRFS info (device loop0): has skinny extents
[  142.825014][ T5970] BTRFS info (device loop0): clearing free space tree
[  142.843093][ T5970] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  142.854388][ T5970] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  142.909695][ T5970] BTRFS info (device loop0): checking UUID tree
[  142.965428][  T154] team0 (unregistering): Port device team_slave_1 removed
[  143.002703][  T154] team0 (unregistering): Port device team_slave_0 removed
[  143.036027][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  143.072591][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  143.377869][  T154] bond0 (unregistering): Released all slaves
[  143.446853][ T5973] team0 (unregistering): Port device team_slave_0 removed
[  143.459079][ T5973] team0 (unregistering): Port device team_slave_1 removed
[  143.545716][ T5990] bridge0: port 3(syz_tun) entered blocking state
[  143.553497][ T5990] bridge0: port 3(syz_tun) entered disabled state
[  143.562025][ T5990] device syz_tun entered promiscuous mode
[  143.569021][ T6020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.489'.
[  143.605090][ T6020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.489'.
[  143.684054][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  143.732322][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  143.811456][ T5828] device veth0_vlan entered promiscuous mode
[  143.873779][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  143.914408][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  143.947890][ T5828] device veth1_vlan entered promiscuous mode
[  143.970321][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  143.984244][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  144.009987][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  144.100205][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  144.114524][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  144.183036][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  144.236644][ T5828] device veth0_macvtap entered promiscuous mode
[  144.280578][ T5828] device veth1_macvtap entered promiscuous mode
[  144.354568][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  144.382099][ T4518] Bluetooth: hci2: command 0x0419 tx timeout
[  144.410435][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.457357][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  144.491885][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.513727][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[  144.522389][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  144.561129][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  144.630238][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  144.678082][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  144.711141][ T6053] loop0: detected capacity change from 0 to 256
[  144.742589][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  144.770428][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.785904][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  144.826757][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.861087][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[  144.923192][ T6053] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  144.943349][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  144.980158][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  145.026954][ T5828] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.104414][ T5828] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.121874][ T5828] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.136056][ T5828] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.364365][ T4258] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.389722][ T4258] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.420719][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  145.445358][ T6070] overlayfs: failed to clone upperpath
[  145.617789][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.658753][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.730065][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  145.814046][ T6077] bridge0: port 3(syz_tun) entered blocking state
[  145.848568][ T6077] bridge0: port 3(syz_tun) entered disabled state
[  145.893301][ T6077] device syz_tun entered promiscuous mode
[  145.917976][ T6082] netlink: 'syz.0.505': attribute type 49 has an invalid length.
[  146.325364][ T6102] netlink: 12 bytes leftover after parsing attributes in process `syz.3.510'.
[  146.664889][ T6108] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  147.297940][ T4178] Process accounting resumed
[  147.330540][ T6138] tmpfs: Unknown parameter '»'
[  147.553496][ T6144] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.522'.
[  147.741101][ T6153] loop3: detected capacity change from 0 to 512
[  148.049900][ T6165] netlink: 24 bytes leftover after parsing attributes in process `syz.4.528'.
[  148.069553][ T6153] EXT4-fs (loop3): 1 truncate cleaned up
[  148.086505][ T6153] EXT4-fs (loop3): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000ed8,nodelalloc,data_err=ignore,noload,norecovery,usrjquota=,,errors=continue. Quota mode: none.
[  148.423533][ T6177] netlink: 4 bytes leftover after parsing attributes in process `syz.0.530'.
[  148.518605][ T6182] netlink: 12 bytes leftover after parsing attributes in process `syz.0.530'.
[  148.615856][ T6186] netlink: 12 bytes leftover after parsing attributes in process `syz.4.532'.
[  148.697857][ T6186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.532'.
[  148.824001][ T6186] netlink: 12 bytes leftover after parsing attributes in process `syz.4.532'.
[  148.887435][ T6186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.532'.
[  149.068932][ T6197] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  149.489738][ T6206] loop6: detected capacity change from 0 to 1024
[  149.506089][ T6211] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  149.591284][ T6206] EXT4-fs (loop6): blocks per group (0) and clusters per group (32) inconsistent
[  149.824704][ T6225] loop2: detected capacity change from 0 to 7
[  149.922061][ T6225] Dev loop2: unable to read RDB block 7
[  149.952545][ T6225]  loop2: unable to read partition table
[  150.017433][ T6225] loop2: partition table beyond EOD, truncated
[  150.052019][ T6225] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  150.089692][ T6230] loop6: detected capacity change from 0 to 4096
[  150.203322][ T6230] EXT4-fs (loop6): Test dummy encryption mode enabled
[  150.210477][ T6230] EXT4-fs (loop6): Ignoring removed orlov option
[  150.325301][ T6230] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpid,debug_want_extra_isize=0x0000000000000010,nodioread_nolock,test_dummy_encryption,lazytime,stripe=0x0000000000000000,minixdf,orlov,,errors=continue. Quota mode: writeback.
[  150.528130][ T6230] EXT4-fs (loop6): resizing filesystem from 512 to 0 blocks
[  150.588299][ T6230] EXT4-fs warning (device loop6): ext4_resize_fs:2004: can't shrink FS - resize aborted
[  151.368949][ T6266] netlink: 4 bytes leftover after parsing attributes in process `syz.0.552'.
[  151.473144][ T6266] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  151.483321][ T6266] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  151.492993][ T6266] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  151.502271][ T6266] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  151.536618][ T6266] netlink: 4 bytes leftover after parsing attributes in process `syz.0.552'.
[  151.838004][ T6292] loop5: detected capacity change from 0 to 512
[  151.943781][ T6292] EXT4-fs (loop5): 1 truncate cleaned up
[  151.987879][ T6292] EXT4-fs (loop5): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000ed8,nodelalloc,data_err=ignore,noload,norecovery,usrjquota=,,errors=continue. Quota mode: none.
[  152.660410][ T6277] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.716724][ T6277] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.240360][ T6277] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.249935][ T6277] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.262216][ T6277] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.271691][ T6277] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.411325][ T6277] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.420961][ T6277] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.430348][ T6277] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.439564][ T6277] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.643278][ T6313] loop6: detected capacity change from 0 to 128
[  153.696607][ T6317] sock: sock_set_timeout: `syz.5.569' (pid 6317) tries to set negative timeout
[  153.719868][ T6319] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  153.757641][ T6313] EXT4-fs (loop6): Test dummy encryption mode enabled
[  153.852725][ T6313] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption=v1,max_dir_size_kb=0x0000000000000002,,errors=continue. Quota mode: none.
[  153.921423][ T6313] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  154.095350][ T6336] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  154.339744][ T6313] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  154.548613][ T6313] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  154.754354][ T5698] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  154.777298][ T6375] loop5: detected capacity change from 0 to 512
[  154.809427][ T6379] loop0: detected capacity change from 0 to 512
[  154.837141][ T6375] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  154.861219][ T6375] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  154.901733][ T6375] EXT4-fs error (device loop5): ext4_orphan_get:1432: comm syz.5.580: bad orphan inode 131083
[  154.935493][ T6375] EXT4-fs (loop5): mounted filesystem without journal. Opts: stripe=0x0000000000000009,init_itable,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  155.182273][ T5698] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  155.224298][ T6379] EXT4-fs error (device loop0): ext4_do_update_inode:5229: inode #16: comm syz.0.581: corrupted inode contents
[  155.232656][ T5698] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  155.267967][ T6379] EXT4-fs error (device loop0): ext4_dirty_inode:6077: inode #16: comm syz.0.581: mark_inode_dirty error
[  155.288233][ T6379] EXT4-fs error (device loop0): ext4_do_update_inode:5229: inode #16: comm syz.0.581: corrupted inode contents
[  155.309856][ T6379] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.581: mark_inode_dirty error
[  155.315179][ T5698] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  155.373561][ T6379] EXT4-fs error (device loop0): ext4_do_update_inode:5229: inode #16: comm syz.0.581: corrupted inode contents
[  155.403342][ T5698] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.440949][ T6379] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  155.458629][ T6379] EXT4-fs error (device loop0): ext4_do_update_inode:5229: inode #16: comm syz.0.581: corrupted inode contents
[  155.535425][ T6379] EXT4-fs error (device loop0): ext4_truncate:4286: inode #16: comm syz.0.581: mark_inode_dirty error
[  155.578967][ T6379] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  155.598917][ T6379] EXT4-fs (loop0): 1 truncate cleaned up
[  155.618439][ T6379] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  155.642226][ T6379] ext4 filesystem being mounted at /127/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.707667][   T23] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  155.743585][ T5698] usb 4-1: usb_control_msg returned -32
[  155.749598][ T5698] usbtmc 4-1:16.0: can't read capabilities
[  155.843065][  T155] EXT4-fs error (device loop0): __ext4_get_inode_loc:4334: comm kworker/u4:3: Invalid inode table block 34 in block_group 0
[  155.936004][ T5698] Process accounting resumed
[  155.969271][ T6414] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.103301][   T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 52, changing to 7
[  156.119822][   T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 9272, setting to 1024
[  156.133691][   T23] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  156.144429][   T23] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.165805][   T23] usb 6-1: config 0 descriptor??
[  156.281438][ T6430] tipc: Started in network mode
[  156.295620][ T6430] tipc: Node identity ac14140f, cluster identity 4711
[  156.309123][ T6430] tipc: New replicast peer: 255.255.255.255
[  156.330575][ T6430] tipc: Enabled bearer <udp:syz2>, priority 10
[  156.356454][ T4516] usb 4-1: USB disconnect, device number 3
[  156.452066][   T23] ath6kl: Failed to submit usb control message: -71
[  156.461708][   T23] ath6kl: unable to send the bmi data to the device: -71
[  156.488663][   T23] ath6kl: Unable to send get target info: -71
[  156.502750][   T23] ath6kl: Failed to init ath6kl core: -71
[  156.556066][   T23] ath6kl_usb: probe of 6-1:0.0 failed with error -71
[  156.571360][   T23] usb 6-1: USB disconnect, device number 6
[  156.920246][ T6452] device syzkaller0 entered promiscuous mode
[  156.957400][ T6452] device syzkaller0 left promiscuous mode
[  156.997065][   T23] Process accounting resumed
[  157.208516][ T6460] libceph: secret too big 32
[  157.442466][   T23] tipc: Node number set to 2886997007
[  157.505727][   T26] audit: type=1800 audit(1782271802.736:5): pid=6447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.602" name="file0" dev="fuse" ino=68719476738 res=0 errno=0
[  157.534066][ T6456] loop5: detected capacity change from 0 to 40427
[  157.579653][ T6456] F2FS-fs (loop5): invalid crc value
[  157.587298][ T6456] F2FS-fs (loop5): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root
[  157.621758][ T6456] F2FS-fs (loop5): Found nat_bits in checkpoint
[  157.693564][ T6472] netlink: 7 bytes leftover after parsing attributes in process `syz.4.613'.
[  157.715149][ T6474] tmpfs: Unknown parameter '»'
[  157.779799][ T6456] F2FS-fs (loop5): Cannot turn on quotas: -2 on 0
[  157.802831][ T6456] F2FS-fs (loop5): Cannot turn on quotas: -2 on 1
[  157.864347][ T6456] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  159.165119][ T6506] loop0: detected capacity change from 0 to 256
[  161.488663][ T6564] overlayfs: failed to clone upperpath
[  161.682510][ T6570] netlink: 4 bytes leftover after parsing attributes in process `syz.4.647'.
[  161.787134][ T6570] device team0 entered promiscuous mode
[  161.844521][ T6570] 8021q: adding VLAN 0 to HW filter on device team0
[  161.869597][ T6577] netlink: 4 bytes leftover after parsing attributes in process `syz.4.647'.
[  162.009744][ T6577] device team1 entered promiscuous mode
[  162.042238][ T6577] 8021q: adding VLAN 0 to HW filter on device team1
[  162.078241][ T6589] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.322599][ T6598] kvm: pic: non byte read
[  162.338881][ T6598] kvm: pic: non byte read
[  162.352448][ T6598] kvm: pic: non byte read
[  162.369893][ T6598] kvm: pic: non byte read
[  162.382433][ T6598] kvm: pic: non byte read
[  162.398093][ T6598] kvm: pic: non byte read
[  162.553676][ T6609] tmpfs: Unknown parameter '»'
[  162.830578][ T6621] overlayfs: failed to clone upperpath
[  162.855319][ T6623] kvm: MONITOR instruction emulated as NOP!
[  163.012315][ T6632] netlink: 24 bytes leftover after parsing attributes in process `syz.0.669'.
[  163.040386][ T5698] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  163.065877][ T6632] netlink: 8 bytes leftover after parsing attributes in process `syz.0.669'.
[  163.092032][ T6632] netlink: 9 bytes leftover after parsing attributes in process `syz.0.669'.
[  163.322088][ T5698] usb 6-1: Using ep0 maxpacket: 16
[  163.542292][ T5698] usb 6-1: config 6 has an invalid interface number: 150 but max is 0
[  163.570888][ T5698] usb 6-1: config 6 has no interface number 0
[  163.631195][ T5698] usb 6-1: config 6 interface 150 altsetting 6 endpoint 0x6 has an invalid bInterval 240, changing to 11
[  163.675468][ T5698] usb 6-1: config 6 interface 150 has no altsetting 0
[  163.862154][ T5698] usb 6-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=7d.6f
[  163.878147][ T5698] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.901963][ T5698] usb 6-1: Product: syz
[  163.909809][ T5698] usb 6-1: Manufacturer: syz
[  163.920251][ T5698] usb 6-1: SerialNumber: syz
[  163.998199][ T6661] netlink: 'syz.6.682': attribute type 3 has an invalid length.
[  164.005389][ T6659] netlink: 'syz.0.681': attribute type 3 has an invalid length.
[  164.044029][ T6659] netlink: 'syz.0.681': attribute type 3 has an invalid length.
[  164.188516][ T6619] udc-core: couldn't find an available UDC or it's busy
[  164.209492][ T6619] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  164.226906][ T6619] udc-core: couldn't find an available UDC or it's busy
[  164.239309][ T6619] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  164.243410][ T6673] tmpfs: Unknown parameter '»'
[  164.253917][ T6619] udc-core: couldn't find an available UDC or it's busy
[  164.261085][ T6619] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  164.396370][ T5698] usb 6-1: USB disconnect, device number 7
[  164.643032][ T6681] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  164.661582][ T6681] device batadv_slave_0 entered promiscuous mode
[  165.120046][ T6696] kernel read not supported for file /eth0 (pid: 6696 comm: syz.5.693)
[  165.185486][   T26] audit: type=1800 audit(1782271810.416:6): pid=6696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.693" name="eth0" dev="mqueue" ino=41575 res=0 errno=0
[  165.209890][ T6698] 9pnet: Insufficient options for proto=fd
[  165.646212][ T6685] loop3: detected capacity change from 0 to 131072
[  165.772213][ T6685] F2FS-fs (loop3): invalid crc value
[  165.835554][ T6685] F2FS-fs (loop3): Found nat_bits in checkpoint
[  165.876076][ T6685] F2FS-fs (loop3): Cannot turn on quotas: -2 on 2
[  165.905892][ T6685] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  166.100400][ T6729] netlink: 16 bytes leftover after parsing attributes in process `syz.6.701'.
[  166.246975][ T6733] netlink: 24 bytes leftover after parsing attributes in process `syz.0.702'.
[  166.630955][ T6742] loop0: detected capacity change from 0 to 512
[  166.747062][ T6742] EXT4-fs (loop0): Ignoring removed bh option
[  166.773660][ T6742] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  166.832808][ T6708] netlink: 20 bytes leftover after parsing attributes in process `syz.5.697'.
[  166.838027][ T6742] EXT4-fs (loop0): Ignoring removed bh option
[  166.864254][ T6742] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  166.966557][ T6742] EXT4-fs (loop0): mounted filesystem without journal. Opts: bh,mblk_io_submit,grpquota,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[  167.020122][ T6742] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  167.955250][ T6786] tmpfs: Unknown parameter '»'
[  168.129398][ T6794] netlink: 'syz.0.712': attribute type 5 has an invalid length.
[  168.347970][ T6781] loop5: detected capacity change from 0 to 16384
[  168.633960][ T6814] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  168.860589][   T26] audit: type=1800 audit(1782271814.086:7): pid=6781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.710" name="bus" dev="loop5" ino=18 res=0 errno=0
[  168.956466][   T26] audit: type=1804 audit(1782271814.186:8): pid=6781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.710" name="/newroot/87/file0/bus" dev="loop5" ino=18 res=1 errno=0
[  170.178507][ T6868] netlink: 24 bytes leftover after parsing attributes in process `syz.0.731'.
[  170.432786][ T6878] tmpfs: Unknown parameter '»'
[  172.451995][ T4519] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  172.652040][ T6901] loop5: detected capacity change from 0 to 32768
[  172.775034][ T6901] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop5 scanned by syz.5.739 (6901)
[  172.832146][ T4519] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  172.865413][ T4519] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  172.914436][ T4519] usb 1-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  172.951888][ T4519] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.986996][ T4519] usb 1-1: config 0 descriptor??
[  173.006027][ T6901] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  173.031973][ T6901] BTRFS info (device loop5): using free space tree
[  173.069492][ T6901] BTRFS info (device loop5): has skinny extents
[  173.375739][ T6901] BTRFS info (device loop5): enabling ssd optimizations
[  173.445981][   T26] audit: type=1800 audit(1782271818.676:9): pid=6901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.739" name="file1" dev="loop5" ino=260 res=0 errno=0
[  173.469269][ T6917] loop0: detected capacity change from 0 to 64
[  173.536085][ T6917] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[  173.574011][   T26] audit: type=1800 audit(1782271818.786:10): pid=6963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.739" name="file1" dev="loop5" ino=260 res=0 errno=0
[  173.950041][ T6963] BTRFS info (device loop5): balance: start -sconvert=raid0,soft,drange=1580..7
[  174.018601][ T6963] BTRFS info (device loop5): relocating block group 1048576 flags system
[  174.146926][ T4519] hid-led 0003:27B8:01ED.0002: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.0-1/input0
[  174.249224][ T6963] BTRFS info (device loop5): balance: ended with status: 0
[  174.273754][ T4519] hid-led 0003:27B8:01ED.0002: ThingM blink(1) initialized
[  174.340043][ T4234] usb 1-1: USB disconnect, device number 4
[  174.514658][ T6984] fido_id[6984]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  175.800898][ T7036] loop5: detected capacity change from 0 to 512
[  175.824195][ T7036] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  176.329825][ T7050] binder: 7048:7050 ioctl c0306201 0 returned -14
[  176.490915][ T7058] netlink: 2036 bytes leftover after parsing attributes in process `syz.6.777'.
[  176.515230][ T7058] netlink: 24 bytes leftover after parsing attributes in process `syz.6.777'.
[  176.984389][ T7065] loop5: detected capacity change from 0 to 512
[  177.442141][ T5699] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  177.722313][ T5699] usb 4-1: Using ep0 maxpacket: 32
[  177.784377][ T7087] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  177.794521][ T7087] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  177.872159][ T5699] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  177.893122][ T5699] usb 4-1: config 0 has no interface number 0
[  177.905941][ T5699] usb 4-1: config 0 interface 184 has no altsetting 0
[  177.918650][ T7096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.794'.
[  178.083740][ T5699] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  178.104530][ T5699] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.124775][ T5699] usb 4-1: Product: syz
[  178.129272][ T5699] usb 4-1: Manufacturer: syz
[  178.145019][ T5699] usb 4-1: SerialNumber: syz
[  178.196357][ T5699] usb 4-1: config 0 descriptor??
[  178.243743][ T5699] smsc75xx v1.0.0
[  178.374075][ T7111] block device autoloading is deprecated and will be removed.
[  178.572945][ T7118] overlayfs: failed to get inode (-116)
[  178.591326][ T7118] overlayfs: failed to get inode (-116)
[  179.229370][ T7137] netlink: 24 bytes leftover after parsing attributes in process `syz.0.810'.
[  179.663701][  T154] Bluetooth: hci5: Frame reassembly failed (-84)
[  179.772186][ T5699] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000040: -71
[  179.793540][ T5699] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error writing E2P_CMD
[  179.852067][ T5699] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  179.871633][ T5699] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  179.894557][ T5699] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  179.924415][ T5699] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  179.957994][ T5699] smsc75xx: probe of 4-1:0.184 failed with error -71
[  180.002003][ T5699] usb 4-1: USB disconnect, device number 4
[  181.083111][ T7176] loop3: detected capacity change from 0 to 32768
[  181.173968][ T7176] XFS (loop3): Mounting V5 Filesystem
[  181.242024][ T4234] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  181.297317][ T7176] XFS (loop3): Ending clean mount
[  181.360799][ T7176] XFS (loop3): Quotacheck needed: Please wait.
[  181.493280][ T7176] XFS (loop3): Quotacheck: Done.
[  181.522367][ T4234] usb 6-1: Using ep0 maxpacket: 32
[  181.662131][ T5699] Bluetooth: hci5: command 0x1003 tx timeout
[  181.668532][ T4201] Bluetooth: hci5: sending frame failed (-49)
[  181.675955][ T4234] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  181.691858][ T4234] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  181.700602][ T4234] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  181.711478][ T4191] XFS (loop3): Unmounting Filesystem
[  181.741924][ T4234] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  181.757591][ T4234] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  181.781929][ T4234] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  181.798456][ T4234] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  181.819995][ T4234] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.867936][ T4234] usb 6-1: config 0 descriptor??
[  182.161211][ T4234] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 8 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  182.283411][   T26] audit: type=1326 audit(1782271827.516:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7205 comm="syz.4.838" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe79fa6de59 code=0x0
[  182.417535][ T5699] usb 6-1: USB disconnect, device number 8
[  182.424271][    C1] usblp0: nonzero read bulk status received: -71
[  182.434960][ T7184] usblp0: error -71 reading from printer
[  182.453424][ T7208] loop3: detected capacity change from 0 to 2048
[  182.473419][ T7184] usblp0: removed
[  182.575550][ T7208] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  182.587444][ T7208] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.723792][ T7208] overlayfs: failed to verify origin (/, ino=2, err=-28)
[  182.734050][ T7208] overlayfs: failed to verify upper root origin
[  182.742899][ T7213] EXT4-fs (loop3): shut down requested (2)
[  182.768332][ T7213] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  183.335784][ T7229] md: could not open device unknown-block(0,0).
[  183.355632][ T7229] md: md_import_device returned -6
[  183.746436][ T7251] loop3: detected capacity change from 0 to 2048
[  183.753852][ T5699] Bluetooth: hci5: command 0x1001 tx timeout
[  183.760720][ T4201] Bluetooth: hci5: sending frame failed (-49)
[  183.899431][ T7251] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  184.092445][ T7251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4334: comm syz.3.854: Invalid inode table block 0 in block_group 0
[  184.167997][ T7251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4334: comm syz.3.854: Invalid inode table block 0 in block_group 0
[  184.220915][   T26] audit: type=1800 audit(1782271829.446:12): pid=7251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.854" name="file1" dev="loop3" ino=15 res=0 errno=0
[  184.224027][ T7251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4334: comm syz.3.854: Invalid inode table block 0 in block_group 0
[  184.269238][ T7251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4334: comm syz.3.854: Invalid inode table block 0 in block_group 0
[  184.289328][ T7251] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5873: Corrupt filesystem
[  184.314550][ T7251] EXT4-fs error (device loop3): ext4_setattr:5586: inode #15: comm syz.3.854: mark_inode_dirty error
[  184.336010][ T7251] EXT4-fs error (device loop3) in ext4_setattr:5645: Corrupt filesystem
[  185.121909][ T1108] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  185.602156][ T1108] usb 6-1: Using ep0 maxpacket: 8
[  185.832151][ T4178] Bluetooth: hci5: command 0x1009 tx timeout
[  185.887895][ T1108] usb 6-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f
[  185.902007][ T1108] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=1
[  185.910495][ T1108] usb 6-1: Product: syz
[  185.921914][ T1108] usb 6-1: Manufacturer: syz
[  185.927682][ T1108] usb 6-1: SerialNumber: syz
[  185.947863][ T1108] usb 6-1: config 0 descriptor??
[  185.993827][ T1108] usbtest 6-1:0.0: FX2 device
[  186.001292][ T1108] usbtest 6-1:0.0: high-speed {control bulk-in bulk-out} tests (+alt)
[  186.066895][ T7308] loop3: detected capacity change from 0 to 4096
[  186.088181][ T7308] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[  186.196903][ T1108] usb 6-1: USB disconnect, device number 9
[  187.283195][ T7355] loop3: detected capacity change from 0 to 256
[  187.334341][ T7355] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  187.487821][ T7317] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.495878][ T7317] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.034177][ T7317] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  188.106061][ T7317] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  188.251673][ T7364] loop3: detected capacity change from 0 to 40427
[  188.305473][ T7364] F2FS-fs (loop3): invalid crc value
[  188.339642][ T7364] F2FS-fs (loop3): Found nat_bits in checkpoint
[  188.447499][ T7364] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  188.480120][   T26] audit: type=1800 audit(1782271833.706:13): pid=7364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.894" name="file1" dev="loop3" ino=10 res=0 errno=0
[  188.508801][ T7368] attempt to access beyond end of device
[  188.508801][ T7368] loop3: rw=2049, want=45104, limit=40427
[  188.917716][ T7317] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.927476][ T7317] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.945855][ T7317] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  188.959479][ T7317] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  189.630429][ T7402] loop3: detected capacity change from 0 to 128
[  189.690386][ T7402] EXT4-fs (loop3): Mount option "journal_dev=0x000000000000000e" incompatible with ext2
[  189.836314][ T7410] netlink: 24 bytes leftover after parsing attributes in process `syz.5.912'.
[  190.082469][ T7424] netlink: 'syz.0.918': attribute type 27 has an invalid length.
[  190.415335][ T7441] kvm [7440]: vcpu2, guest rIP: 0x9135 disabled perfctr wrmsr: 0xc1 data 0xfffffc00
[  190.425632][ T7441] kvm [7440]: vcpu2, guest rIP: 0x9135 disabled perfctr wrmsr: 0xc2 data 0xfffffc00
[  190.442903][ T7441] kvm [7440]: vcpu2, guest rIP: 0x9135 ignored wrmsr: 0x11e data 0xfffffc00
[  190.464518][ T4516] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  190.473633][ T7441] kvm [7440]: vcpu2, guest rIP: 0x9135 disabled perfctr wrmsr: 0x186 data 0xfffffc00
[  190.497095][ T7441] kvm [7440]: vcpu2, guest rIP: 0x9135 disabled perfctr wrmsr: 0x187 data 0xfffffc00
[  190.537727][ T7443] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  190.557571][ T7443] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  190.722144][ T4516] usb 1-1: Using ep0 maxpacket: 16
[  190.842133][ T4516] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  190.879766][ T4516] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  191.072181][ T4516] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  191.089069][ T4516] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.098176][ T4516] usb 1-1: Product: syz
[  191.111673][ T4516] usb 1-1: Manufacturer: syz
[  191.117441][ T4516] usb 1-1: SerialNumber: syz
[  191.152703][ T7483] loop3: detected capacity change from 0 to 512
[  191.263682][ T7483] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  191.283813][ T7483] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.341981][ T7004] Bluetooth: hci4: command 0x0406 tx timeout
[  191.352269][ T5699] Bluetooth: hci3: command 0x0406 tx timeout
[  191.358945][ T5699] Bluetooth: hci1: command 0x0406 tx timeout
[  191.387666][ T7434] netlink: 200 bytes leftover after parsing attributes in process `syz.0.921'.
[  191.472364][ T4516] usb 1-1: 0:2 : does not exist
[  191.589524][ T4516] usb 1-1: USB disconnect, device number 5
[  191.792927][ T7516] netlink: 4 bytes leftover after parsing attributes in process `syz.3.940'.
[  191.855147][ T4268] udevd[4268]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  192.061228][ T7531] loop3: detected capacity change from 0 to 512
[  192.213427][ T7531] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,auto_da_alloc=0x0000000000000006,,errors=continue. Quota mode: writeback.
[  192.262210][ T7531] ext4 filesystem being mounted at /172/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.350934][ T7531] EXT4-fs error (device loop3): ext4_xattr_block_get:543: inode #15: comm syz.3.943: corrupted xattr block 33
[  192.460864][ T7531] fscrypt (loop3, inode 15): Error -117 getting encryption context
[  192.647127][ T7533] infiniband syz1: set down
[  192.687444][ T7533] infiniband syz1: added syz_tun
[  192.896398][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  192.942012][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  192.951118][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  192.984901][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  193.017885][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  193.067108][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  193.110219][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  193.133887][ T7533] RDS/IB: syz1: added
[  193.150181][ T7533] smc: adding ib device syz1 with port count 1
[  193.202338][ T7533] smc:    ib device syz1 port 1 has pnetid 
[  193.242099][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  193.288142][ T7555] bridge0: port 3(syz_tun) entered blocking state
[  193.295610][ T7555] bridge0: port 3(syz_tun) entered forwarding state
[  193.324332][ T7555] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  193.343764][ T7555] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.367945][ T7555] 8021q: adding VLAN 0 to HW filter on device team0
[  193.433394][ T7555] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  193.466507][ T7556] netlink: 4 bytes leftover after parsing attributes in process `syz.3.950'.
[  193.498452][ T7556] bridge0: port 3(syz_tun) entered disabled state
[  193.535420][ T7556] device syz_tun left promiscuous mode
[  193.546063][ T7556] bridge0: port 3(syz_tun) entered disabled state
[  193.776960][ T7573] capability: warning: `syz.0.956' uses deprecated v2 capabilities in a way that may be insecure
[  194.391521][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  194.398272][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  195.049186][ T7613] device syzkaller1 entered promiscuous mode
[  195.137183][ T7617] netlink: 4 bytes leftover after parsing attributes in process `syz.4.971'.
[  195.462749][ T7630] netlink: 24 bytes leftover after parsing attributes in process `syz.4.977'.
[  195.574214][ T7632] netlink: 4 bytes leftover after parsing attributes in process `syz.0.978'.
[  196.447296][ T7665] netlink: 4 bytes leftover after parsing attributes in process `syz.4.992'.
[  196.507892][ T7668] loop0: detected capacity change from 0 to 128
[  196.620631][ T7668] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  196.633286][ T7668] ext4 filesystem being mounted at /197/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  196.788140][ T7668] fscrypt: key with descriptor e8dab99234bb312e is too short (got 16 bytes, need 32+ bytes)
[  196.812332][ T7668] fscrypt: key with descriptor e8dab99234bb312e is too short (got 16 bytes, need 32+ bytes)
[  197.335069][ T7685] capability: warning: `syz.6.1002' uses 32-bit capabilities (legacy support in use)
[  197.349934][ T7683] loop0: detected capacity change from 0 to 512
[  197.444202][ T7690] loop2: detected capacity change from 0 to 7
[  197.497546][ T7683] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #2: comm syz.0.1000: missing EA_INODE flag
[  197.540500][ T7690] Dev loop2: unable to read RDB block 7
[  197.541547][ T7683] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.1000: error while reading EA inode 2 err=-117
[  197.554256][ T7690]  loop2: unable to read partition table
[  197.565757][ T7690] loop2: partition table beyond EOD, truncated
[  197.582901][ T7690] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  197.634235][ T7683] EXT4-fs (loop0): 1 orphan inode deleted
[  197.640065][ T7683] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,nogrpid,,errors=continue. Quota mode: writeback.
[  197.667331][ T3561] Dev loop2: unable to read RDB block 7
[  197.688981][ T3561]  loop2: unable to read partition table
[  197.698219][ T3561] loop2: partition table beyond EOD, truncated
[  197.716430][ T7607] bond1: (slave syz_tun): Removing an active aggregator
[  197.737972][ T7607] bond1: (slave syz_tun): Releasing backup interface
[  197.913184][ T7701] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1006'.
[  197.972452][ T7702] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1007'.
[  198.105978][ T7702] device bond1 entered promiscuous mode
[  198.112539][ T7702] 8021q: adding VLAN 0 to HW filter on device bond1
[  198.166632][ T7705] device macvlan2 entered promiscuous mode
[  198.174655][ T7713] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1008'.
[  198.205878][ T7705] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  198.653090][ T7726] loop3: detected capacity change from 0 to 4096
[  198.774466][ T7726] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[  198.909753][ T7726] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  198.943871][ T7726] ntfs3: loop3: Failed to load $Extend.
[  199.014446][ T7726] ntfs3: loop3: MftZone: unavailable
[  199.101006][ T7726] ntfs3: loop3: MftZone: unavailable
[  199.200347][ T7748] raw_sendmsg: syz.6.1027 forgot to set AF_INET. Fix it!
[  199.601778][ T7734] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.248897][ T7734] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  200.718306][ T4236] Bluetooth: hci0: command 0x0409 tx timeout
[  200.890140][ T7734] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.900000][ T7734] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.909909][ T7734] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.919748][ T7734] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.021437][ T7734] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.030966][ T7734] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.040629][ T7734] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.050164][ T7734] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  201.462847][ T7727] chnl_net:caif_netlink_parms(): no params data found
[  201.560208][ T7727] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.605685][ T7770] xt_hashlimit: size too large, truncated to 1048576
[  201.629086][ T7727] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.672030][ T7727] device bridge_slave_0 entered promiscuous mode
[  201.693637][ T7727] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.702049][ T7727] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.732060][ T7727] device bridge_slave_1 entered promiscuous mode
[  201.786155][ T7727] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.825461][ T7727] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.901005][ T7727] team0: Port device team_slave_0 added
[  201.933696][ T7727] team0: Port device team_slave_1 added
[  201.986856][ T7781] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1036'.
[  202.038266][ T7781] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1036'.
[  202.078049][ T7727] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.093446][ T7727] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.148826][ T7727] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.183530][ T7727] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.206463][ T7727] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.313753][ T7727] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.783650][ T4518] Bluetooth: hci0: command 0x041b tx timeout
[  202.931831][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #282!!!
[  203.065410][ T7727] device hsr_slave_0 entered promiscuous mode
[  203.093215][ T7727] device hsr_slave_1 entered promiscuous mode
[  203.110499][ T7727] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  203.120745][ T7727] Cannot create hsr debugfs directory
[  203.479426][ T7804] loop3: detected capacity change from 0 to 8192
[  203.601496][ T7804] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  203.657766][ T7727] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  203.676221][ T7804] REISERFS (device loop3): using ordered data mode
[  203.726446][ T7804] reiserfs: using flush barriers
[  203.747314][ T7727] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  203.792987][ T7804] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  203.815677][ T7727] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  203.846684][ T7727] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  203.854784][ T7804] REISERFS (device loop3): checking transaction log (loop3)
[  203.878851][ T7804] REISERFS (device loop3): Using r5 hash to sort names
[  203.893293][ T7804] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  203.985050][   T26] audit: type=1800 audit(1782271849.213:14): pid=7804 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1047" name="file1" dev="loop3" ino=2 res=0 errno=0
[  204.157522][ T7727] 8021q: adding VLAN 0 to HW filter on device bond0
[  204.185064][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  204.194845][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  204.206932][ T7727] 8021q: adding VLAN 0 to HW filter on device team0
[  204.221182][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  204.240602][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  204.259743][ T4241] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.267910][ T4241] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.398350][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  204.417210][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  204.434557][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  204.444851][ T7827] loop3: detected capacity change from 0 to 512
[  204.472693][ T4241] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.479993][ T4241] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.518852][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  204.573677][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  204.584419][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  204.590063][ T7827] EXT4-fs error (device loop3): ext4_do_update_inode:5229: inode #16: comm syz.3.1054: corrupted inode contents
[  204.598718][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  204.633117][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  204.649273][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  204.667945][ T7827] EXT4-fs error (device loop3): ext4_dirty_inode:6077: inode #16: comm syz.3.1054: mark_inode_dirty error
[  204.696457][ T7827] EXT4-fs error (device loop3): ext4_do_update_inode:5229: inode #16: comm syz.3.1054: corrupted inode contents
[  204.727928][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  204.747530][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  204.760812][ T7827] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.1054: mark_inode_dirty error
[  204.783844][ T4241] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  204.805585][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  204.818119][ T7827] EXT4-fs error (device loop3): ext4_do_update_inode:5229: inode #16: comm syz.3.1054: corrupted inode contents
[  204.848875][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  204.859979][ T7827] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  204.875040][ T7827] EXT4-fs error (device loop3): ext4_do_update_inode:5229: inode #16: comm syz.3.1054: corrupted inode contents
[  204.887179][ T7727] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  204.903813][ T7827] EXT4-fs error (device loop3): ext4_truncate:4286: inode #16: comm syz.3.1054: mark_inode_dirty error
[  204.921022][ T7827] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  204.949256][ T7827] EXT4-fs (loop3): 1 truncate cleaned up
[  204.979712][ T7827] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  204.984532][ T7844] netlink: 2028 bytes leftover after parsing attributes in process `syz.4.1060'.
[  205.000840][ T7827] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.022178][ T4518] Bluetooth: hci0: command 0x040f tx timeout
[  205.074309][ T7844] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1060'.
[  205.219151][  T154] EXT4-fs error (device loop3): __ext4_get_inode_loc:4334: comm kworker/u4:2: Invalid inode table block 34 in block_group 0
[  205.345281][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  205.354499][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  205.367583][ T7727] 8021q: adding VLAN 0 to HW filter on device batadv0
[  206.113852][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  206.127684][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  206.180640][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  206.197089][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  206.220197][ T7727] device veth0_vlan entered promiscuous mode
[  206.233491][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  206.256777][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  206.297395][ T7727] device veth1_vlan entered promiscuous mode
[  206.374715][ T7727] device veth0_macvtap entered promiscuous mode
[  206.394092][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  206.414370][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  206.445243][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  206.463640][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  206.486401][ T7727] device veth1_macvtap entered promiscuous mode
[  206.503065][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  206.521698][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  206.532112][ T6994] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  206.565961][ T7727] batman_adv: batadv0: Interface activated: batadv_slave_0
[  206.580179][ T7862] loop3: detected capacity change from 0 to 32768
[  206.582503][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  206.613536][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  206.637282][ T7862] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.1065 (7862)
[  206.654928][ T7727] batman_adv: batadv0: Interface activated: batadv_slave_1
[  206.670748][ T7862] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  206.688497][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  206.696867][ T7862] BTRFS info (device loop3): using free space tree
[  206.704938][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  206.716368][ T7862] BTRFS info (device loop3): has skinny extents
[  206.730362][ T7727] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.746781][ T7727] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.759243][ T7727] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.779282][ T7727] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.902185][ T6994] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  206.921925][ T6994] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  206.957247][ T6994] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  207.016512][ T6994] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.025939][ T7862] BTRFS info (device loop3): enabling ssd optimizations
[  207.056502][ T4276] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.088746][ T4276] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  207.099569][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  207.110349][ T1108] Bluetooth: hci0: command 0x0419 tx timeout
[  207.152389][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.162933][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  207.172735][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  207.187176][   T26] audit: type=1800 audit(1782271852.413:15): pid=7862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1065" name="file2" dev="loop3" ino=261 res=0 errno=0
[  207.278189][   T26] audit: type=1804 audit(1782271852.503:16): pid=7899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1065" name="/newroot/192/file0/file2" dev="loop3" ino=261 res=1 errno=0
[  207.412094][ T6994] usb 1-1: usb_control_msg returned -32
[  207.418142][ T6994] usbtmc 1-1:16.0: can't read capabilities
[  208.190394][ T5699] usb 1-1: USB disconnect, device number 6
[  208.413077][ T7929] hub 9-0:1.0: USB hub found
[  208.425861][ T7929] hub 9-0:1.0: 1 port detected
[  208.647814][ T7937] hub 9-0:1.0: USB hub found
[  208.655957][ T7937] hub 9-0:1.0: 1 port detected
[  208.764502][ T7943] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1087'.
[  208.818878][ T7950] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1087'.
[  208.840848][ T7945] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1089'.
[  208.933977][ T7945] 8021q: adding VLAN 0 to HW filter on device bond1
[  208.964787][ T7951] bond1: (slave macvlan1): Enslaving as an active interface with an up link
[  209.037152][ T7955] bond1 (unregistering): (slave macvlan1): Releasing backup interface
[  209.069195][ T7955] bond1 (unregistering): Released all slaves
[  209.435524][ T7968] tipc: Started in network mode
[  209.450689][ T7968] tipc: Node identity ac14140f, cluster identity 4711
[  209.468809][ T7968] gre0: MTU too low for tipc bearer
[  209.490803][ T7968] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  209.906907][ T7986] hub 9-0:1.0: USB hub found
[  209.932186][ T7986] hub 9-0:1.0: 1 port detected
[  210.192087][ T7919] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  210.536568][ T8013] overlayfs: failed to clone upperpath
[  210.552164][ T7919] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  210.579473][ T7919] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  210.611605][ T7919] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  210.668259][ T7919] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.860616][ T8016] overlayfs: failed to clone upperpath
[  210.982070][ T7919] usb 8-1: usb_control_msg returned -32
[  210.990068][ T7919] usbtmc 8-1:16.0: can't read capabilities
[  211.273841][ T8019] netlink: 'syz.4.1115': attribute type 3 has an invalid length.
[  211.585707][ T7920] usb 8-1: USB disconnect, device number 2
[  212.150514][ T8039] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  212.201925][ T8040] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  213.528624][ T8073] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1138'.
[  213.694380][ T8081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1142'.
[  214.016665][ T8098] loop7: detected capacity change from 0 to 2048
[  214.126657][ T8098] EXT4-fs (loop7): mounted filesystem without journal. Opts: journal_dev=0x0000000000000800,errors=remount-ro,resgid=0x0000000000000000,journal_dev=0x0000000000000800,quota,noblock_validity,. Quota mode: writeback.
[  214.148553][ T8098] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.231328][ T8108] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 16: comm syz.7.1149: path /17/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  214.331394][ T8108] EXT4-fs (loop7): Remounting filesystem read-only
[  215.093542][ T8127] loop3: detected capacity change from 0 to 128
[  215.204685][ T8127] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  215.229432][ T8127] ext4 filesystem being mounted at /204/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  215.251434][ T8127] fscrypt: key with descriptor e8dab99234bb312e is too short (got 16 bytes, need 32+ bytes)
[  215.263175][ T8127] fscrypt: key with descriptor e8dab99234bb312e is too short (got 16 bytes, need 32+ bytes)
[  215.602849][ T8148] loop7: detected capacity change from 0 to 512
[  215.695864][ T8148] EXT4-fs (loop7): invalid journal inode
[  215.709124][ T8148] EXT4-fs (loop7): can't get journal size
[  215.757966][ T8148] EXT4-fs (loop7): 1 truncate cleaned up
[  215.764292][ T5699] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  215.772432][ T8148] EXT4-fs (loop7): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  216.153511][ T5699] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 52, changing to 7
[  216.167386][ T5699] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 9272, setting to 1024
[  216.181732][ T5699] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  216.204885][ T5699] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.230316][ T5699] usb 4-1: config 0 descriptor??
[  216.582230][ T5699] ath6kl: Failed to submit usb control message: -71
[  216.589688][ T5699] ath6kl: unable to send the bmi data to the device: -71
[  216.611102][ T8159] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1172'.
[  216.621065][ T5699] ath6kl: Unable to send get target info: -71
[  216.635149][ T5699] ath6kl: Failed to init ath6kl core: -71
[  216.684549][ T5699] ath6kl_usb: probe of 4-1:0.0 failed with error -71
[  216.718358][ T5699] usb 4-1: USB disconnect, device number 5
[  217.044969][ T8171] rdma_rxe: rxe_register_device failed with error -23
[  217.065269][ T8171] rdma_rxe: failed to add syz_tun
[  217.331422][ T8185] device batadv_slave_0 entered promiscuous mode
[  217.342588][ T8183] loop3: detected capacity change from 0 to 1024
[  217.577143][ T4191] hfsplus: bad catalog entry type
[  217.692193][ T8194] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1184'.
[  217.783158][ T8194] device team0 entered promiscuous mode
[  217.790113][ T8194] 8021q: adding VLAN 0 to HW filter on device team0
[  217.873437][ T8196] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1184'.
[  217.955894][ T8196] device team1 entered promiscuous mode
[  217.992223][ T8196] 8021q: adding VLAN 0 to HW filter on device team1
[  218.979815][ T8229] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  220.160840][ T8243] chnl_net:caif_netlink_parms(): no params data found
[  220.309038][ T8243] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.316480][ T8243] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.326169][ T8243] device bridge_slave_0 entered promiscuous mode
[  220.337055][ T8243] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.344580][ T8243] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.353335][ T8243] device bridge_slave_1 entered promiscuous mode
[  220.379813][ T8243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  220.403792][ T8243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  220.468243][ T8243] team0: Port device team_slave_0 added
[  220.486356][ T8243] team0: Port device team_slave_1 added
[  220.526850][ T8243] batman_adv: batadv0: Adding interface: batadv_slave_0
[  220.539722][ T8243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.577865][ T8243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  220.593815][ T8243] batman_adv: batadv0: Adding interface: batadv_slave_1
[  220.600805][ T8243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.629487][ T8243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  220.681731][ T8243] device hsr_slave_0 entered promiscuous mode
[  220.690241][ T8243] device hsr_slave_1 entered promiscuous mode
[  220.697653][ T8243] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  220.706295][ T8243] Cannot create hsr debugfs directory
[  221.173450][ T8243] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  221.183810][ T8243] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  221.193496][ T8243] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  221.203977][ T8243] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  221.268470][ T8243] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.285787][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  221.294275][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  221.305859][ T8243] 8021q: adding VLAN 0 to HW filter on device team0
[  221.317057][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  221.326195][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  221.337148][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.344493][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.362975][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  221.371578][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  221.383728][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  221.394354][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.401646][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.410379][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  221.424535][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  221.440980][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  221.454611][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  221.475472][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  221.484336][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  221.493925][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.504299][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.514152][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.526600][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.536667][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.549818][ T8243] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  221.653664][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  221.661432][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  221.670005][ T7920] Bluetooth: hci3: command 0x0409 tx timeout
[  221.686920][ T8243] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.710725][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  221.720209][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  221.744496][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  221.753356][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  221.764466][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  221.773242][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  221.784269][ T8243] device veth0_vlan entered promiscuous mode
[  221.797619][ T8243] device veth1_vlan entered promiscuous mode
[  221.825432][ T8243] device veth0_macvtap entered promiscuous mode
[  221.834348][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  221.844095][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  221.853449][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  221.863444][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  221.875465][ T8243] device veth1_macvtap entered promiscuous mode
[  221.883935][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  221.892970][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  221.918408][ T8243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.930437][ T8243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.944834][ T8243] batman_adv: batadv0: Interface activated: batadv_slave_0
[  221.957371][ T8243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.969661][ T8243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.982633][ T8243] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.990995][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  222.000876][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  222.011467][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  222.020452][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  222.033217][ T8243] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  222.043143][ T8243] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  222.052497][ T8243] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.061316][ T8243] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.156006][ T4258] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  222.164089][ T4258] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  222.171954][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  222.199813][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  222.207934][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  222.216991][ T4823] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  222.270234][ T8261] loop3: detected capacity change from 0 to 512
[  222.403438][ T8261] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: inode #2: comm syz.3.1207: missing EA_INODE flag
[  222.435875][ T8261] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.1207: error while reading EA inode 2 err=-117
[  222.468679][ T8261] EXT4-fs (loop3): 1 orphan inode deleted
[  222.482081][ T8261] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,nogrpid,,errors=continue. Quota mode: writeback.
[  222.709110][ T8279] overlayfs: failed to clone upperpath
[  223.649540][ T8307] ------------[ cut here ]------------
[  223.735903][ T8307] wlan1: Failed check-sdata-in-driver check, flags: 0x4
[  223.742604][   T21] Bluetooth: hci3: command 0x041b tx timeout
[  223.844417][ T8307] WARNING: CPU: 0 PID: 8307 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  223.936465][ T8307] Modules linked in:
[  223.940980][ T8307] CPU: 0 PID: 8307 Comm: syz.0.1228 Not tainted syzkaller #0
[  224.036135][ T8307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  224.071008][ T8307] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  224.091585][ T8307] Code: 74 80 f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 a0 c5 38 8b 4c 89 e6 89 ea e8 15 4b 71 00 <0f> 0b e9 07 fd ff ff e8 d9 53 3b f8 0f 0b e9 b1 fe ff ff e8 cd 53
[  224.192061][ T8307] RSP: 0018:ffffc90003fff240 EFLAGS: 00010246
[  224.200783][ T8307] RAX: a18eea50810e8e00 RBX: 0000000000400000 RCX: 0000000000080000
[  224.220010][ T8307] RDX: ffffc90004b81000 RSI: 0000000000004397 RDI: 0000000000004398
[  224.231587][ T8307] RBP: 0000000000000004 R08: ffff8880b9033d7f R09: 1ffff110172067af
[  224.248649][ T8307] R10: dffffc0000000000 R11: ffffed10172067b0 R12: ffff88805fa28000
[  224.270604][ T8307] R13: ffff88805fa29290 R14: ffff88802a680e00 R15: ffff88805fa2a268
[  224.280735][ T8307] FS:  00007f80756d76c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  224.298644][ T8307] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  224.308006][ T8307] CR2: 0000001b32e1fff8 CR3: 0000000064682000 CR4: 00000000003506e0
[  224.324088][ T8307] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000001800
[  224.343257][ T8307] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  224.363328][ T8307] Call Trace:
[  224.366667][ T8307]  <TASK>
[  224.369805][ T8307]  ? netif_carrier_on+0x101/0x120
[  224.398049][ T8307]  ieee80211_ocb_leave+0x27f/0x320
[  224.404079][ T8307]  __cfg80211_leave_ocb+0x219/0x400
[  224.409860][ T8307]  cfg80211_leave_ocb+0x53/0x70
[  224.417173][ T8307]  cfg80211_change_iface+0x4ec/0xe10
[  224.422893][ T8307]  nl80211_set_interface+0x5b8/0x810
[  224.428329][ T8307]  ? nl80211_dump_interface+0x560/0x560
[  224.436094][ T8307]  ? mutex_lock_nested+0x17/0x20
[  224.441199][ T8307]  ? nl80211_pre_doit+0x27b/0x540
[  224.448836][ T8307]  genl_rcv_msg+0xd0b/0xfa0
[  224.462445][ T8307]  ? genl_bind+0x370/0x370
[  224.466975][ T8307]  ? verify_lock_unused+0x140/0x140
[  224.477699][ T8307]  ? verify_lock_unused+0x140/0x140
[  224.483401][ T8307]  ? nl80211_dump_interface+0x560/0x560
[  224.489492][ T8307]  netlink_rcv_skb+0x1e9/0x430
[  224.494905][ T8307]  ? genl_bind+0x370/0x370
[  224.500245][ T8307]  ? netlink_ack+0xb10/0xb10
[  224.505558][ T8307]  ? down_read+0x1aa/0x2e0
[  224.510349][ T8307]  genl_rcv+0x24/0x40
[  224.514895][ T8307]  netlink_unicast+0x78f/0x940
[  224.519936][ T8307]  netlink_sendmsg+0x8ba/0xbe0
[  224.525264][ T8307]  ? netlink_getsockopt+0x570/0x570
[  224.530527][ T8307]  ? aa_sock_msg_perm+0x94/0x150
[  224.535967][ T8307]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  224.541773][ T8307]  ? security_socket_sendmsg+0x7c/0xa0
[  224.549572][ T8307]  ? netlink_getsockopt+0x570/0x570
[  224.555261][ T8307]  ____sys_sendmsg+0x5be/0x8f0
[  224.560184][ T8307]  ? __sys_sendmsg_sock+0x30/0x30
[  224.565688][ T8307]  ? import_iovec+0x6f/0xa0
[  224.570262][ T8307]  ___sys_sendmsg+0x236/0x2e0
[  224.575604][ T8307]  ? __sys_sendmsg+0x290/0x290
[  224.580721][ T8307]  ? sock_do_ioctl+0x29d/0x320
[  224.586499][ T8307]  __se_sys_sendmsg+0x1b7/0x2a0
[  224.592177][ T8307]  ? __x64_sys_sendmsg+0x80/0x80
[  224.597341][ T8307]  ? lockdep_hardirqs_on_prepare+0x448/0x7c0
[  224.603999][ T8307]  ? lockdep_hardirqs_on+0x94/0x140
[  224.609350][ T8307]  do_syscall_64+0x4c/0xa0
[  224.618235][ T8307]  ? clear_bhb_loop+0x30/0x80
[  224.627512][ T8307]  ? clear_bhb_loop+0x30/0x80
[  224.636711][ T8307]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  224.644971][ T8307] RIP: 0033:0x7f807747de59
[  224.649532][ T8307] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  224.677946][ T8307] RSP: 002b:00007f80756d7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  224.686505][ T8307] RAX: ffffffffffffffda RBX: 00007f80776f6fa0 RCX: 00007f807747de59
[  224.694975][ T8307] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  224.704010][ T8307] RBP: 00007f8077513e6f R08: 0000000000000000 R09: 0000000000000000
[  224.712409][ T8307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  224.721197][ T8307] R13: 00007f80776f7038 R14: 00007f80776f6fa0 R15: 00007ffc55c15e68
[  224.730266][ T8307]  </TASK>
[  224.733594][ T8307] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  224.741289][ T8307] CPU: 0 PID: 8307 Comm: syz.0.1228 Not tainted syzkaller #0
[  224.748965][ T8307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  224.759550][ T8307] Call Trace:
[  224.762961][ T8307]  <TASK>
[  224.766191][ T8307]  dump_stack_lvl+0x188/0x250
[  224.770936][ T8307]  ? show_regs_print_info+0x20/0x20
[  224.776364][ T8307]  ? load_image+0x410/0x410
[  224.781020][ T8307]  panic+0x2f8/0x850
[  224.785317][ T8307]  ? bpf_jit_dump+0xd0/0xd0
[  224.790506][ T8307]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  224.797588][ T8307]  __warn+0x248/0x2b0
[  224.801710][ T8307]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  224.808540][ T8307]  report_bug+0x1b9/0x2e0
[  224.813366][ T8307]  handle_bug+0x3a/0x70
[  224.817755][ T8307]  exc_invalid_op+0x16/0x40
[  224.822308][ T8307]  asm_exc_invalid_op+0x16/0x20
[  224.827597][ T8307] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  224.835329][ T8307] Code: 74 80 f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 a0 c5 38 8b 4c 89 e6 89 ea e8 15 4b 71 00 <0f> 0b e9 07 fd ff ff e8 d9 53 3b f8 0f 0b e9 b1 fe ff ff e8 cd 53
[  224.856029][ T8307] RSP: 0018:ffffc90003fff240 EFLAGS: 00010246
[  224.862352][ T8307] RAX: a18eea50810e8e00 RBX: 0000000000400000 RCX: 0000000000080000
[  224.870533][ T8307] RDX: ffffc90004b81000 RSI: 0000000000004397 RDI: 0000000000004398
[  224.878811][ T8307] RBP: 0000000000000004 R08: ffff8880b9033d7f R09: 1ffff110172067af
[  224.886824][ T8307] R10: dffffc0000000000 R11: ffffed10172067b0 R12: ffff88805fa28000
[  224.894841][ T8307] R13: ffff88805fa29290 R14: ffff88802a680e00 R15: ffff88805fa2a268
[  224.903233][ T8307]  ? netif_carrier_on+0x101/0x120
[  224.908771][ T8307]  ieee80211_ocb_leave+0x27f/0x320
[  224.913948][ T8307]  __cfg80211_leave_ocb+0x219/0x400
[  224.919383][ T8307]  cfg80211_leave_ocb+0x53/0x70
[  224.924297][ T8307]  cfg80211_change_iface+0x4ec/0xe10
[  224.929814][ T8307]  nl80211_set_interface+0x5b8/0x810
[  224.935151][ T8307]  ? nl80211_dump_interface+0x560/0x560
[  224.940835][ T8307]  ? mutex_lock_nested+0x17/0x20
[  224.946028][ T8307]  ? nl80211_pre_doit+0x27b/0x540
[  224.951199][ T8307]  genl_rcv_msg+0xd0b/0xfa0
[  224.955763][ T8307]  ? genl_bind+0x370/0x370
[  224.960358][ T8307]  ? verify_lock_unused+0x140/0x140
[  224.965619][ T8307]  ? verify_lock_unused+0x140/0x140
[  224.971033][ T8307]  ? nl80211_dump_interface+0x560/0x560
[  224.977500][ T8307]  netlink_rcv_skb+0x1e9/0x430
[  224.982314][ T8307]  ? genl_bind+0x370/0x370
[  224.987045][ T8307]  ? netlink_ack+0xb10/0xb10
[  224.991777][ T8307]  ? down_read+0x1aa/0x2e0
[  224.996421][ T8307]  genl_rcv+0x24/0x40
[  225.000641][ T8307]  netlink_unicast+0x78f/0x940
[  225.005563][ T8307]  netlink_sendmsg+0x8ba/0xbe0
[  225.010680][ T8307]  ? netlink_getsockopt+0x570/0x570
[  225.015989][ T8307]  ? aa_sock_msg_perm+0x94/0x150
[  225.021064][ T8307]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  225.026571][ T8307]  ? security_socket_sendmsg+0x7c/0xa0
[  225.032186][ T8307]  ? netlink_getsockopt+0x570/0x570
[  225.037468][ T8307]  ____sys_sendmsg+0x5be/0x8f0
[  225.042401][ T8307]  ? __sys_sendmsg_sock+0x30/0x30
[  225.047484][ T8307]  ? import_iovec+0x6f/0xa0
[  225.052128][ T8307]  ___sys_sendmsg+0x236/0x2e0
[  225.057213][ T8307]  ? __sys_sendmsg+0x290/0x290
[  225.062128][ T8307]  ? sock_do_ioctl+0x29d/0x320
[  225.067218][ T8307]  __se_sys_sendmsg+0x1b7/0x2a0
[  225.072440][ T8307]  ? __x64_sys_sendmsg+0x80/0x80
[  225.077676][ T8307]  ? lockdep_hardirqs_on_prepare+0x448/0x7c0
[  225.083904][ T8307]  ? lockdep_hardirqs_on+0x94/0x140
[  225.089352][ T8307]  do_syscall_64+0x4c/0xa0
[  225.093997][ T8307]  ? clear_bhb_loop+0x30/0x80
[  225.098996][ T8307]  ? clear_bhb_loop+0x30/0x80
[  225.104042][ T8307]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  225.110003][ T8307] RIP: 0033:0x7f807747de59
[  225.114588][ T8307] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  225.135884][ T8307] RSP: 002b:00007f80756d7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  225.144847][ T8307] RAX: ffffffffffffffda RBX: 00007f80776f6fa0 RCX: 00007f807747de59
[  225.153142][ T8307] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  225.161787][ T8307] RBP: 00007f8077513e6f R08: 0000000000000000 R09: 0000000000000000
[  225.170013][ T8307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  225.178204][ T8307] R13: 00007f80776f7038 R14: 00007f80776f6fa0 R15: 00007ffc55c15e68
[  225.186249][ T8307]  </TASK>
[  225.189697][ T8307] Kernel Offset: disabled
[  225.202441][ T8307] Rebooting in 86400 seconds..