last executing test programs:

10m54.378948649s ago: executing program 2 (id=56):
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='&\x00\x00\x00\a'], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

10m54.104972134s ago: executing program 2 (id=59):
symlinkat(&(0x7f00000001c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00')

10m53.844541799s ago: executing program 2 (id=63):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x20, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4040000)

10m53.644856423s ago: executing program 2 (id=64):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
close(r0)
r1 = userfaultfd(0x80001)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
write$RDMA_USER_CM_CMD_QUERY(0xffffffffffffffff, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {&(0x7f00000009c0), 0xffffffffffffffff, 0x1}}, 0x18)
writev(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x48a, &(0x7f0000000700)={[{@nomblk_io_submit}, {@usrjquota, 0x22}, {@errors_continue}, {@data_ordered}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xe}}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xfe, 0x455, &(0x7f0000000fc0)="$eJzs3M9PHFUcAPDv7rJQ2iJY649iq2g1En9AoT/swUuNJh40MdFDjScE2mC3xRRMbEMUPeDRNPFuPJr4F3ixXox6MvGqd2NCDBerpzWzO0O3sAssLGx1P59k4L19b/Ped2be7ts3OxtAxxpK/uQiDkbErxHRX83eWWGo+u/WysLk3ysLk7kol9/4M1ep99fKwmRWNXvegWqmXN6g3aW3IyZKpemraX50/vJ7o3PXrj83c3ni4vTF6SvjZ8+eOnms+8z46ZbE2Zf0dfDD2aNHXnnrxmuT52+88+PXSX8PpuW1cbTKUHXv1vVkqxtrs76adK6rjR2hKYWISA5XsTL++6MQvatl/fHyJ23tHLCryuV8uadx8WIZ+B9LJupAJ8re6JPPv9m2R1OPu8LyuVhdx7iVbtWSrsindYrpZ6TdMBQR5xf/+SLZYpfWIQAAat08FxHP1pv/5eOBmnr3pNeGBiLi3og4FBH3RcThiLg/olL3wYh4qMn2114hWT//KfdvK7AtSuZ/L6TXtu6c/2WzvxgopLm+SvzF3IWZ0vSJdJ8MR7EnyY9t0MZ3L/3yWaOy2vlfsiXtZ3PBtB9/dK1ZoJuamJ/YScy1lj+OGOyqF39udc6bzI+PRMTgNtuYefqro43KNo9/Ay2YlJe/jHiqevwXY038mVzD65Njz58ZPz26L0rTJ0azs2K9n35eer1R+zuKvwWWb5Zjf93zfzX+gdy+iLlr1y9VrtfONd/G0m+fNvxMs93zvzv3ZiXdnT72wcT8/NWxiO7cq+sfH7/93Cyf1U/O/+Hj9cf/obi9Jx6OiOQkPhYRj0TEo2nfH4uIxyPi+Abx//DiE+82H/8Gq/ItlMQ/tdnxj9rj33yicOn7b5qPP5Mc/1OV1HD6yFZe/7bawZ3sOwAAAPivyFe+A5/Lj6ym8/mRkep3+A/H/nxpdm7+mQuz71+Zqn5XfiCK+Wylq79mPXQsXRvO8uNr8ifTdePPC72V/MjkbGmq3cFDhzvQYPwnfi+0u3fArnO/FnQu4x86l/EPncv4h85l/EPnqjf+P2pDP4C9t8n7f+9e9QPYe+b/0LmMf+hcxj90pIb3xud3dMu/RJsS33bv7Lcatp6I/F0S8q4neiNiL9oqRjXRExE1RV1b/jGLbSZ66ha1+5UJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNf4NAAD//xwt370=")
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x89901)

10m52.706281172s ago: executing program 2 (id=72):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x59d, &(0x7f0000001100)="$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")
symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00')

10m52.337043088s ago: executing program 2 (id=74):
pipe2$watch_queue(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x80)
tee(r0, r0, 0x80, 0xa)

10m51.943150056s ago: executing program 32 (id=74):
pipe2$watch_queue(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x80)
tee(r0, r0, 0x80, 0xa)

10m33.953440789s ago: executing program 1 (id=197):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x5, 0x7, 0x0, 0x8001, 0x0, 0x0, 0x1}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x60800, 0x4b)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000067c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b00", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="780000000000000002000000000000040000000000000000000000000000000004"], 0x0, 0x0, 0x0, 0x0})
getdents(r2, 0x0, 0x20000)

10m33.647278855s ago: executing program 1 (id=200):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2ad, &(0x7f00000007c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)

10m33.040978797s ago: executing program 1 (id=205):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x880}, 0x0)
r0 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0x7005, 0x0)
readv(r0, &(0x7f0000000000), 0x0)

10m32.760310703s ago: executing program 1 (id=208):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f0000000400)={[{@utf8no}, {@shortname_winnt}, {@shortname_winnt}, {@fat=@nfs_nostale_ro}, {}, {@utf8no}, {@fat=@nfs}, {@fat=@dmask={'dmask', 0x3d, 0x100}}, {@fat=@discard}, {@shortname_mixed}, {@fat=@quiet}, {@shortname_lower}]}, 0x0, 0x29f, &(0x7f0000000580)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

10m32.464029639s ago: executing program 1 (id=211):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(r1, 0x0, 0x0)
r2 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r2, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000030000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)

10m32.076894126s ago: executing program 1 (id=215):
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000000c0)='./file0\x00', 0x204888, &(0x7f0000000380)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d757466382c0097b75cbdde02821d0f899c2377ee9577397fc18b433d0c59e692b381740ca495e1c145c5922679338b5ff21c0653a98440a5725268a242c0263564f988d3c178704feaf8a412df818275708882ea9a4048c6e458a1f05b83f2e69b965b1df203b21de2b0ee375647f886a5310889982079aa7b1fb42e2382d40feefe7f768eec58b19cf50faaf129503175f4262df740183df51d3641ff78b86127c1db8ef165bfa3bd20797fde6ff91a0e45d3d7c1c6d1ce0a72be8c1fdb00000000"], 0x1, 0x336, &(0x7f0000000880)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

10m31.576993076s ago: executing program 33 (id=215):
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000000c0)='./file0\x00', 0x204888, &(0x7f0000000380)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d757466382c0097b75cbdde02821d0f899c2377ee9577397fc18b433d0c59e692b381740ca495e1c145c5922679338b5ff21c0653a98440a5725268a242c0263564f988d3c178704feaf8a412df818275708882ea9a4048c6e458a1f05b83f2e69b965b1df203b21de2b0ee375647f886a5310889982079aa7b1fb42e2382d40feefe7f768eec58b19cf50faaf129503175f4262df740183df51d3641ff78b86127c1db8ef165bfa3bd20797fde6ff91a0e45d3d7c1c6d1ce0a72be8c1fdb00000000"], 0x1, 0x336, &(0x7f0000000880)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

6m7.42153778s ago: executing program 3 (id=2664):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
bind$can_raw(r0, &(0x7f0000000080), 0x10)

6m7.221716593s ago: executing program 3 (id=2667):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, 0x0, 0x2d, 0x0, @val=@perf_event={0xa}}, 0x18)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005100)=[{{0x0, 0x0, &(0x7f0000000340)}}], 0x1, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8001}, 0x4000)

6m7.041149558s ago: executing program 3 (id=2668):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
bind$ax25(r0, &(0x7f0000000100)={{0x3, @null, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
close(0x4)

6m6.9208734s ago: executing program 3 (id=2670):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='htcp\x00', 0x5)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

6m6.692034064s ago: executing program 3 (id=2672):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000100)={0x1, 0x4, 0x3})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$tipc(r2, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x41, 0x3}, 0x4}}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
shmdt(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x200400, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r5, 0x2, r4)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000480)='./file1\x00', 0x1008400, &(0x7f0000000080)=ANY=[], 0x85, 0x676, &(0x7f0000000800)="$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")
open(0x0, 0x42000, 0x1)
unlink(&(0x7f0000000180)='./file1\x00')
setxattr$incfs_metadata(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000340)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
recvmmsg(r2, &(0x7f0000001e40), 0x0, 0x100, &(0x7f0000002040)={0x0, 0x989680})
sendmmsg$inet(r1, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)

6m6.189046484s ago: executing program 3 (id=2677):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x2b, 0xb, 0x0, 0x0, {0x6}}, 0x14}}, 0xc00)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000007c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(sm4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000001280)="b7f2288a911993f08d3aaea2bc0000de", 0x10)
r3 = accept$alg(r2, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000002880), 0x0, 0x4815)
recvmmsg(r3, 0x0, 0x0, 0x2100, 0x0)
getsockopt$netlink(r1, 0x10e, 0x0, &(0x7f0000000040)=""/48, &(0x7f0000000080)=0x30)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCSMRU(r4, 0x40047452, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000)={'team0\x00', <r5=>0x0})
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r6)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r7, &(0x7f0000000000)={0x1f, 0x6, @any, 0x0, 0x1}, 0xe)
connect$bt_l2cap(r7, &(0x7f0000000680)={0x1f, 0x20, @none}, 0xe)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x78}, 0x1, 0xffffffff00000003}, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x0, 0x22, &(0x7f0000000100)={0x0, 0x989680})
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000feffffff180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000080085000000b0000000850000001100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$sock_ifreq(r8, 0x89f0, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b4000000190001002abd7000ffdbdf251d0109005000118049003780d237a5562658dec4cf9e08a3b19be99e74ce70b4e220a9e627302801adb664d0a5f023189527c0db80dc95bf7fb4bfd92396de768f8b5d8e1c994b69895cdb44211156f2840000004d0012"], 0xb4}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)={@cgroup, 0xffffffffffffffff, 0x1b, 0x0, 0x4000}, 0x20)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newlink={0x34, 0x10, 0x1, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, 0x40810, 0x40a03}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_SPOOFCHK={0xc, 0x4, {0x5}}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
socket$igmp6(0xa, 0x3, 0x2)

6m5.811140602s ago: executing program 34 (id=2677):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x2b, 0xb, 0x0, 0x0, {0x6}}, 0x14}}, 0xc00)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000007c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(sm4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000001280)="b7f2288a911993f08d3aaea2bc0000de", 0x10)
r3 = accept$alg(r2, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000002880), 0x0, 0x4815)
recvmmsg(r3, 0x0, 0x0, 0x2100, 0x0)
getsockopt$netlink(r1, 0x10e, 0x0, &(0x7f0000000040)=""/48, &(0x7f0000000080)=0x30)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCSMRU(r4, 0x40047452, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000)={'team0\x00', <r5=>0x0})
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r6)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r7, &(0x7f0000000000)={0x1f, 0x6, @any, 0x0, 0x1}, 0xe)
connect$bt_l2cap(r7, &(0x7f0000000680)={0x1f, 0x20, @none}, 0xe)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x78}, 0x1, 0xffffffff00000003}, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x0, 0x22, &(0x7f0000000100)={0x0, 0x989680})
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000feffffff180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000080085000000b0000000850000001100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$sock_ifreq(r8, 0x89f0, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b4000000190001002abd7000ffdbdf251d0109005000118049003780d237a5562658dec4cf9e08a3b19be99e74ce70b4e220a9e627302801adb664d0a5f023189527c0db80dc95bf7fb4bfd92396de768f8b5d8e1c994b69895cdb44211156f2840000004d0012"], 0xb4}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)={@cgroup, 0xffffffffffffffff, 0x1b, 0x0, 0x4000}, 0x20)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newlink={0x34, 0x10, 0x1, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, 0x40810, 0x40a03}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_SPOOFCHK={0xc, 0x4, {0x5}}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
socket$igmp6(0xa, 0x3, 0x2)

4m6.049522302s ago: executing program 6 (id=3374):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x54, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
unshare(0x22020600)

4m5.775242777s ago: executing program 6 (id=3375):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x28, 0x2, 0x0, 0xfffff030}, {0x6}]}, 0x10)

4m5.473127913s ago: executing program 6 (id=3376):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x15)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)

4m5.252712697s ago: executing program 6 (id=3377):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x12048d9, &(0x7f00000009c0)=ANY=[], 0x0, 0x2a5, &(0x7f0000000dc0)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

4m4.801114496s ago: executing program 6 (id=3380):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000400)={0x14, r1, 0x1, 0xfffffdff, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20048040}, 0x20000000)

4m4.10512953s ago: executing program 6 (id=3383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x54, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
unshare(0x22020600)

4m3.283209986s ago: executing program 35 (id=3383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x54, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
unshare(0x22020600)

2m47.747763228s ago: executing program 0 (id=3562):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000280)={0x1, 0x3, 0x0, 0x1000, &(0x7f0000fe6000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000100)="f3a50f09cbd0640f01c4660f38817ac5baf80c66b814370f8766efbafc0cb000ef0f01c40f07568000048e3665660ff5649ff082622463baf80c66b8b8ba8a8966efbafc0cec8ed8", 0x48}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@arm64={0xa2, 0xc, 0x1, '\x00', 0x9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m45.949087124s ago: executing program 0 (id=3567):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYBLOB], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYBLOB="048d"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300), 0x8)

2m45.680343169s ago: executing program 0 (id=3570):
syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x81008c, &(0x7f00000004c0)=ANY=[@ANYRES64=0x0, @ANYRES64=0x0, @ANYRES32=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRES64=0x0, @ANYRES32], 0x1, 0x67d, &(0x7f0000000bc0)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x80011, 0x0, 0x1, 0x0, 0x0)

2m43.55759801s ago: executing program 0 (id=3574):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, 0x0, 0x0)
r2 = socket(0x2, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x12, 0x0, 0x0)

2m42.56908252s ago: executing program 0 (id=3575):
r0 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x800, 0x0)
listxattr(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socket(0x22, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8200, 0x0, 0xfffffffffffffed9, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
getpid()
r4 = syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f00000004c0)=""/102399, 0x18fff)
ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, 0x0)
ftruncate(r0, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r0, 0x0)
lseek(r0, 0x0, 0x4)

2m41.159770388s ago: executing program 0 (id=3576):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH")
setxattr$trusted_overlay_upper(0x0, &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
sync()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sndseq(0xffffffffffffff9c, 0x0, 0xe0c81)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x741400, 0x0)
listxattr(&(0x7f0000000580)='./file0\x00', 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00')

2m26.025549215s ago: executing program 36 (id=3576):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@user_xattr}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(0x0, &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
sync()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sndseq(0xffffffffffffff9c, 0x0, 0xe0c81)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x741400, 0x0)
listxattr(&(0x7f0000000580)='./file0\x00', 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00')

14.723244701s ago: executing program 8 (id=3965):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, 0x0, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x4800, 0x100, 0x0)
write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x11812410, 0x0, 0x0, 0x81}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f0000006dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000004480)={0x90, 0x0, 0x6, {0x3, 0x0, 0x7fffffff, 0x1fffffffffffd, 0x400, 0xc, {0x1, 0x9, 0x8, 0x1, 0x1, 0x4, 0x8, 0x123, 0xdab5, 0xa000, 0x0, 0x0, 0x0, 0x6, 0xffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open$dir(&(0x7f0000002240)='./file0/file0\x00', 0x12803, 0x90)

12.7551747s ago: executing program 8 (id=3969):
pipe2(&(0x7f0000000040), 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000800)={[{@nobarrier}, {@jqfmt_vfsv1}, {@orlov}, {@errors_remount}, {@errors_remount}, {@nodiscard}, {@grpjquota}, {@nodelalloc}, {@errors_remount}]}, 0x1, 0x563, &(0x7f0000001080)="$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")
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f0000000000)={[{@user_xattr}, {@errors_remount}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
write$tun(r0, &(0x7f0000000040)=ANY=[], 0x1043)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0\x00', 0x143941, 0x18)

10.327140187s ago: executing program 8 (id=3978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback=r3, 0x0, 0x1, 0x7, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
syz_emit_ethernet(0x52, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
syz_emit_vhci(&(0x7f0000001040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_WRITE_LOCAL_NAME={{0xa7}}}}, 0x7)
socket$inet6(0xa, 0x3, 0xff)
syz_open_dev$sndpcmc(&(0x7f0000000180), 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r4, 0x0, 0x2e, &(0x7f0000000340)={0x23, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @broadcast}}}, 0x108)

8.287174538s ago: executing program 8 (id=3980):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002500), 0x20080, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0x4018aee3, &(0x7f0000002540))

8.14970185s ago: executing program 4 (id=3983):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
timer_create(0x1, &(0x7f0000000240)={0x0, 0x21, 0x2}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
setxattr$incfs_metadata(0x0, &(0x7f0000000080), 0x0, 0x0, 0x2)

8.043631312s ago: executing program 5 (id=3984):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x70}, [@ldst={0x6, 0x0, 0x5}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(&(0x7f0000000080)=0x3, 0x0, 0x1, &(0x7f0000000180)={0x0, 0x989680}, 0x0, 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x51)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16=r1], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r3}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="130000001000000008"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000500)={r4, &(0x7f0000000240), 0x0}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe2(0x0, 0x880)
r5 = syz_open_procfs(0x0, 0x0)
lseek(r5, 0x80000000457, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})

8.042726743s ago: executing program 7 (id=3985):
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, 0x0, 0x20000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
unshare(0x28000600)

6.669286639s ago: executing program 5 (id=3986):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x9, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xa0, 0x15}, [@call={0x45}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000956d747b5bd57d917c9cc42b424c412e050c992a01a4d5a436633e03635bce5f53a9ae75bd3ff899"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/vmstat\x00', 0x0, 0x0)
mount$9p_tcp(0x0, &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x0, &(0x7f0000000040)={'trans=tcp,', {'port', 0x3d, 0x10000004e22}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0x6, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0xb8}, [@ldst={0x5}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
close(r3)
close(r0)
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x2000, 0x215)

5.455936164s ago: executing program 5 (id=3987):
creat(&(0x7f00000003c0)='./bus\x00', 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f00000004c0)='./bus\x00', 0x10b042, 0x0)
ftruncate(r1, 0x2008002)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0)
r2 = gettid()
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x42, 0x126)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
process_vm_writev(r2, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x2b, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0)

5.360953315s ago: executing program 8 (id=3988):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback=r3, 0x0, 0x1, 0x7, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
syz_emit_ethernet(0x52, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
syz_emit_vhci(&(0x7f0000001040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_WRITE_LOCAL_NAME={{0xa7}}}}, 0x7)
socket$inet6(0xa, 0x3, 0xff)
syz_open_dev$sndpcmc(&(0x7f0000000180), 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r4, 0x0, 0x2e, &(0x7f0000000340)={0x23, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @broadcast}}}, 0x108)

3.638686759s ago: executing program 8 (id=3989):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(0xffffffffffffffff, 0x80184132, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x9, 0x201, &(0x7f0000000f40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x48)

3.546583281s ago: executing program 4 (id=3990):
openat$tun(0xffffffffffffff9c, 0x0, 0x140, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], &(0x7f0000000240)=""/252, 0x37, 0xfc, 0x1}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

3.330791935s ago: executing program 7 (id=3991):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000006e80)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2082)
statx(0xffffffffffffff9c, 0x0, 0x4800, 0x100, 0x0)
write$FUSE_INIT(r0, &(0x7f0000004300)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x11812410, 0x0, 0x0, 0x81}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f0000006dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000004480)={0x90, 0x0, 0x6, {0x3, 0x0, 0x7fffffff, 0x1fffffffffffd, 0x400, 0xc, {0x1, 0x9, 0x8, 0x1, 0x1, 0x4, 0x8, 0x123, 0xdab5, 0xa000, 0x0, r2, r3, 0x6, 0xffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open$dir(&(0x7f0000002240)='./file0/file0\x00', 0x12803, 0x90)

3.316906605s ago: executing program 4 (id=3992):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x0)

3.133187659s ago: executing program 4 (id=3993):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/netstat\x00')
socket(0x11, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
syz_open_dev$evdev(&(0x7f0000000440), 0x3, 0x101000)
close_range(r0, 0xffffffffffffffff, 0x0)

3.0958095s ago: executing program 5 (id=3994):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x70}, [@ldst={0x6, 0x0, 0x5}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(&(0x7f0000000080)=0x3, 0x0, 0x1, &(0x7f0000000180)={0x0, 0x989680}, 0x0, 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x51)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16=r1], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r3}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="130000001000000008"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000500)={r4, &(0x7f0000000240), 0x0}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe2(0x0, 0x880)
r5 = syz_open_procfs(0x0, 0x0)
lseek(r5, 0x80000000457, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})

3.06638058s ago: executing program 7 (id=3995):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0xa8b73000)
mlock2(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0)
mremap(&(0x7f00006d3000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000590000/0x3000)=nil)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
mlock2(&(0x7f0000006000/0x1000)=nil, 0x1000, 0x1)
mlock2(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0)

2.901044684s ago: executing program 4 (id=3996):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x9, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xa0, 0x15}, [@call={0x45}]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000956d747b5bd57d917c9cc42b424c412e050c992a01a4d5a436633e03635bce5f53a9ae75bd3ff899"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/vmstat\x00', 0x0, 0x0)
mount$9p_tcp(0x0, &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x0, &(0x7f0000000040)={'trans=tcp,', {'port', 0x3d, 0x10000004e22}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0x6, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0xb8}, [@ldst={0x5}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
close(r3)
close(r0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x80)

2.696081197s ago: executing program 7 (id=3997):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000050000000804ff0fcd00000001"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000580010005000000"], 0x48)

1.604721649s ago: executing program 5 (id=3998):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback=r3, 0x0, 0x1, 0x7, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
syz_emit_ethernet(0x52, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
syz_emit_vhci(&(0x7f0000001040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_WRITE_LOCAL_NAME={{0xa7}}}}, 0x7)
socket$inet6(0xa, 0x3, 0xff)
syz_open_dev$sndpcmc(&(0x7f0000000180), 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r4, 0x0, 0x2e, &(0x7f0000000340)={0x23, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @broadcast}}}, 0x108)

1.55312279s ago: executing program 7 (id=3999):
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, 0x0, 0x20000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
unshare(0x28000600)

136.786477ms ago: executing program 7 (id=4000):
openat$tun(0xffffffffffffff9c, 0x0, 0x140, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], &(0x7f0000000240)=""/252, 0x37, 0xfc, 0x1}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

115.919928ms ago: executing program 5 (id=4001):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x0)

0s ago: executing program 4 (id=4002):
syz_mount_image$udf(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='\x00'], 0x1, 0x5c6, &(0x7f00000006c0)="$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")
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80080, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_io_uring_setup(0x237, &(0x7f0000000240)={0x0, 0xebcc, 0x1, 0x2, 0x24e}, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000380))
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f00000001c0)={&(0x7f0000001000)={[{0x0, 0x0, 0x1}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/stat\x00', 0x0, 0x0)
pread64(r5, &(0x7f0000002780)=""/59, 0x3b, 0xf27b)

kernel console output (not intermixed with test programs):

tdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  379.927297][ T5105] Bluetooth: hci1: command tx timeout
[  380.049745][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.072674][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.165611][ T2928] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.191847][ T2928] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.499285][T13495] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2485'.
[  380.857424][T13504] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  380.907473][T13507] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2540'.
[  380.908967][T13504] syzkaller0: entered promiscuous mode
[  380.939325][T13504] syzkaller0: entered allmulticast mode
[  381.000843][T13504] tipc: Resetting bearer <eth:syzkaller0>
[  381.022298][T13503] tipc: Resetting bearer <eth:syzkaller0>
[  381.046252][T13503] tipc: Disabling bearer <eth:syzkaller0>
[  381.316924][T13515] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.333714][T13515] syzkaller0: entered promiscuous mode
[  381.342152][T13515] syzkaller0: entered allmulticast mode
[  381.386660][T13514] tipc: Resetting bearer <eth:syzkaller0>
[  381.392165][T13519] syz.3.2545[13519] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  381.392669][T13519] syz.3.2545[13519] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  381.443613][T13514] tipc: Disabling bearer <eth:syzkaller0>
[  381.667733][T13522] loop3: detected capacity change from 0 to 1024
[  381.786306][T13526] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.803331][T13526] syzkaller0: entered promiscuous mode
[  381.825818][T13526] syzkaller0: entered allmulticast mode
[  381.876754][T13526] tipc: Resetting bearer <eth:syzkaller0>
[  381.900035][T13525] tipc: Resetting bearer <eth:syzkaller0>
[  381.966758][T13525] tipc: Disabling bearer <eth:syzkaller0>
[  382.006213][ T5105] Bluetooth: hci1: command tx timeout
[  382.555546][T13547] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  382.577080][T13544] syzkaller0: entered promiscuous mode
[  382.586829][T13544] syzkaller0: entered allmulticast mode
[  382.702436][T13542] tipc: Resetting bearer <eth:syzkaller0>
[  382.838363][T13542] tipc: Disabling bearer <eth:syzkaller0>
[  382.952098][T13557] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  382.977837][T13557] syzkaller0: entered promiscuous mode
[  382.983377][T13557] syzkaller0: entered allmulticast mode
[  383.093215][T13557] tipc: Resetting bearer <eth:syzkaller0>
[  383.122151][T13555] tipc: Resetting bearer <eth:syzkaller0>
[  383.197460][T13555] tipc: Disabling bearer <eth:syzkaller0>
[  383.455153][T13572] loop5: detected capacity change from 0 to 1024
[  383.864851][T13581] tipc: Started in network mode
[  383.890327][T13581] tipc: Node identity d2c7d12f68dd, cluster identity 4711
[  383.905055][T13581] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  383.922554][T13581] syzkaller0: entered promiscuous mode
[  383.935840][T13581] syzkaller0: entered allmulticast mode
[  384.041194][T13580] tipc: Resetting bearer <eth:syzkaller0>
[  384.119819][T13580] tipc: Disabling bearer <eth:syzkaller0>
[  384.160356][T13591] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2576'.
[  384.187067][T13591] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  384.854732][T13608] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  384.881435][T13608] syzkaller0: entered promiscuous mode
[  384.887774][T13608] syzkaller0: entered allmulticast mode
[  384.903372][T13612] bridge_slave_0: invalid flags given to default FDB implementation
[  384.914403][T13611] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  384.939970][T13611] syzkaller0: entered promiscuous mode
[  384.945531][T13611] syzkaller0: entered allmulticast mode
[  384.969699][T13608] tipc: Resetting bearer <eth:syzkaller0>
[  384.986970][T13611] tipc: Resetting bearer <eth:syzkaller0>
[  385.001427][T13607] tipc: Resetting bearer <eth:syzkaller0>
[  385.028416][T13614] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2587'.
[  385.042651][T13607] tipc: Disabling bearer <eth:syzkaller0>
[  385.053431][T13609] tipc: Resetting bearer <eth:syzkaller0>
[  385.073568][T13609] tipc: Disabling bearer <eth:syzkaller0>
[  385.083351][T13614] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  385.420548][T13622] loop4: detected capacity change from 0 to 1024
[  385.980099][T13640] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2597'.
[  385.994952][T13640] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  386.167188][T13642] netlink: 'syz.5.2598': attribute type 1 has an invalid length.
[  386.251316][T13642] 8021q: adding VLAN 0 to HW filter on device bond2
[  386.271612][T13648] bond2: (slave wlan0): Enslaving as an active interface with a down link
[  386.363681][T13642] vlan2: entered allmulticast mode
[  386.370710][T13642] veth1: entered allmulticast mode
[  386.377104][T13642] bond2: (slave vlan2): Opening slave failed
[  386.500066][T13647] netlink: 260 bytes leftover after parsing attributes in process `syz.0.2600'.
[  386.756666][T13658] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2604'.
[  386.960872][T13666] ieee802154 phy0 wpan0: encryption failed: -22
[  387.060489][T13667] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  387.106733][T13669] loop4: detected capacity change from 0 to 1024
[  387.193283][T13670] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2606'.
[  387.751180][T13687] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2616'.
[  387.983232][T13694] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  388.137461][T13698] netlink: 260 bytes leftover after parsing attributes in process `syz.3.2618'.
[  388.322204][T13704] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  388.364582][T13704] syzkaller0: entered promiscuous mode
[  388.376504][T13704] syzkaller0: entered allmulticast mode
[  388.433031][T13704] tipc: Resetting bearer <eth:syzkaller0>
[  388.472524][T13702] tipc: Resetting bearer <eth:syzkaller0>
[  388.562804][T13702] tipc: Disabling bearer <eth:syzkaller0>
[  388.858715][T13721] loop4: detected capacity change from 0 to 1024
[  388.885023][T13723] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  389.404942][T13734] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  389.434448][T13734] syzkaller0: entered promiscuous mode
[  389.446029][T13734] syzkaller0: entered allmulticast mode
[  389.542551][T13733] tipc: Resetting bearer <eth:syzkaller0>
[  389.628220][T13733] tipc: Disabling bearer <eth:syzkaller0>
[  389.916102][T13751] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  390.378244][T13766] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  390.401168][T13766] syzkaller0: entered promiscuous mode
[  390.418318][T13766] syzkaller0: entered allmulticast mode
[  390.533615][T13765] tipc: Resetting bearer <eth:syzkaller0>
[  390.644635][T13765] tipc: Disabling bearer <eth:syzkaller0>
[  390.762840][T13776] loop3: detected capacity change from 0 to 1024
[  390.987980][T13780] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  391.590179][T13797] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  391.617029][T13797] syzkaller0: entered promiscuous mode
[  391.641135][T13797] syzkaller0: entered allmulticast mode
[  391.675009][T13795] tipc: Resetting bearer <eth:syzkaller0>
[  391.744659][T13795] tipc: Disabling bearer <eth:syzkaller0>
[  391.996441][T13805] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  392.793948][T13823] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  392.832762][T13823] syzkaller0: entered promiscuous mode
[  392.838534][T13823] syzkaller0: entered allmulticast mode
[  392.960355][T13822] tipc: Resetting bearer <eth:syzkaller0>
[  393.001902][T13829] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2676'.
[  393.045236][T13822] tipc: Disabling bearer <eth:syzkaller0>
[  393.160785][ T3487] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.314720][ T3487] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.391146][T13833] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  393.439505][ T3487] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.468757][T13833] syzkaller0: entered promiscuous mode
[  393.474377][T13833] syzkaller0: entered allmulticast mode
[  393.569659][ T3487] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.725051][T13840] tipc: Resetting bearer <eth:syzkaller0>
[  393.737552][   T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  393.751084][T13831] tipc: Resetting bearer <eth:syzkaller0>
[  393.758415][   T50] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  393.771814][   T50] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  393.787399][   T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  393.827620][   T50] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  393.837121][   T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  393.839772][T13831] tipc: Disabling bearer <eth:syzkaller0>
[  394.212113][ T3487] tipc: Left network mode
[  394.593177][T13861] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2686'.
[  395.031899][T13871] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2689'.
[  395.236135][T13874] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  395.372828][T13867] syzkaller0: entered promiscuous mode
[  395.378568][T13867] syzkaller0: entered allmulticast mode
[  395.472104][T13842] chnl_net:caif_netlink_parms(): no params data found
[  395.501709][T13881] bridge0: port 3(syz_tun) entered blocking state
[  395.526349][T13881] bridge0: port 3(syz_tun) entered disabled state
[  395.544779][T13881] syz_tun: entered allmulticast mode
[  395.556326][T13881] syz_tun: entered promiscuous mode
[  395.574665][T13881] bridge0: port 3(syz_tun) entered blocking state
[  395.581862][T13881] bridge0: port 3(syz_tun) entered forwarding state
[  395.691793][T13866] tipc: Resetting bearer <eth:syzkaller0>
[  395.747199][T13866] tipc: Disabling bearer <eth:syzkaller0>
[  395.926735][ T5105] Bluetooth: hci3: command tx timeout
[  396.190801][T13903] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2696'.
[  396.200296][T13903] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2696'.
[  396.244840][T13907] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2695'.
[  396.270156][T13908] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2696'.
[  396.294972][T13908] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  396.435858][T13842] bridge0: port 1(bridge_slave_0) entered blocking state
[  396.447775][T13842] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.455165][T13842] bridge_slave_0: entered allmulticast mode
[  396.463145][T13842] bridge_slave_0: entered promiscuous mode
[  396.530855][T13842] bridge0: port 2(bridge_slave_1) entered blocking state
[  396.538691][T13842] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.558284][T13842] bridge_slave_1: entered allmulticast mode
[  396.603043][T13842] bridge_slave_1: entered promiscuous mode
[  396.963863][T13842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  397.023415][ T3487] hsr_slave_0: left promiscuous mode
[  397.051934][ T3487] hsr_slave_1: left promiscuous mode
[  397.074220][ T3487] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  397.095425][ T3487] batman_adv: batadv0: Removing interface: batadv_slave_0
[  397.120049][ T3487] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  397.138227][ T3487] batman_adv: batadv0: Removing interface: batadv_slave_1
[  397.149345][ T3487] bridge_slave_1: left allmulticast mode
[  397.155272][ T3487] bridge_slave_1: left promiscuous mode
[  397.162923][ T3487] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.239208][ T3487] bridge_slave_0: left allmulticast mode
[  397.245842][ T3487] bridge_slave_0: left promiscuous mode
[  397.253802][ T3487] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.358677][ T3487] veth1_macvtap: left promiscuous mode
[  397.374311][ T3487] veth0_macvtap: left promiscuous mode
[  397.385658][ T3487] veth1_vlan: left promiscuous mode
[  397.391780][ T3487] veth0_vlan: left promiscuous mode
[  397.795477][T13946] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2704'.
[  398.012638][   T50] Bluetooth: hci3: command tx timeout
[  398.464508][ T3487] team0 (unregistering): Port device team_slave_1 removed
[  398.534596][ T3487] team0 (unregistering): Port device team_slave_0 removed
[  398.593598][ T3487] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  398.654002][ T3487] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  399.302984][ T3487] bond0 (unregistering): Released all slaves
[  399.395452][T13842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  399.430260][T13934] dvmrp1: entered allmulticast mode
[  399.602444][T13842] team0: Port device team_slave_0 added
[  399.664794][T13842] team0: Port device team_slave_1 added
[  399.838757][T13842] batman_adv: batadv0: Adding interface: batadv_slave_0
[  399.856387][T13842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  399.934284][T13842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  399.970893][T13842] batman_adv: batadv0: Adding interface: batadv_slave_1
[  399.991134][T13842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.019339][T13842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  400.086600][   T50] Bluetooth: hci3: command tx timeout
[  400.466180][T13970] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  400.500149][T13974] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2712'.
[  400.781854][T13842] hsr_slave_0: entered promiscuous mode
[  400.844301][T13842] hsr_slave_1: entered promiscuous mode
[  400.851288][T13842] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  400.870209][T13842] Cannot create hsr debugfs directory
[  400.936259][T13976] tipc: Resetting bearer <eth:syzkaller0>
[  400.949520][T13971] syzkaller0: entered promiscuous mode
[  400.976718][T13971] syzkaller0: entered allmulticast mode
[  401.011173][T13985] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  401.035521][T13968] tipc: Resetting bearer <eth:syzkaller0>
[  401.084770][T13968] tipc: Disabling bearer <eth:syzkaller0>
[  401.168908][T13981] tipc: Resetting bearer <eth:syzkaller0>
[  401.309153][T13979] tipc: Disabling bearer <eth:syzkaller0>
[  402.025663][T13842] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  402.059145][T13842] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  402.073643][T14014] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  402.088463][T13842] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  402.117560][T13842] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  402.164442][T14014] syzkaller0: entered promiscuous mode
[  402.171075][   T50] Bluetooth: hci3: command tx timeout
[  402.187556][T14014] syzkaller0: entered allmulticast mode
[  402.295034][T14020] tipc: Resetting bearer <eth:syzkaller0>
[  402.353969][T14031] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2722'.
[  402.387925][T14031] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2722'.
[  402.426985][T14031] tipc: Invalid UDP bearer configuration
[  402.427046][T14031] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  402.486774][T14013] tipc: Resetting bearer <eth:syzkaller0>
[  402.539048][T14037] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  402.575337][T14013] tipc: Disabling bearer <eth:syzkaller0>
[  402.830425][T13842] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.909975][T13842] 8021q: adding VLAN 0 to HW filter on device team0
[  402.956237][ T3504] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.963409][ T3504] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.035217][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.042527][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.121651][T14048] syzkaller0: entered promiscuous mode
[  403.146205][T14048] syzkaller0: entered allmulticast mode
[  403.919373][T14071] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input6
[  404.088886][T14060] syz.5.2729 (14060) used greatest stack depth: 17960 bytes left
[  404.246548][   T50] Bluetooth: hci3: command tx timeout
[  404.290800][T13842] 8021q: adding VLAN 0 to HW filter on device batadv0
[  405.361228][T14108] syzkaller0: entered promiscuous mode
[  405.376839][T14108] syzkaller0: entered allmulticast mode
[  405.398134][T13842] veth0_vlan: entered promiscuous mode
[  405.493501][T13842] veth1_vlan: entered promiscuous mode
[  405.639987][T13842] veth0_macvtap: entered promiscuous mode
[  405.673516][T13842] veth1_macvtap: entered promiscuous mode
[  405.768437][T13842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.821619][T13842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.875775][T13842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.911621][T13842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.941115][T13842] batman_adv: batadv0: Interface activated: batadv_slave_0
[  405.984351][T13842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.035929][T13842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.056502][T13842] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.093839][T13842] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.111605][T13842] batman_adv: batadv0: Interface activated: batadv_slave_1
[  406.189774][T13842] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  406.222490][T13842] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  406.253223][T13842] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  406.277901][T13842] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  406.607289][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  406.615177][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  406.675468][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  406.705819][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  407.198196][T14152] syzkaller0: entered promiscuous mode
[  407.203745][T14152] syzkaller0: entered allmulticast mode
[  407.515746][T14157] tipc: Started in network mode
[  407.520726][T14157] tipc: Node identity de49b46fb574, cluster identity 4711
[  407.556561][T14157] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  407.593684][T14156] syzkaller0: entered promiscuous mode
[  407.617114][T14156] syzkaller0: entered allmulticast mode
[  407.751853][T14156] tipc: Resetting bearer <eth:syzkaller0>
[  407.800680][T14155] tipc: Resetting bearer <eth:syzkaller0>
[  407.877391][T14155] tipc: Disabling bearer <eth:syzkaller0>
[  408.288657][ T5105] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  408.302721][ T5105] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  408.311411][ T5105] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  408.320929][ T5105] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  408.329473][ T5105] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  408.337005][ T5105] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  408.403530][ T6924] bond0: (slave syz_tun): Releasing backup interface
[  409.375094][T14167] chnl_net:caif_netlink_parms(): no params data found
[  409.404625][T14197] syzkaller0: entered promiscuous mode
[  409.415324][T14197] syzkaller0: entered allmulticast mode
[  409.844301][T14167] bridge0: port 1(bridge_slave_0) entered blocking state
[  409.873844][T14167] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.899707][T14167] bridge_slave_0: entered allmulticast mode
[  409.911826][T14167] bridge_slave_0: entered promiscuous mode
[  409.935973][T14167] bridge0: port 2(bridge_slave_1) entered blocking state
[  409.948689][T14167] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.956938][T14167] bridge_slave_1: entered allmulticast mode
[  409.971922][T14167] bridge_slave_1: entered promiscuous mode
[  410.093836][T14167] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  410.124223][T14167] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  410.313889][T14167] team0: Port device team_slave_0 added
[  410.389955][T14167] team0: Port device team_slave_1 added
[  410.485999][ T5105] Bluetooth: hci4: command tx timeout
[  410.535280][T14167] batman_adv: batadv0: Adding interface: batadv_slave_0
[  410.556029][T14167] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.705917][T14167] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  410.775042][T14167] batman_adv: batadv0: Adding interface: batadv_slave_1
[  410.804614][T14167] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.878741][T14167] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  411.035181][T14167] hsr_slave_0: entered promiscuous mode
[  411.064331][T14167] hsr_slave_1: entered promiscuous mode
[  411.075927][T14167] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  411.088928][T14167] Cannot create hsr debugfs directory
[  412.103642][T14247] syzkaller0: entered promiscuous mode
[  412.109933][T14247] syzkaller0: entered allmulticast mode
[  412.570704][T14167] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  412.576881][ T5105] Bluetooth: hci4: command tx timeout
[  412.588852][T14167] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  412.627829][T14167] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  412.677913][T14167] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  412.924450][T14167] 8021q: adding VLAN 0 to HW filter on device bond0
[  412.972584][T14167] 8021q: adding VLAN 0 to HW filter on device team0
[  413.008537][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.015823][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  413.077873][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.085127][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  413.198672][T14167] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  413.761214][T14167] 8021q: adding VLAN 0 to HW filter on device batadv0
[  414.647221][ T5105] Bluetooth: hci4: command tx timeout
[  414.708106][T14167] veth0_vlan: entered promiscuous mode
[  414.763744][T14167] veth1_vlan: entered promiscuous mode
[  414.850869][T14318] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2783'.
[  414.877691][T14167] veth0_macvtap: entered promiscuous mode
[  414.907220][T14167] veth1_macvtap: entered promiscuous mode
[  414.976177][T14167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  414.986905][T14167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  414.998130][T14167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.009511][T14167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.020026][T14167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.032965][T14167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.083643][T14167] batman_adv: batadv0: Interface activated: batadv_slave_0
[  415.118430][T14167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.153666][T14167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.174802][T14167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.199052][T14167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.222433][T14167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.236110][T14167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.248241][T14167] batman_adv: batadv0: Interface activated: batadv_slave_1
[  415.281649][T14167] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  415.295913][T14167] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  415.304703][T14167] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  415.335856][T14167] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  415.348570][T14325] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  415.404729][T14324] syzkaller0: entered promiscuous mode
[  415.416218][T14324] syzkaller0: entered allmulticast mode
[  415.488978][T14324] tipc: Resetting bearer <eth:syzkaller0>
[  415.576130][T14323] tipc: Resetting bearer <eth:syzkaller0>
[  415.666922][T14323] tipc: Disabling bearer <eth:syzkaller0>
[  415.807505][ T3487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  415.815384][ T3487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  416.030630][ T3504] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  416.046235][ T3504] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  416.728660][ T5105] Bluetooth: hci4: command tx timeout
[  417.373882][T14376] netlink: 'syz.6.2803': attribute type 16 has an invalid length.
[  417.382081][T14376] netlink: 'syz.6.2803': attribute type 17 has an invalid length.
[  417.403798][T14376] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  419.575418][T14449] netlink: 'syz.6.2820': attribute type 13 has an invalid length.
[  419.585289][T14449] netlink: 'syz.6.2820': attribute type 17 has an invalid length.
[  419.844701][T14449] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  420.011401][T14449] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  420.199652][T14464] tipc: Started in network mode
[  420.204616][T14464] tipc: Node identity 66fd4b737bdd, cluster identity 4711
[  420.214390][T14464] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  420.237265][T14464] syzkaller0: entered promiscuous mode
[  420.242906][T14464] syzkaller0: entered allmulticast mode
[  420.282992][T14464] tipc: Resetting bearer <eth:syzkaller0>
[  420.323542][T14462] tipc: Resetting bearer <eth:syzkaller0>
[  420.361184][T14462] tipc: Disabling bearer <eth:syzkaller0>
[  421.145974][T14486] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  421.169418][T14486] syzkaller0: entered promiscuous mode
[  421.185619][T14486] syzkaller0: entered allmulticast mode
[  421.276561][T14486] tipc: Resetting bearer <eth:syzkaller0>
[  421.291463][T14485] tipc: Resetting bearer <eth:syzkaller0>
[  421.359937][T14485] tipc: Disabling bearer <eth:syzkaller0>
[  423.350253][T14537] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2845'.
[  423.637944][T14543] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  423.668654][T14543] syzkaller0: entered promiscuous mode
[  423.694820][T14543] syzkaller0: entered allmulticast mode
[  423.808740][T14543] tipc: Resetting bearer <eth:syzkaller0>
[  423.865245][T14542] tipc: Resetting bearer <eth:syzkaller0>
[  423.980637][T14542] tipc: Disabling bearer <eth:syzkaller0>
[  424.081959][T14560] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  424.663391][T14577] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  424.696743][T14577] syzkaller0: entered promiscuous mode
[  424.702287][T14577] syzkaller0: entered allmulticast mode
[  424.942979][T14576] tipc: Resetting bearer <eth:syzkaller0>
[  425.079875][T14576] tipc: Disabling bearer <eth:syzkaller0>
[  426.144308][T14624] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2868'.
[  426.542316][T14637] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  426.588772][T14637] syzkaller0: entered promiscuous mode
[  426.594316][T14637] syzkaller0: entered allmulticast mode
[  426.725198][T14635] tipc: Resetting bearer <eth:syzkaller0>
[  426.854567][T14635] tipc: Disabling bearer <eth:syzkaller0>
[  428.354365][T14704] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  428.368751][T14704] syzkaller0: entered promiscuous mode
[  428.383786][T14704] syzkaller0: entered allmulticast mode
[  428.524552][T14702] tipc: Resetting bearer <eth:syzkaller0>
[  428.583908][T14702] tipc: Disabling bearer <eth:syzkaller0>
[  428.627843][T14717] netlink: 'syz.0.2891': attribute type 4 has an invalid length.
[  428.724497][T14715] netlink: 'syz.0.2891': attribute type 4 has an invalid length.
[  428.803271][T14721] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  429.217841][T14739] pimreg: entered allmulticast mode
[  429.453757][T14751] vcan0: tx drop: invalid sa for name 0x0000020000000000
[  429.824471][T14758] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  429.891211][T14758] tipc: Resetting bearer <eth:syzkaller0>
[  429.939574][T14757] tipc: Disabling bearer <eth:syzkaller0>
[  430.055646][T14769] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2900'.
[  430.299460][T14772] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  430.338954][T14772] tipc: Resetting bearer <eth:syzkaller0>
[  430.372717][T14771] tipc: Disabling bearer <eth:syzkaller0>
[  430.754833][T14796] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  431.376363][T14815] syzkaller0: entered promiscuous mode
[  431.402767][T14815] syzkaller0: entered allmulticast mode
[  432.057408][T14837] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  432.092400][T14837] tipc: Resetting bearer <eth:syzkaller0>
[  432.109829][T14835] tipc: Disabling bearer <eth:syzkaller0>
[  432.767542][T14858] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  432.775523][T14858] syzkaller0: entered promiscuous mode
[  432.786306][T14858] syzkaller0: entered allmulticast mode
[  432.816736][T14858] tipc: Resetting bearer <eth:syzkaller0>
[  432.845253][T14857] tipc: Resetting bearer <eth:syzkaller0>
[  432.930936][T14857] tipc: Disabling bearer <eth:syzkaller0>
[  433.060998][T14867] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  433.181263][T14870] wg1 speed is unknown, defaulting to 1000
[  433.216062][T14870] wg1 speed is unknown, defaulting to 1000
[  433.269163][T14870] wg1 speed is unknown, defaulting to 1000
[  433.384091][T14870] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  433.476523][T14870] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  433.670642][T14870] wg1 speed is unknown, defaulting to 1000
[  433.706844][T14870] wg1 speed is unknown, defaulting to 1000
[  433.743715][T14870] wg1 speed is unknown, defaulting to 1000
[  433.756046][T14889] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  433.776650][T14870] wg1 speed is unknown, defaulting to 1000
[  433.782523][T14889] tipc: Resetting bearer <eth:syzkaller0>
[  433.790411][T14887] tipc: Disabling bearer <eth:syzkaller0>
[  433.812069][T14870] wg1 speed is unknown, defaulting to 1000
[  433.834127][T14870] wg1 speed is unknown, defaulting to 1000
[  434.569648][T14916] syzkaller0: entered promiscuous mode
[  434.575393][T14916] syzkaller0: entered allmulticast mode
[  434.600619][T14915] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  435.641815][T14939] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  435.650118][T14939] syzkaller0: entered promiscuous mode
[  435.658932][T14939] syzkaller0: entered allmulticast mode
[  435.770146][T14939] tipc: Resetting bearer <eth:syzkaller0>
[  435.847735][T14938] tipc: Resetting bearer <eth:syzkaller0>
[  435.888920][T14938] tipc: Disabling bearer <eth:syzkaller0>
[  435.966352][T14945] syzkaller0: entered promiscuous mode
[  435.971940][T14945] syzkaller0: entered allmulticast mode
[  436.397562][T14953] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.427682][T14956] netlink: 'syz.0.2947': attribute type 1 has an invalid length.
[  436.562373][T14953] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.700008][T14953] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.921618][T14953] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.281295][T14953] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  437.351168][T14953] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  437.383510][T14953] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  437.436329][T14953] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  437.627371][T14985] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  438.975058][T15018] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  439.333404][T15019] syzkaller0: entered promiscuous mode
[  439.372435][T15019] syzkaller0: entered allmulticast mode
[  439.468666][T15035] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  439.483551][T15034] wg1 speed is unknown, defaulting to 1000
[  439.791805][T15037] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2973'.
[  439.872206][T15037] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2973'.
[  440.410862][ T1286] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  440.426428][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  441.173909][T15091] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  441.198595][T15091] syzkaller0: entered promiscuous mode
[  441.204608][T15091] syzkaller0: entered allmulticast mode
[  441.343397][T15091] tipc: Resetting bearer <eth:syzkaller0>
[  441.373807][T15090] tipc: Resetting bearer <eth:syzkaller0>
[  441.429985][T15090] tipc: Disabling bearer <eth:syzkaller0>
[  441.577962][T15101] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2621
[  444.329359][T15185] tipc: Enabled bearer <udp:syz2>, priority 10
[  444.670900][T15190] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3028'.
[  445.050554][T15202] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  445.088216][T15196] syzkaller0: entered promiscuous mode
[  445.103675][T15196] syzkaller0: entered allmulticast mode
[  445.239184][T15196] tipc: Resetting bearer <eth:syzkaller0>
[  445.259034][T15195] tipc: Resetting bearer <eth:syzkaller0>
[  445.281380][T15195] tipc: Disabling bearer <eth:syzkaller0>
[  445.449372][ T5848] tipc: Node number set to 3122319663
[  446.938379][T15269] tipc: Enabled bearer <udp:syz2>, priority 10
[  447.458781][T15282] syz.6.3054 (15282) used obsolete PPPIOCDETACH ioctl
[  448.004148][T15302] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3059'.
[  448.047651][   T27] tipc: Node number set to 488655731
[  448.140304][T15306] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3060'.
[  448.761380][T15326] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  448.781832][T15322] TCP: TCP_TX_DELAY enabled
[  448.792000][T15326] tipc: Resetting bearer <eth:syzkaller0>
[  448.803412][T15325] tipc: Disabling bearer <eth:syzkaller0>
[  449.411777][T15347] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  449.447583][T15347] tipc: Resetting bearer <eth:syzkaller0>
[  449.492539][T15346] tipc: Disabling bearer <eth:syzkaller0>
[  449.590185][T15351] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  449.614787][T15351] tipc: Resetting bearer <eth:syzkaller0>
[  449.634626][T15350] tipc: Disabling bearer <eth:syzkaller0>
[  450.323377][T15374] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  450.345275][T15369] syzkaller0: entered promiscuous mode
[  450.361419][T15369] syzkaller0: entered allmulticast mode
[  450.496940][T15369] tipc: Resetting bearer <eth:syzkaller0>
[  450.525173][T15368] tipc: Resetting bearer <eth:syzkaller0>
[  450.659882][T15368] tipc: Disabling bearer <eth:syzkaller0>
[  451.033109][T15397] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  451.049099][T15397] syzkaller0: entered promiscuous mode
[  451.055826][T15397] syzkaller0: entered allmulticast mode
[  451.106850][T15397] tipc: Resetting bearer <eth:syzkaller0>
[  451.140254][T15396] tipc: Resetting bearer <eth:syzkaller0>
[  451.200519][T15396] tipc: Disabling bearer <eth:syzkaller0>
[  451.243477][T15402] syzkaller0: entered promiscuous mode
[  451.265826][T15402] syzkaller0: entered allmulticast mode
[  451.392736][T15404] nbd0: detected capacity change from 0 to 63
[  451.454126][ T5105] block nbd0: Receive control failed (result -104)
[  451.575876][T15408] syzkaller0: entered promiscuous mode
[  451.581510][T15408] syzkaller0: entered allmulticast mode
[  451.962208][T15425] loop6: detected capacity change from 0 to 8
[  452.014891][T15425] SQUASHFS error: Failed to read block 0x4de: -5
[  452.054442][T15425] SQUASHFS error: Failed to read block 0x4de: -5
[  452.106807][   T28] audit: type=1800 audit(1757569983.820:188): pid=15425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3110" name="file1" dev="loop6" ino=5 res=0 errno=0
[  452.273453][T15433] loop4: detected capacity change from 0 to 1024
[  452.329627][T15433] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  452.412435][T15433] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  452.507067][T15441] syzkaller0: entered promiscuous mode
[  452.512609][T15441] syzkaller0: entered allmulticast mode
[  452.586879][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.970751][ T7333] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  453.176207][ T7333] usb 1-1: Using ep0 maxpacket: 32
[  453.184593][ T7333] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  453.217055][ T7333] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  453.242156][ T7333] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  453.252376][ T7333] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.275220][ T7333] usb 1-1: config 0 descriptor??
[  453.564711][T15473] syzkaller0: entered promiscuous mode
[  453.574702][T15473] syzkaller0: entered allmulticast mode
[  453.590714][T15475] syzkaller0: entered promiscuous mode
[  453.599967][T15475] syzkaller0: entered allmulticast mode
[  453.802766][ T7333] savu 0003:1E7D:2D5A.0002: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  454.051495][ T7336] usb 1-1: USB disconnect, device number 5
[  454.754463][T15506] loop6: detected capacity change from 0 to 256
[  455.196707][T15511] loop5: detected capacity change from 0 to 16
[  455.216385][T15511] erofs: Unknown parameter ''
[  456.490315][ T6146] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  457.862650][T15526] loop0: detected capacity change from 0 to 128
[  458.347446][T15541] syzkaller0: entered promiscuous mode
[  458.352990][T15541] syzkaller0: entered allmulticast mode
[  459.259638][T15565] syzkaller0: entered promiscuous mode
[  459.268164][T15565] syzkaller0: entered allmulticast mode
[  459.369909][T15563] loop4: detected capacity change from 0 to 2048
[  459.430676][ T6146] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  461.903860][T15585] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  461.928862][T15585] syzkaller0: entered promiscuous mode
[  461.944822][T15585] syzkaller0: entered allmulticast mode
[  462.035271][T15585] tipc: Resetting bearer <eth:syzkaller0>
[  462.065992][T15584] tipc: Resetting bearer <eth:syzkaller0>
[  462.162964][T15584] tipc: Disabling bearer <eth:syzkaller0>
[  462.892682][T15605] loop0: detected capacity change from 0 to 512
[  462.908163][T15605] EXT4-fs: Ignoring removed mblk_io_submit option
[  462.935875][ T5848] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  462.950079][T15605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  462.983173][T15606] syzkaller0: entered promiscuous mode
[  462.988913][T15605] ext4 filesystem being mounted at /262/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  462.996270][T15606] syzkaller0: entered allmulticast mode
[  463.136647][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.155786][ T5848] usb 7-1: Using ep0 maxpacket: 8
[  463.164173][ T5848] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[  463.195910][ T5848] usb 7-1: config 0 has no interface number 0
[  463.226102][ T5848] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  463.235220][ T5848] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  463.275292][ T5848] usb 7-1: Product: syz
[  463.291683][ T5848] usb 7-1: Manufacturer: syz
[  463.317329][ T5848] usb 7-1: SerialNumber: syz
[  463.341667][ T5848] usb 7-1: config 0 descriptor??
[  463.574886][ T5848] usb 7-1: Found UVC 0.04 device syz (046d:08c3)
[  463.595484][ T5848] usb 7-1: No valid video chain found.
[  463.624485][ T5848] usb 7-1: USB disconnect, device number 2
[  463.711465][T15619] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  463.729798][T15619] syzkaller0: entered promiscuous mode
[  463.735343][T15619] syzkaller0: entered allmulticast mode
[  463.910528][T15624] tipc: Resetting bearer <eth:syzkaller0>
[  463.932343][T15618] tipc: Resetting bearer <eth:syzkaller0>
[  464.005162][T15618] tipc: Disabling bearer <eth:syzkaller0>
[  466.981429][T15652] loop6: detected capacity change from 0 to 764
[  467.074779][T15652] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  467.846281][T15657] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  467.874609][T15657] tipc: Resetting bearer <eth:syzkaller0>
[  467.899856][T15656] tipc: Disabling bearer <eth:syzkaller0>
[  468.742954][T15680] loop0: detected capacity change from 0 to 736
[  470.427673][T15694] loop4: detected capacity change from 0 to 764
[  470.440284][T15693] overlayfs: upper fs does not support tmpfile.
[  470.499355][T15694] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  470.630920][T15697] loop0: detected capacity change from 0 to 2048
[  470.747177][T15697]  loop0: p1 < > p4
[  470.766719][T15699] syzkaller0: entered promiscuous mode
[  470.780304][T15697] loop0: p4 size 8388608 extends beyond EOD, truncated
[  470.788249][T15699] syzkaller0: entered allmulticast mode
[  471.237828][ T5804] udevd[5804]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  471.250673][ T6146] udevd[6146]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  471.305006][T15711] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3218'.
[  473.115431][T15735] sched: RT throttling activated
[  474.043725][T15761] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  474.066747][T15761] syzkaller0: entered promiscuous mode
[  474.080407][T15761] syzkaller0: entered allmulticast mode
[  474.173099][T15764] syzkaller0: entered promiscuous mode
[  474.179640][T15764] syzkaller0: entered allmulticast mode
[  474.203523][T15759] tipc: Resetting bearer <eth:syzkaller0>
[  474.278222][T15759] tipc: Disabling bearer <eth:syzkaller0>
[  474.817079][T15783] loop0: detected capacity change from 0 to 1024
[  474.851210][T15783] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  474.886500][T15783] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a800e12d, mo2=0002]
[  474.895490][T15787] loop4: detected capacity change from 0 to 128
[  474.907804][T15783] System zones: 0-1, 2-3, 4-36, 98-101, 102-102
[  474.916118][T15783] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  474.991141][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.191159][T15793] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  475.200051][T15793] syzkaller0: entered promiscuous mode
[  475.205632][T15793] syzkaller0: entered allmulticast mode
[  475.329383][T15798] loop5: detected capacity change from 0 to 128
[  475.339008][T15792] tipc: Resetting bearer <eth:syzkaller0>
[  475.525548][T15792] tipc: Disabling bearer <eth:syzkaller0>
[  477.346103][T15826] mac80211_hwsim hwsim22 wlan0: entered allmulticast mode
[  478.951094][T15831] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  478.958913][T15831] syzkaller0: entered promiscuous mode
[  478.964456][T15831] syzkaller0: entered allmulticast mode
[  479.155986][T15827] tipc: Resetting bearer <eth:syzkaller0>
[  479.258467][T15827] tipc: Disabling bearer <eth:syzkaller0>
[  479.278964][T15836] netlink: 47 bytes leftover after parsing attributes in process `syz.5.3266'.
[  479.306788][T15836] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3266'.
[  482.011276][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 30 seconds
[  482.022871][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 30 seconds
[  482.035476][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 30 seconds
[  482.046588][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 30 seconds
[  482.208668][ T5105] Bluetooth: hci4: unexpected event 0x06 length: 4 > 3
[  482.284467][T15859] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  482.299385][T15859] syzkaller0: entered promiscuous mode
[  482.304906][T15859] syzkaller0: entered allmulticast mode
[  482.377608][T15861] loop4: detected capacity change from 0 to 1024
[  482.420698][T15858] tipc: Resetting bearer <eth:syzkaller0>
[  482.531633][T15863] loop6: detected capacity change from 0 to 8192
[  482.557928][T15858] tipc: Disabling bearer <eth:syzkaller0>
[  482.596401][T15863] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  482.638521][T15861] hfsplus: b-tree write err: -5, ino 3
[  482.729875][T15848] loop0: detected capacity change from 0 to 512
[  482.760257][T15861] hfsplus: b-tree write err: -5, ino 3
[  482.782288][T15848] EXT4-fs: Ignoring removed orlov option
[  482.813480][T15848] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  482.868045][T15848] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.922949][T15848] ext4 filesystem being mounted at /282/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  483.060250][T15848] EXT4-fs warning (device loop0): ext4_read_inode_bitmap:149: Cannot read inode bitmap - block_group = 0, inode_bitmap = 1918985075
[  483.149061][T15848] EXT4-fs warning (device loop0): ext4_read_inode_bitmap:149: Cannot read inode bitmap - block_group = 0, inode_bitmap = 1918985075
[  484.326144][ T5794] Bluetooth: hci2: command 0x0406 tx timeout
[  484.332333][ T5794] Bluetooth: hci4: command tx timeout
[  484.601045][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.868367][T12405] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Out of memory
[  484.925173][T12405] EXT4-fs (loop0): Remounting filesystem read-only
[  486.862305][   T50] Bluetooth: hci4: command 0x0406 tx timeout
[  487.225841][ T5862] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  487.426341][ T5862] usb 1-1: Using ep0 maxpacket: 32
[  487.437815][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  487.467190][T15897] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3287'.
[  487.479680][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  487.515986][ T5862] usb 1-1: New USB device found, idVendor=046d, idProduct=c26e, bcdDevice= 0.00
[  487.535408][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.586086][ T5862] usb 1-1: config 0 descriptor??
[  487.679789][T15899] loop5: detected capacity change from 0 to 2048
[  487.732823][T15899] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  487.816197][T15899] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  487.858964][T15899] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  487.912511][T15899] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  487.939323][T15899] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=385, location=385
[  487.979943][T15899] UDF-fs: warning (device loop5): udf_fill_super: No partition found (1)
[  488.031710][ T5862] logitech-hidpp-device 0003:046D:C26E.0003: collection stack underflow
[  488.058630][ T5862] logitech-hidpp-device 0003:046D:C26E.0003: item 0 0 0 12 parsing failed
[  488.095017][ T5862] logitech-hidpp-device 0003:046D:C26E.0003: hidpp_probe:parse failed
[  488.114280][ T5862] logitech-hidpp-device: probe of 0003:046D:C26E.0003 failed with error -22
[  488.232374][ T5862] usb 1-1: USB disconnect, device number 6
[  488.366957][T15907] syzkaller0: entered promiscuous mode
[  488.386464][T15907] syzkaller0: entered allmulticast mode
[  489.363681][T15926] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3298'.
[  491.068186][T15947] syzkaller0: entered promiscuous mode
[  491.073750][T15947] syzkaller0: entered allmulticast mode
[  491.374632][T15954] capability: warning: `syz.4.3307' uses deprecated v2 capabilities in a way that may be insecure
[  492.405927][ T7336] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  492.629579][ T7336] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  492.674844][ T7336] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  492.699397][ T7336] usb 6-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  492.725591][ T7336] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.763193][ T7336] usb 6-1: config 0 descriptor??
[  493.833703][T15958] loop5: detected capacity change from 0 to 2048
[  493.935639][T15958] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  494.067260][ T7336] sony 0003:054C:024B.0004: unexpected long global item
[  494.095464][ T7336] sony 0003:054C:024B.0004: parse failed
[  495.807495][ T7336] sony: probe of 0003:054C:024B.0004 failed with error -22
[  495.905808][ T7336] usb 6-1: USB disconnect, device number 2
[  496.254023][T15991] syzkaller0: entered promiscuous mode
[  496.269622][T15991] syzkaller0: entered allmulticast mode
[  497.697388][ T5780] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  498.555997][ T5780] usb 1-1: Using ep0 maxpacket: 16
[  498.565537][ T5780] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  498.603532][ T5780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  498.643583][ T5780] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  498.675842][ T5780] usb 1-1: New USB device found, idVendor=18d1, idProduct=5022, bcdDevice= 0.00
[  498.684954][ T5780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.708540][ T5780] usb 1-1: config 0 descriptor??
[  499.447227][   T27] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  499.715857][   T27] usb 5-1: Using ep0 maxpacket: 8
[  499.725556][   T27] usb 5-1: config 6 has an invalid interface number: 70 but max is 0
[  499.754289][   T27] usb 5-1: config 6 has no interface number 0
[  499.776235][   T27] usb 5-1: config 6 interface 70 has no altsetting 0
[  499.792402][   T27] usb 5-1: New USB device found, idVendor=126f, idProduct=da99, bcdDevice=b0.0e
[  499.806260][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  499.820695][   T27] usb 5-1: Product: syz
[  499.835303][   T27] usb 5-1: Manufacturer: syz
[  499.859698][   T27] usb 5-1: SerialNumber: syz
[  500.804961][ T5780] usbhid 1-1:0.0: can't add hid device: -71
[  500.816346][ T5780] usbhid: probe of 1-1:0.0 failed with error -71
[  500.866287][ T5780] usb 1-1: USB disconnect, device number 7
[  500.907237][   T27] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  500.915121][   T27] usb 5-1: MIDIStreaming interface descriptor not found
[  501.035307][T16037] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  501.076597][   T27] usb 5-1: USB disconnect, device number 4
[  501.121407][T16037] tipc: Resetting bearer <eth:syzkaller0>
[  501.150003][T16036] tipc: Disabling bearer <eth:syzkaller0>
[  501.860664][ T1286] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  502.490629][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  503.425396][T16063] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  503.446919][T16063] syzkaller0: entered promiscuous mode
[  503.452471][T16063] syzkaller0: entered allmulticast mode
[  503.485527][T16063] tipc: Resetting bearer <eth:syzkaller0>
[  503.512045][T16062] tipc: Resetting bearer <eth:syzkaller0>
[  503.568600][T16062] tipc: Disabling bearer <eth:syzkaller0>
[  504.888438][T16081] loop6: detected capacity change from 0 to 1024
[  505.776594][ T5794] Bluetooth: hci3: command tx timeout
[  506.014859][   T42] hfsplus: b-tree write err: -5, ino 8
[  508.645820][   T28] audit: type=1326 audit(1757570040.350:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  508.712456][   T28] audit: type=1326 audit(1757570040.350:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  508.819078][   T28] audit: type=1326 audit(1757570040.390:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  508.867351][   T28] audit: type=1326 audit(1757570040.390:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  510.251564][   T28] audit: type=1326 audit(1757570040.390:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  510.319910][   T28] audit: type=1326 audit(1757570040.390:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdfb958e7ab code=0x7ffc0000
[  510.388077][   T28] audit: type=1326 audit(1757570040.390:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  510.506236][   T28] audit: type=1326 audit(1757570040.390:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  510.579393][   T28] audit: type=1326 audit(1757570040.400:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  510.659458][   T28] audit: type=1326 audit(1757570040.400:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16116 comm="syz.6.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfb958eba9 code=0x7ffc0000
[  512.884456][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 60 seconds
[  512.896904][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 60 seconds
[  512.908473][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 60 seconds
[  512.919709][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 60 seconds
[  513.654095][T16142] capability: warning: `syz.0.3367' uses 32-bit capabilities (legacy support in use)
[  513.691564][T16142] loop0: detected capacity change from 0 to 256
[  513.795775][ T6146] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  513.991050][T16147] loop6: detected capacity change from 0 to 128
[  515.336834][T16171] loop5: detected capacity change from 0 to 16
[  515.378964][T16159] loop4: detected capacity change from 0 to 8192
[  515.430046][T16171] erofs: (device loop5): mounted with root inode @ nid 36.
[  515.435139][ T3504] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  515.476810][T16159] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  515.860315][ T3504] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.038231][ T3504] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.537639][ T3504] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.655488][ T5105] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  517.667422][ T5105] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  517.679932][ T5105] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  517.688324][ T5105] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  517.696113][ T5105] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  517.706095][ T5105] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  518.047396][T16188] wg1 speed is unknown, defaulting to 1000
[  518.061108][T16191] nbd: must specify at least one socket
[  518.170562][ T3504] tipc: Left network mode
[  519.243963][T16218] process 'syz.5.3397' launched './file0' with NULL argv: empty string added
[  519.285985][   T50] Bluetooth: hci1: command 0x0406 tx timeout
[  519.907281][ T5794] Bluetooth: hci0: command tx timeout
[  521.057935][T16188] chnl_net:caif_netlink_parms(): no params data found
[  521.925890][ T5794] Bluetooth: hci0: command tx timeout
[  522.470999][T16188] bridge0: port 1(bridge_slave_0) entered blocking state
[  522.487221][T16188] bridge0: port 1(bridge_slave_0) entered disabled state
[  522.494526][T16188] bridge_slave_0: entered allmulticast mode
[  522.518353][T16188] bridge_slave_0: entered promiscuous mode
[  522.606298][T16188] bridge0: port 2(bridge_slave_1) entered blocking state
[  522.613512][T16188] bridge0: port 2(bridge_slave_1) entered disabled state
[  522.667680][T16188] bridge_slave_1: entered allmulticast mode
[  522.675221][T16188] bridge_slave_1: entered promiscuous mode
[  523.033803][T16188] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  523.369188][T16188] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  524.044808][ T5794] Bluetooth: hci0: command tx timeout
[  524.353986][ T3504] hsr_slave_0: left promiscuous mode
[  524.371437][ T3504] hsr_slave_1: left promiscuous mode
[  524.383715][ T3504] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  524.391678][ T3504] batman_adv: batadv0: Removing interface: batadv_slave_0
[  524.400223][ T3504] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  524.408513][ T3504] batman_adv: batadv0: Removing interface: batadv_slave_1
[  524.419508][ T3504] bridge_slave_1: left allmulticast mode
[  524.433509][ T3504] bridge_slave_1: left promiscuous mode
[  524.443772][ T3504] bridge0: port 2(bridge_slave_1) entered disabled state
[  524.466091][ T3504] bridge_slave_0: left allmulticast mode
[  524.471820][ T3504] bridge_slave_0: left promiscuous mode
[  524.515156][ T3504] bridge0: port 1(bridge_slave_0) entered disabled state
[  524.607895][ T3504] veth1_macvtap: left promiscuous mode
[  524.613518][ T3504] veth0_macvtap: left promiscuous mode
[  524.655504][ T3504] veth1_vlan: left promiscuous mode
[  524.677045][ T3504] veth0_vlan: left promiscuous mode
[  524.789848][T16315] loop5: detected capacity change from 0 to 2048
[  524.900170][T16315] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  524.972295][   T28] audit: type=1800 audit(1757570056.690:199): pid=16315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3417" name="file1" dev="loop5" ino=1415 res=0 errno=0
[  525.071567][   T28] audit: type=1800 audit(1757570056.750:200): pid=16315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3417" name="file1" dev="loop5" ino=1415 res=0 errno=0
[  525.566680][T16328] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3418'.
[  525.950723][ T3504] team0 (unregistering): Port device team_slave_1 removed
[  526.019373][ T3504] team0 (unregistering): Port device team_slave_0 removed
[  526.077436][ T3504] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  526.095830][ T5794] Bluetooth: hci0: command tx timeout
[  526.143945][ T3504] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  526.860068][ T3504] bond0 (unregistering): Released all slaves
[  526.950956][T16188] team0: Port device team_slave_0 added
[  526.997248][ T7331] wg1 speed is unknown, defaulting to 1000
[  527.029146][T16188] team0: Port device team_slave_1 added
[  527.284265][T16188] batman_adv: batadv0: Adding interface: batadv_slave_0
[  527.298718][T16188] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  527.384023][T16188] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  527.404132][T16188] batman_adv: batadv0: Adding interface: batadv_slave_1
[  527.415552][T16188] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  527.463144][T16188] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  529.364926][T16188] hsr_slave_0: entered promiscuous mode
[  529.386883][T16188] hsr_slave_1: entered promiscuous mode
[  529.407838][T16352] loop4: detected capacity change from 0 to 512
[  529.415819][T16188] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  529.437150][T16352] EXT4-fs: Ignoring removed i_version option
[  529.443228][T16352] ext4: Unknown parameter 'smackfsdef'
[  529.445957][T16188] Cannot create hsr debugfs directory
[  532.012054][T16188] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  532.052839][T16188] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  532.123654][T16188] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  532.179305][T16188] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  532.544271][T16188] 8021q: adding VLAN 0 to HW filter on device bond0
[  532.611918][T16188] 8021q: adding VLAN 0 to HW filter on device team0
[  532.662742][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[  532.669980][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[  532.722353][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[  532.729602][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[  534.747600][T16410] loop4: detected capacity change from 0 to 256
[  534.788298][T16410] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  535.160514][T16188] 8021q: adding VLAN 0 to HW filter on device batadv0
[  536.669897][T16188] veth0_vlan: entered promiscuous mode
[  538.114007][T16188] veth1_vlan: entered promiscuous mode
[  538.243456][T16188] veth0_macvtap: entered promiscuous mode
[  538.270415][T16188] veth1_macvtap: entered promiscuous mode
[  538.348382][T16188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  538.395790][T16188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  538.424740][T16188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  538.465752][T16188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  538.495762][T16188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  538.540320][T16188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  538.557875][T16188] batman_adv: batadv0: Interface activated: batadv_slave_0
[  538.604450][T16188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  538.659412][T16188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  538.692217][T16188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  538.719099][T16188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  538.771347][T16188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  538.809304][T16188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  538.847666][T16188] batman_adv: batadv0: Interface activated: batadv_slave_1
[  538.909623][T16188] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  538.953525][T16188] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  538.968267][T16188] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  538.978606][T16188] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  539.265264][ T3504] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  539.303894][ T3504] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  539.558778][ T2928] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  539.610982][ T2928] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  542.661502][T16477] tipc: Started in network mode
[  542.671906][T16477] tipc: Node identity e24a127ad451, cluster identity 4711
[  542.692632][T16477] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  542.712806][T16477] syzkaller0: entered promiscuous mode
[  542.760112][T16477] syzkaller0: entered allmulticast mode
[  542.902225][T16476] tipc: Resetting bearer <eth:syzkaller0>
[  542.992127][T16476] tipc: Disabling bearer <eth:syzkaller0>
[  543.553180][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 90 seconds
[  543.574639][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 90 seconds
[  543.586370][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 90 seconds
[  543.597642][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 90 seconds
[  545.563741][T16525] loop4: detected capacity change from 0 to 256
[  545.630092][T16525] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  545.799635][T16532] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  545.825168][T16532] syzkaller0: entered promiscuous mode
[  545.983269][T16532] syzkaller0: entered allmulticast mode
[  548.400185][   T27] tipc: Node number set to 3420721979
[  548.453351][T16531] tipc: Resetting bearer <eth:syzkaller0>
[  548.649364][T16531] tipc: Disabling bearer <eth:syzkaller0>
[  549.123732][T16556] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  552.414046][T16584] loop0: detected capacity change from 0 to 256
[  552.582185][T16584] Bluetooth: MGMT ver 1.22
[  552.709410][T16590] loop5: detected capacity change from 0 to 8
[  552.787546][T16591] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  552.808864][T16591] syzkaller0: entered promiscuous mode
[  552.817708][T16590] SQUASHFS error: Failed to read block 0x4de: -5
[  552.818202][T16591] syzkaller0: entered allmulticast mode
[  552.824473][T16590] SQUASHFS error: Failed to read block 0x4de: -5
[  552.915479][   T28] audit: type=1800 audit(1757570084.630:201): pid=16590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3463" name="file1" dev="loop5" ino=5 res=0 errno=0
[  552.949935][T16589] tipc: Resetting bearer <eth:syzkaller0>
[  553.082936][T16589] tipc: Disabling bearer <eth:syzkaller0>
[  553.813960][T16614] loop5: detected capacity change from 0 to 4096
[  553.868757][T16614] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  553.916127][T16614] EXT4-fs (loop5): Test dummy encryption mode enabled
[  553.922979][T16614] EXT4-fs (loop5): DAX unsupported by block device.
[  554.427555][T16632] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  554.517674][T16632] syzkaller0: entered promiscuous mode
[  554.534644][T16632] syzkaller0: entered allmulticast mode
[  556.220694][   T50] Bluetooth: hci0: command 0x1407 tx timeout
[  556.227002][ T5794] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  556.304246][T16630] tipc: Resetting bearer <eth:syzkaller0>
[  556.465215][T16630] tipc: Disabling bearer <eth:syzkaller0>
[  558.705546][T16668] loop4: detected capacity change from 0 to 736
[  559.991750][T16675] loop7: detected capacity change from 0 to 256
[  560.871987][T16679] loop4: detected capacity change from 0 to 256
[  561.636680][ T5780] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  562.062393][ T5780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  562.137682][ T5780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  562.285897][ T5780] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  562.428399][ T5780] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  562.495830][ T5780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  562.529498][ T5780] usb 1-1: config 0 descriptor??
[  563.101802][ T5780] plantronics 0003:047F:FFFF.0005: unknown main item tag 0xd
[  563.815953][ T1286] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  563.825152][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  563.925566][ T5780] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  563.946259][ T5780] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  563.954695][ T5780] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  564.216011][ T5780] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  564.949932][ T5780] usb 1-1: USB disconnect, device number 8
[  564.957018][ T1086] tipc: Left network mode
[  566.923865][T16732] fido_id[16732]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  566.957310][T16744] loop0: detected capacity change from 0 to 128
[  567.096572][ T6146] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  569.374570][T16761] loop0: detected capacity change from 0 to 1024
[  569.467073][T16761] EXT4-fs: Ignoring removed bh option
[  569.607182][T16761] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.742033][T16769] netlink: 156 bytes leftover after parsing attributes in process `syz.7.3517'.
[  569.886568][T16761] EXT4-fs error (device loop0): ext4_xattr_block_find:1886: inode #15: comm syz.0.3516: corrupted xattr block 113: invalid header
[  569.947886][T16761] EXT4-fs (loop0): Remounting filesystem read-only
[  570.200424][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.595907][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 120 seconds
[  574.606900][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 120 seconds
[  574.625908][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 120 seconds
[  574.645842][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 120 seconds
[  574.937167][T16797] loop0: detected capacity change from 0 to 256
[  575.010495][T16797] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  579.146971][T16827] loop5: detected capacity change from 0 to 128
[  579.379582][T16827] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  579.475188][ T1086] hsr_slave_0: left promiscuous mode
[  579.525854][T16827] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  579.615973][ T1086] hsr_slave_1: left promiscuous mode
[  579.726911][T16829] kvm: kvm [16828]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[  579.857382][T16844] overlayfs: failed to clone upperpath
[  580.019958][T14167] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  584.126497][T16874] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3543'.
[  584.307861][T16878] futex_wake_op: syz.4.3544 tries to shift op by 144; fix this program
[  584.339885][ T1086] bond1 (unregistering): Released all slaves
[  585.417976][T16888] loop5: detected capacity change from 0 to 1024
[  585.461561][T16889] loop0: detected capacity change from 0 to 4096
[  585.481045][T16888] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  585.520282][T16889] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  585.657318][T16888] loop5: detected capacity change from 1024 to 0
[  585.844622][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  585.889024][T16888] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  585.918048][T16888] syz.5.3548: attempt to access beyond end of device
[  585.918048][T16888] loop5: rw=145409, sector=2, nr_sectors = 2 limit=0
[  586.030645][T16888] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  586.080148][T16888] EXT4-fs (loop5): I/O error while writing superblock
[  586.154925][T16899] loop0: detected capacity change from 0 to 1024
[  586.168801][T16899] EXT4-fs: Ignoring removed nobh option
[  586.177930][T16899] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  586.209783][T16890] kmmpd-loop5: attempt to access beyond end of device
[  586.209783][T16890] loop5: rw=14337, sector=128, nr_sectors = 2 limit=0
[  586.234861][T16890] Buffer I/O error on dev loop5, logical block 64, lost sync page write
[  586.269681][T16899] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  587.053245][T16906] loop5: detected capacity change from 0 to 256
[  587.182335][T16906] FAT-fs (loop5): Directory bread(block 64) failed
[  587.202868][T16906] FAT-fs (loop5): Directory bread(block 65) failed
[  587.213863][T16907] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4031: comm syz.0.3549: Allocating blocks 497-513 which overlap fs metadata
[  587.234885][T16906] FAT-fs (loop5): Directory bread(block 66) failed
[  587.245508][T16906] FAT-fs (loop5): Directory bread(block 67) failed
[  587.286102][T16906] FAT-fs (loop5): Directory bread(block 68) failed
[  587.310464][T16906] FAT-fs (loop5): Directory bread(block 69) failed
[  587.322795][T16898] EXT4-fs (loop0): pa ffff888077de13a0: logic 160, phys. 305, len 13
[  587.336821][T16898] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1
[  587.350849][T16906] FAT-fs (loop5): Directory bread(block 70) failed
[  587.363491][T16906] FAT-fs (loop5): Directory bread(block 71) failed
[  587.370830][T16906] FAT-fs (loop5): Directory bread(block 72) failed
[  587.387648][T16906] FAT-fs (loop5): Directory bread(block 73) failed
[  587.468339][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  587.918852][T16906] syz.5.3551: attempt to access beyond end of device
[  587.918852][T16906] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  587.942864][T16917] loop4: detected capacity change from 0 to 512
[  587.993891][T16917] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.3555: casefold flag without casefold feature
[  588.098473][T16917] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.3555: couldn't read orphan inode 15 (err -117)
[  588.141776][T16917] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  588.666029][ T7331] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  589.027001][T16922] loop5: detected capacity change from 0 to 2048
[  589.069034][ T7331] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  589.071536][T16922] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=3932051, location=3932051
[  589.092956][ T7331] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  589.110446][ T7331] usb 5-1: New USB device found, idVendor=056a, idProduct=0307, bcdDevice= 0.00
[  589.122596][ T7331] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  589.143242][ T7331] usb 5-1: config 0 descriptor??
[  589.163696][T16922] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  590.794435][ T1086] bond0 (unregistering): Released all slaves
[  590.919393][T16917] mac80211_hwsim hwsim18 wlan0: entered allmulticast mode
[  590.985785][   T50] Bluetooth: hci4: command 0x0406 tx timeout
[  591.087383][ T7331] usbhid 5-1:0.0: can't add hid device: -71
[  591.102457][ T7331] usbhid: probe of 5-1:0.0 failed with error -71
[  591.111737][ T7331] usb 5-1: USB disconnect, device number 5
[  591.150028][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.363259][T16936] loop4: detected capacity change from 0 to 8
[  591.467907][T16936] SQUASHFS error: Failed to read block 0x1ec: -5
[  591.505439][T16936] SQUASHFS error: Unable to read metadata cache entry [1ea]
[  592.800990][ T5794] Bluetooth: hci0: unexpected event for opcode 0x0c13
[  593.255951][ T1086] tipc: Left network mode
[  593.531747][T16965] loop0: detected capacity change from 0 to 1024
[  595.280603][T16965] hfsplus: extend alloc file! (8192,512,16777719)
[  595.512528][T16972] loop5: detected capacity change from 0 to 1024
[  595.546800][T16972] ext3: Unknown parameter 'uid<00000000000000000000'
[  595.606940][ T6146] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  598.385420][T16996] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  598.495394][T16996] tipc: Resetting bearer <eth:syzkaller0>
[  598.576791][T16995] tipc: Disabling bearer <eth:syzkaller0>
[  599.121929][ T1086] dvmrp8 (unregistering): left allmulticast mode
[  600.200246][ T5794] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  600.210892][ T5794] CPU: 1 PID: 5794 Comm: kworker/u5:3 Not tainted syzkaller #0
[  600.218497][ T5794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  600.228588][ T5794] Workqueue: hci4 hci_rx_work
[  600.233403][ T5794] Call Trace:
[  600.236710][ T5794]  <TASK>
[  600.239674][ T5794]  dump_stack_lvl+0x16c/0x230
[  600.244395][ T5794]  ? show_regs_print_info+0x20/0x20
[  600.249624][ T5794]  ? load_image+0x3b0/0x3b0
[  600.254156][ T5794]  sysfs_create_dir_ns+0x256/0x280
[  600.259312][ T5794]  ? sysfs_warn_dup+0xa0/0xa0
[  600.264021][ T5794]  ? do_raw_spin_unlock+0x121/0x230
[  600.269252][ T5794]  kobject_add_internal+0x6b8/0xc70
[  600.274494][ T5794]  kobject_add+0x156/0x220
[  600.278949][ T5794]  ? kobject_init+0x1e0/0x1e0
[  600.283698][ T5794]  ? _raw_spin_unlock+0x3a/0x40
[  600.288597][ T5794]  ? get_device_parent+0x366/0x390
[  600.293752][ T5794]  device_add+0x408/0xc20
[  600.298120][ T5794]  hci_conn_add_sysfs+0xd5/0x1e0
[  600.303105][ T5794]  le_conn_complete_evt+0xc37/0x1220
[  600.308419][ T5794]  ? hci_event_packet+0x4a7/0x1210
[  600.313570][ T5794]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  600.319872][ T5794]  ? __copy_skb_header+0xa7/0x550
[  600.324935][ T5794]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  600.330616][ T5794]  ? skb_pull_data+0xfb/0x200
[  600.335332][ T5794]  hci_le_conn_complete_evt+0x187/0x440
[  600.340937][ T5794]  ? hci_remote_host_features_evt+0x160/0x160
[  600.347049][ T5794]  hci_event_packet+0x795/0x1210
[  600.352057][ T5794]  ? bis_list+0x290/0x290
[  600.356418][ T5794]  ? kcov_remote_start+0x2b/0x7f0
[  600.361480][ T5794]  ? hci_send_to_monitor+0xd7/0x4f0
[  600.366707][ T5794]  hci_rx_work+0x43a/0xd80
[  600.371180][ T5794]  ? process_scheduled_works+0x957/0x15b0
[  600.376941][ T5794]  process_scheduled_works+0xa45/0x15b0
[  600.382624][ T5794]  ? assign_work+0x400/0x400
[  600.387241][ T5794]  ? assign_work+0x39e/0x400
[  600.391855][ T5794]  worker_thread+0xa55/0xfc0
[  600.396583][ T5794]  kthread+0x2fa/0x390
[  600.400673][ T5794]  ? pr_cont_work+0x560/0x560
[  600.405380][ T5794]  ? kthread_blkcg+0xd0/0xd0
[  600.410027][ T5794]  ret_from_fork+0x48/0x80
[  600.414463][ T5794]  ? kthread_blkcg+0xd0/0xd0
[  600.419078][ T5794]  ret_from_fork_asm+0x11/0x20
[  600.423892][ T5794]  </TASK>
[  600.441714][ T5794] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  600.459878][ T5794] Bluetooth: hci4: failed to register connection device
[  600.503408][T17016] loop0: detected capacity change from 0 to 1024
[  600.544317][T17016] EXT4-fs: Ignoring removed orlov option
[  600.591388][T17016] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  601.648110][ T1086] bond2: (slave wlan0): Releasing active interface
[  601.955689][ T1086] hsr_slave_0: left promiscuous mode
[  602.178176][ T1086] hsr_slave_1: left promiscuous mode
[  602.257802][ T1086] batman_adv: batadv0: Removing interface: batadv_slave_0
[  602.356128][ T5862] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  602.529882][ T1086] batman_adv: batadv0: Removing interface: batadv_slave_1
[  602.695809][ T1086] bridge_slave_1: left allmulticast mode
[  602.701534][ T1086] bridge_slave_1: left promiscuous mode
[  602.710224][ T1086] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.718061][ T5862] usb 5-1: Using ep0 maxpacket: 16
[  602.726419][ T1086] bridge_slave_0: left allmulticast mode
[  602.735914][ T5862] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  602.742051][ T1086] bridge_slave_0: left promiscuous mode
[  602.746788][ T5862] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  602.754411][ T1086] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.775719][ T5862] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  602.789611][ T5862] usb 5-1: New USB device found, idVendor=18d1, idProduct=5022, bcdDevice= 0.00
[  602.843552][ T5862] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  602.863559][ T5862] usb 5-1: config 0 descriptor??
[  603.049593][ T1086] bond2 (unregistering): Released all slaves
[  603.252336][ T1086] bond1 (unregistering): Released all slaves
[  604.000090][ T1086] team0 (unregistering): Port device team_slave_1 removed
[  604.073806][ T1086] team0 (unregistering): Port device team_slave_0 removed
[  604.152922][ T1086] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  604.238155][ T1086] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  604.741272][ T5862] usbhid 5-1:0.0: can't add hid device: -71
[  604.774857][ T5862] usbhid: probe of 5-1:0.0 failed with error -71
[  604.791741][ T5862] usb 5-1: USB disconnect, device number 6
[  604.887371][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 150 seconds
[  604.911458][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 150 seconds
[  604.925932][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 150 seconds
[  604.937417][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 150 seconds
[  605.182061][ T1086] bond0 (unregistering): Released all slaves
[  605.281772][T17033] netlink: 'syz.5.3583': attribute type 4 has an invalid length.
[  605.289863][T17033] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.3583'.
[  608.811400][T17066] loop4: detected capacity change from 0 to 256
[  608.818503][T17066] exfat: Deprecated parameter 'utf8'
[  609.736161][T17066] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  610.240505][T17077] xt_nat: multiple ranges no longer supported
[  616.035259][   T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  616.058393][   T50] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  616.077649][   T50] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  616.167415][   T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  616.175445][   T50] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  616.183033][   T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  617.138901][T17157] loop5: detected capacity change from 0 to 256
[  617.202414][T17157] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  617.249982][T17157] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  617.310770][T17157] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  617.771233][T17147] chnl_net:caif_netlink_parms(): no params data found
[  618.126900][T17147] bridge0: port 1(bridge_slave_0) entered blocking state
[  618.134182][T17147] bridge0: port 1(bridge_slave_0) entered disabled state
[  618.149796][T17147] bridge_slave_0: entered allmulticast mode
[  618.164652][T17147] bridge_slave_0: entered promiscuous mode
[  618.186360][T17147] bridge0: port 2(bridge_slave_1) entered blocking state
[  618.193557][T17147] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.211631][T17147] bridge_slave_1: entered allmulticast mode
[  618.220654][T17147] bridge_slave_1: entered promiscuous mode
[  618.283731][T17147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  618.302420][T17147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  618.326084][   T50] Bluetooth: hci3: command tx timeout
[  618.432277][T17147] team0: Port device team_slave_0 added
[  618.441466][T17186] syzkaller0: entered promiscuous mode
[  618.448164][T17186] syzkaller0: entered allmulticast mode
[  618.642991][T17147] team0: Port device team_slave_1 added
[  619.203022][T17147] batman_adv: batadv0: Adding interface: batadv_slave_0
[  619.225027][T17147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  619.255700][T17147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  619.316135][T17147] batman_adv: batadv0: Adding interface: batadv_slave_1
[  619.323264][T17147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  619.361192][T17147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  619.673713][T17147] hsr_slave_0: entered promiscuous mode
[  619.682760][T17147] hsr_slave_1: entered promiscuous mode
[  620.508677][   T50] Bluetooth: hci3: command tx timeout
[  621.927669][T17147] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  622.071086][T17147] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  622.103567][T17147] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  622.132140][T17147] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  622.557901][T17227] loop5: detected capacity change from 0 to 8
[  622.572433][T17147] 8021q: adding VLAN 0 to HW filter on device bond0
[  622.693833][T17227] SQUASHFS error: Unable to read directory block [631:43]
[  622.712411][T17147] 8021q: adding VLAN 0 to HW filter on device team0
[  622.807419][T16748] bridge0: port 1(bridge_slave_0) entered blocking state
[  622.814713][T16748] bridge0: port 1(bridge_slave_0) entered forwarding state
[  622.909193][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  622.916415][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  623.663000][T17240] syzkaller0: entered promiscuous mode
[  623.704361][   T50] Bluetooth: hci3: command tx timeout
[  623.706360][T17240] syzkaller0: entered allmulticast mode
[  625.326873][ T1286] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  625.341858][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  625.623055][T17147] 8021q: adding VLAN 0 to HW filter on device batadv0
[  625.771041][   T50] Bluetooth: hci3: command tx timeout
[  626.089665][T17255] loop5: detected capacity change from 0 to 164
[  626.497671][T17267] syz.4.3632[17267] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  626.497934][T17267] syz.4.3632[17267] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  626.943615][T17147] veth0_vlan: entered promiscuous mode
[  626.947295][T17278] loop4: detected capacity change from 0 to 512
[  626.992901][T17147] veth1_vlan: entered promiscuous mode
[  626.999852][T17278] EXT4-fs: Ignoring removed i_version option
[  627.052356][T17278] EXT4-fs: Ignoring removed mblk_io_submit option
[  627.065007][T17280] overlayfs: workdir and upperdir must reside under the same mount
[  627.089889][T17278] EXT4-fs (loop4): Test dummy encryption mode enabled
[  627.112286][T17147] veth0_macvtap: entered promiscuous mode
[  627.142246][T17147] veth1_macvtap: entered promiscuous mode
[  627.146513][T17278] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz.4.3636: inode #13: comm syz.4.3636: iget: illegal inode #
[  627.181439][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  627.204750][T17278] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.3636: couldn't read orphan inode 13 (err -117)
[  627.223059][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.254040][T17278] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  627.260652][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  627.276896][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.287226][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  627.298153][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.308205][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  627.318906][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.321609][T17278] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  627.331221][T17147] batman_adv: batadv0: Interface activated: batadv_slave_0
[  627.350778][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  627.363873][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.381656][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  627.393994][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.409760][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  627.435158][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.454394][T17147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  627.667330][T17147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  627.681496][T17147] batman_adv: batadv0: Interface activated: batadv_slave_1
[  628.378036][T17147] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  628.386924][T17147] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  628.399682][T17147] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  628.441539][T17147] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  628.815002][ T1086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  628.837661][ T1086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  628.878593][T17301] syz.4.3641[17301] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  628.878841][T17301] syz.4.3641[17301] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  628.961925][ T2991] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  629.005316][ T2991] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  629.364277][T17314] overlayfs: workdir and upperdir must reside under the same mount
[  629.993493][T17311] loop4: detected capacity change from 0 to 2048
[  630.131189][T17311] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  630.409862][T17324] loop5: detected capacity change from 0 to 128
[  630.489729][T17324] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  630.557223][T17326] syz.7.3650[17326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  630.557488][T17326] syz.7.3650[17326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  630.613452][T17324] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  631.199472][T17335] loop4: detected capacity change from 0 to 1024
[  631.209847][T17335] EXT4-fs: Ignoring removed bh option
[  631.500452][T17335] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[  632.309332][T17349] overlayfs: workdir and upperdir must reside under the same mount
[  632.320062][T17335] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  632.431911][T17335] EXT4-fs error (device loop4): ext4_map_blocks:718: inode #15: block 3: comm syz.4.3653: lblock 3 mapped to illegal pblock 3 (length 3)
[  632.522721][T17335] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  632.555796][T17335] EXT4-fs (loop4): This should not happen!! Data will be lost
[  632.555796][T17335] 
[  632.580069][T17351] loop8: detected capacity change from 0 to 512
[  632.621979][T17352] EXT4-fs error (device loop4): ext4_ext_remove_space:2929: inode #15: comm syz.4.3653: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  632.702429][T17351] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  632.899851][T17351] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  632.938078][T17352] EXT4-fs error (device loop4) in ext4_setattr:5645: Corrupt filesystem
[  633.908643][T17351] EXT4-fs (loop8): 1 truncate cleaned up
[  633.947322][T17344] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  633.974074][T17351] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  634.025274][T17351] EXT4-fs error (device loop8): ext4_xattr_ibody_find:2244: inode #15: comm syz.8.3658: corrupted in-inode xattr: overlapping e_value 
[  634.027376][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  634.120643][T17351] EXT4-fs warning (device loop8): ext4_xattr_set_entry:1781: inode #15: comm syz.8.3658: unable to update i_inline_off
[  634.121363][T17360] syz.5.3660[17360] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  634.133891][T17360] syz.5.3660[17360] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  634.240869][T17364] loop4: detected capacity change from 0 to 128
[  634.261562][T17351] EXT4-fs error (device loop8): ext4_xattr_ibody_find:2244: inode #15: comm syz.8.3658: corrupted in-inode xattr: overlapping e_value 
[  634.269091][T17364] EXT4-fs (loop4): Test dummy encryption mode enabled
[  634.438223][T17364] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  634.451141][T17364] ext4 filesystem being mounted at /281/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  634.586013][T17147] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  635.519397][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 180 seconds
[  635.530438][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 180 seconds
[  635.545788][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 180 seconds
[  635.553491][T17364] fscrypt (loop4): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))")
[  635.557862][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 180 seconds
[  635.784588][T13340] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  635.864570][T17382] overlayfs: failed to clone upperpath
[  637.048229][T17395] syz.4.3670[17395] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  637.048500][T17395] syz.4.3670[17395] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  637.357196][T17402] loop4: detected capacity change from 0 to 1024
[  637.626755][T17402] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  637.635038][T17402] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  637.711085][T17406] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  637.744124][T17406] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  637.814425][T17408] loop5: detected capacity change from 0 to 256
[  637.877327][T17408] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  637.959767][ T2928] hfsplus: b-tree write err: -5, ino 4
[  637.981257][ T2928] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  638.898448][ T7331] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  639.436370][ T7331] usb 6-1: Using ep0 maxpacket: 16
[  639.457777][ T7331] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  639.499846][ T7331] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  639.511992][ T7331] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  639.525649][ T7331] usb 6-1: New USB device found, idVendor=18d1, idProduct=5022, bcdDevice= 0.00
[  639.534750][ T7331] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.588402][ T7331] usb 6-1: config 0 descriptor??
[  639.741030][T17428] syz.8.3681[17428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  639.741363][T17428] syz.8.3681[17428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  641.336134][ T7331] usbhid 6-1:0.0: can't add hid device: -71
[  641.359085][ T7331] usbhid: probe of 6-1:0.0 failed with error -71
[  641.378304][ T7331] usb 6-1: USB disconnect, device number 3
[  641.843720][T17445] loop5: detected capacity change from 0 to 8
[  641.936056][T17445] SQUASHFS error: Failed to read block 0x4de: -5
[  641.946958][T17445] SQUASHFS error: Failed to read block 0x4de: -5
[  641.968344][   T28] audit: type=1800 audit(1757570173.670:202): pid=17445 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3687" name="file1" dev="loop5" ino=5 res=0 errno=0
[  642.185511][   T50] Bluetooth: hci0: command 0x1407 tx timeout
[  642.593835][T17448] loop5: detected capacity change from 0 to 512
[  642.634646][T17448] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  642.689371][T17448] EXT4-fs (loop5): 1 truncate cleaned up
[  642.727014][T17448] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  642.794229][T17448] fscrypt (loop5, inode 18): Unsupported encryption flags (0x10)
[  643.009024][T14167] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  646.024563][T17478] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3699'.
[  646.092736][T17479] loop5: detected capacity change from 0 to 1024
[  646.102469][T17479] EXT4-fs: Ignoring removed bh option
[  646.117682][T17479] EXT4-fs: Ignoring removed bh option
[  646.128821][T17479] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  646.199124][T17479] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  647.374580][T14167] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  647.542113][T17491] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  647.607112][T17491] tipc: Resetting bearer <eth:syzkaller0>
[  647.722423][T17489] tipc: Disabling bearer <eth:syzkaller0>
[  648.865292][T17501] overlayfs: failed to clone upperpath
[  649.114545][T17507] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3708'.
[  649.531804][T17513] loop4: detected capacity change from 0 to 1024
[  649.552614][T17513] EXT4-fs: Ignoring removed bh option
[  649.587445][T17513] EXT4-fs: Ignoring removed bh option
[  649.610786][T17513] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  649.660878][T17520] syzkaller0: entered promiscuous mode
[  649.670830][T17520] syzkaller0: entered allmulticast mode
[  649.702760][T17513] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  651.393216][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  651.564716][T17533] loop5: detected capacity change from 0 to 512
[  651.606002][T17533] ext4: Unknown parameter 'àB'
[  653.402212][T17539] tipc: Started in network mode
[  653.419286][T17539] tipc: Node identity f6a181ed8d4b, cluster identity 4711
[  655.026174][T17539] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  655.049298][T17543] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3719'.
[  655.108163][T17539] tipc: Resetting bearer <eth:syzkaller0>
[  655.188397][T17538] tipc: Disabling bearer <eth:syzkaller0>
[  656.165745][T17556] syzkaller0: entered promiscuous mode
[  656.208861][T17556] syzkaller0: entered allmulticast mode
[  657.832835][T17584] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3732'.
[  658.947686][T17596] syzkaller0: entered promiscuous mode
[  658.954839][T17596] syzkaller0: entered allmulticast mode
[  659.411474][T17606] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3742'.
[  659.762444][T17616] loop8: detected capacity change from 0 to 128
[  659.809960][T17616] FAT-fs (loop8): bogus number of FAT structure
[  659.861065][T17616] FAT-fs (loop8): This doesn't look like a DOS 1.x volume; no bootstrapping code
[  659.896187][T17616] FAT-fs (loop8): Can't find a valid FAT filesystem
[  660.751017][T17621] loop4: detected capacity change from 0 to 1024
[  660.796728][T17621] EXT4-fs: Ignoring removed bh option
[  660.802359][T17621] EXT4-fs: Ignoring removed bh option
[  660.837022][T17621] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  661.054253][T17621] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  663.340376][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.566678][T17643] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3752'.
[  663.753437][T17650] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3750'.
[  668.307817][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 210 seconds
[  668.318864][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 210 seconds
[  668.331362][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 210 seconds
[  668.342871][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 210 seconds
[  668.356461][ T7333] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  669.343270][T17677] loop8: detected capacity change from 0 to 1024
[  669.357255][T17677] EXT4-fs: Ignoring removed bh option
[  669.363095][T17677] EXT4-fs: Ignoring removed bh option
[  669.562948][T17677] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  670.237079][T17677] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  672.706420][T17692] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3763'.
[  672.731339][T17147] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.787266][ T5862] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  675.913833][ T5862] usb 5-1: Using ep0 maxpacket: 16
[  675.927010][ T5862] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[  675.953875][T17723] loop5: detected capacity change from 0 to 1024
[  675.971906][T17723] EXT4-fs: Ignoring removed bh option
[  675.975687][ T5862] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  675.987097][T17723] EXT4-fs: Ignoring removed bh option
[  675.995670][ T5862] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[  676.021882][T17723] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  676.039630][ T5862] usb 5-1: New USB device found, idVendor=18d1, idProduct=5022, bcdDevice= 0.00
[  676.057110][T17725] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3775'.
[  676.075699][ T5862] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.206123][T17723] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  676.434302][ T5862] usb 5-1: config 0 descriptor??
[  676.471309][ T5862] usb 5-1: can't set config #0, error -71
[  677.566946][T14167] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.583638][ T5862] usb 5-1: USB disconnect, device number 8
[  677.677718][T17742] loop8: detected capacity change from 0 to 16
[  677.718280][T17742] erofs: (device loop8): mounted with root inode @ nid 36.
[  677.900416][T17742] erofs: (device loop8): erofs_read_inode: unsupported i_format 36 of nid 37
[  679.015178][T17759] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3785'.
[  679.205880][ T5862] usb 5-1: new low-speed USB device number 9 using dummy_hcd
[  679.207912][T17764] loop5: detected capacity change from 0 to 1024
[  679.228956][T17764] ext3: Unknown parameter 'uid<00000000000000000000'
[  679.688981][ T5862] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  679.706651][ T5862] usb 5-1: config 179 has no interface number 0
[  679.713657][ T5862] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  679.728685][ T5862] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 8
[  679.789352][ T5862] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  680.120608][ T5862] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 8
[  680.170729][ T5862] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  680.226149][ T5862] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  680.257056][ T5862] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  680.280258][T17755] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  680.326348][T17755] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  680.711316][ T5862] usb 5-1: USB disconnect, device number 9
[  680.711381][    C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  680.711434][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  684.863540][T17800] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3798'.
[  685.636991][T17808] loop4: detected capacity change from 0 to 1024
[  685.662529][T17808] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  685.672813][T17808] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  685.696538][T17808] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c800e02c, mo2=0000]
[  685.813030][T17808] EXT4-fs error (device loop4): ext4_free_blocks:6676: comm syz.4.3802: Freeing blocks not in datazone - block = 0, count = 4096
[  685.874476][T17808] EXT4-fs (loop4): Remounting filesystem read-only
[  685.893398][T17808] EXT4-fs (loop4): 1 orphan inode deleted
[  685.907672][   T42] EXT4-fs (loop4): Quota write (off=3072, len=1024) cancelled because transaction is not started
[  685.930179][T17808] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  685.948959][T17814] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3794'.
[  685.958576][   T42] Quota error (device loop4): write_blk: dquota write failed
[  685.977149][   T42] Quota error (device loop4): free_dqentry: Can't move quota data block (2) to free list
[  687.667224][ T1286] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  687.676167][T17819] loop5: detected capacity change from 0 to 128
[  687.683151][T17819] UDF-fs: bad mount option "õ" or missing value
[  687.696165][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  687.731205][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.220133][T17828] loop4: detected capacity change from 0 to 512
[  688.302222][T17828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  688.332029][T17828] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  688.638284][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.988981][T17838] syzkaller0: entered promiscuous mode
[  688.994600][T17838] syzkaller0: entered allmulticast mode
[  691.442957][T17860] loop8: detected capacity change from 0 to 8
[  691.523202][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.532123][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.543070][T17862] loop4: detected capacity change from 0 to 16
[  691.555649][   T28] audit: type=1800 audit(1757570223.270:203): pid=17860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.3816" name="file1" dev="loop8" ino=5 res=0 errno=0
[  691.570337][T17860] SQUASHFS error: zlib decompression failed, data probably corrupt
[  691.585725][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.599445][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.609277][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.620889][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.658095][T17862] erofs: (device loop4): mounted with root inode @ nid 36.
[  691.661689][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.674328][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.718837][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.725344][   T28] audit: type=1800 audit(1757570223.440:204): pid=17862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3817" name="file1" dev="loop4" ino=86 res=0 errno=0
[  691.896079][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.916216][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.922751][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.931459][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.938386][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.945271][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.953885][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  691.979674][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  692.010693][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  692.030859][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  692.043435][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  692.051682][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  692.058615][T17860] SQUASHFS error: Failed to read block 0x4de: -5
[  692.067997][T17860] SQUASHFS error: Failed to read block 0x535f2: -5
[  692.077127][T17860] SQUASHFS error: Failed to read block 0x535f2: -5
[  692.780461][T17882] loop4: detected capacity change from 0 to 512
[  692.808989][T17882] EXT4-fs: quotafile must be on filesystem root
[  693.024052][ T5841] kernel write not supported for file [eventfd] (pid: 5841 comm: kworker/1:3)
[  693.115541][ T7333] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  693.286059][ T7331] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  693.307957][ T7333] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  693.331471][ T7333] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 4
[  693.355247][ T7333] usb 5-1: New USB device found, idVendor=05ac, idProduct=921c, bcdDevice=9d.fb
[  693.366453][ T7333] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  693.386295][ T7333] usb 5-1: config 0 descriptor??
[  693.497564][ T7331] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  693.510200][ T7331] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  693.536669][ T7331] usb 6-1: config 0 descriptor??
[  693.553650][ T7331] cp210x 6-1:0.0: cp210x converter detected
[  693.604402][ T7333] usb 5-1: USB disconnect, device number 10
[  694.048790][T17888] loop5: detected capacity change from 0 to 16
[  694.065967][T17888] erofs: (device loop5): mounted with root inode @ nid 36.
[  694.134654][ T7331] cp210x 6-1:0.0: failed to get vendor val 0x0010 size 3: -32
[  694.203202][ T7331] usb 6-1: cp210x converter now attached to ttyUSB0
[  694.349909][T17907] loop8: detected capacity change from 0 to 512
[  695.334439][T17907] netlink: 6 bytes leftover after parsing attributes in process `syz.8.3834'.
[  696.096815][ T7335] usb 6-1: USB disconnect, device number 4
[  696.256066][ T7335] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  696.272697][ T7335] cp210x 6-1:0.0: device disconnected
[  698.355714][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 240 seconds
[  698.366551][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 240 seconds
[  698.377585][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 240 seconds
[  698.407681][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 240 seconds
[  699.919470][T17927] loop4: detected capacity change from 0 to 1024
[  699.926795][T17927] hfsplus: gid requires an argument
[  699.932492][T17927] hfsplus: unable to parse mount options
[  700.834471][ T6146] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  702.464795][T17939] fuse: Bad value for 'fd'
[  706.226120][T17978] fuse: Bad value for 'fd'
[  707.934906][T17991] syzkaller0: entered promiscuous mode
[  707.953847][T17991] syzkaller0: entered allmulticast mode
[  707.962569][T17993] loop5: detected capacity change from 0 to 16
[  708.019952][T17993] erofs: (device loop5): mounted with root inode @ nid 36.
[  708.027728][T17989] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3857'.
[  708.201823][T17995] erofs: (device loop5): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  708.247225][T17995] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851]
[  708.290490][T17995] erofs: (device loop5): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  708.505736][T18003] loop4: detected capacity change from 0 to 128
[  709.792325][   T28] audit: type=1800 audit(1757570241.510:205): pid=18012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3864" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=1048637 res=0 errno=0
[  710.802306][T18017] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3868'.
[  717.520030][T18066] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3877'.
[  717.651605][T18070] loop8: detected capacity change from 0 to 512
[  717.689297][T18069] syzkaller0: entered promiscuous mode
[  717.705806][T18069] syzkaller0: entered allmulticast mode
[  717.964943][T18070] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  717.996175][T18070] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  718.649109][T18078] EXT4-fs error (device loop8): ext4_get_first_dir_block:3584: inode #12: comm syz.8.3885: Directory hole found for htree leaf block 0
[  718.825212][T17147] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  719.221608][T18088] loop8: detected capacity change from 0 to 1024
[  719.710854][T18099] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3895'.
[  719.956843][T18101] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3896'.
[  724.128676][T18132] loop8: detected capacity change from 0 to 1024
[  724.177188][T18132] EXT4-fs: Ignoring removed i_version option
[  724.183381][T18132] EXT4-fs: inline encryption not supported
[  725.097821][T18132] EXT4-fs (loop8): Test dummy encryption mode enabled
[  725.878413][T18132] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  726.261332][T18141] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3909'.
[  726.757724][T17147] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  728.415485][T18158] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3913'.
[  730.032221][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 270 seconds
[  730.043033][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 270 seconds
[  730.054086][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 270 seconds
[  730.065161][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 270 seconds
[  734.441664][T18182] loop4: detected capacity change from 0 to 1024
[  734.467983][T18182] EXT4-fs: Ignoring removed i_version option
[  734.474170][T18182] EXT4-fs: inline encryption not supported
[  734.525263][T18182] EXT4-fs (loop4): Test dummy encryption mode enabled
[  734.597197][T18182] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  736.387667][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  737.935672][T18209] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3919'.
[  738.551897][T18219] netlink: 44 bytes leftover after parsing attributes in process `syz.8.3932'.
[  738.792954][T18221] loop8: detected capacity change from 0 to 16
[  738.865570][T18221] erofs: (device loop8): mounted with root inode @ nid 36.
[  739.227169][T18223] loop8: detected capacity change from 0 to 8
[  739.884456][T18230] overlayfs: missing 'lowerdir'
[  739.929294][   T50] Bluetooth: hci3: command 0x0406 tx timeout
[  740.396555][T18238] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3939'.
[  740.539642][T18244] syzkaller0: entered promiscuous mode
[  740.545269][T18244] syzkaller0: entered allmulticast mode
[  741.155482][T18260] overlayfs: missing 'lowerdir'
[  741.298053][T18263] loop4: detected capacity change from 0 to 1024
[  741.306760][T18263] EXT4-fs: Ignoring removed i_version option
[  741.312948][T18263] EXT4-fs: inline encryption not supported
[  741.322485][T18263] EXT4-fs (loop4): Test dummy encryption mode enabled
[  741.345738][T18263] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  741.833412][T18275] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3953'.
[  742.147746][T13340] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.619163][T18287] loop8: detected capacity change from 0 to 128
[  743.636908][T18287] FAT-fs (loop8): Unrecognized mount option "ÿÿ1844674407370955161501777777777777777777777017777777777777777777770000000000000000000000401777777777777777777777ÿ0000000000000000000318446744073709551615y‹ŠK‡jp³îG" or missing value
[  743.650939][T18293] syzkaller0: entered promiscuous mode
[  743.726669][T18293] syzkaller0: entered allmulticast mode
[  743.914555][T18296] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  743.923736][T18296] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  744.300196][T18301] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3962'.
[  746.653650][T18325] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  746.678687][T18325] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  747.657705][T18321] loop8: detected capacity change from 0 to 512
[  747.690338][ T1286] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  747.708311][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  747.808910][T18321] EXT4-fs: Ignoring removed orlov option
[  747.899981][T18321] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  747.989506][T18321] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  748.082600][T18321] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  748.309678][T18321] EXT4-fs warning (device loop8): ext4_read_inode_bitmap:149: Cannot read inode bitmap - block_group = 0, inode_bitmap = 1918985075
[  748.766095][T17147] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  748.784458][T17147] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5902: Out of memory
[  748.802205][T17147] EXT4-fs (loop8): Remounting filesystem read-only
[  750.758401][ T5794] Bluetooth: hci3: unexpected event for opcode 0x0c13
[  750.918645][T18360] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  750.934336][T18360] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  755.422590][ T5794] Bluetooth: hci3: unexpected event for opcode 0x0c13
[  758.957535][ T5794] Bluetooth: hci4: unexpected event for opcode 0x0c13
[  759.132111][   T29] INFO: task syz.0.3576:17016 blocked for more than 143 seconds.
[  759.160278][   T29]       Not tainted syzkaller #0
[  759.195627][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  759.204559][   T29] task:syz.0.3576      state:D stack:25632 pid:17016 ppid:12405  flags:0x00004006
[  759.256946][   T29] Call Trace:
[  759.272553][T18420] loop4: detected capacity change from 0 to 512
[  759.283527][   T29]  <TASK>
[  759.296350][   T29]  __schedule+0x14d2/0x44d0
[  759.312096][   T29]  ? asan.module_dtor+0x20/0x20
[  759.329260][   T29]  ? __mutex_lock+0x6b2/0xcc0
[  759.354970][T18420] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  759.372822][   T29]  ? __mutex_trylock_common+0x84/0x250
[  759.380258][T18420] UDF-fs: Scanning with blocksize 512 failed
[  759.398657][T18420] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  759.409376][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  759.415487][T18420] UDF-fs: Scanning with blocksize 1024 failed
[  759.434746][   T29]  schedule+0xbd/0x170
[  759.442206][T18420] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  759.449612][   T29]  schedule_preempt_disabled+0x13/0x20
[  759.449678][   T29]  __mutex_lock+0x6b7/0xcc0
[  759.449709][   T29]  ? __mutex_lock+0x4e8/0xcc0
[  759.449742][   T29]  ? sync_bdevs+0x1af/0x330
[  759.449765][   T29]  ? mutex_lock_nested+0x20/0x20
[  759.449930][T18420] UDF-fs: Scanning with blocksize 2048 failed
[  759.471800][   T29]  ? _atomic_dec_and_lock+0x93/0x120
[  759.490407][T18421] loop8: detected capacity change from 0 to 8
[  759.494475][   T29]  ? do_raw_spin_unlock+0x121/0x230
[  759.510718][T18421] SQUASHFS error: Failed to read block 0x4de: -5
[  759.517767][T18421] SQUASHFS error: Failed to read block 0x4de: -5
[  759.524482][   T28] audit: type=1800 audit(1757570291.240:206): pid=18421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.3989" name="file1" dev="loop8" ino=5 res=0 errno=0
[  759.554389][T18420] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  759.566563][   T29]  sync_bdevs+0x1af/0x330
[  759.594984][   T29]  ksys_sync+0xba/0x150
[  759.598549][T18420] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  759.604811][   T29]  ? sync_filesystem+0x220/0x220
[  759.615525][   T29]  ? syscall_enter_from_user_mode+0x25/0x80
[  759.621658][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  759.635066][   T29]  __ia32_sys_sync+0xe/0x20
[  759.642470][   T29]  do_syscall_64+0x55/0xb0
[  759.647262][   T29]  ? clear_bhb_loop+0x40/0x90
[  759.652384][   T29]  ? clear_bhb_loop+0x40/0x90
[  759.657412][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  759.663565][   T29] RIP: 0033:0x7f3cc978eba9
[  759.668364][   T29] RSP: 002b:00007f3cca5fa038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  759.677572][   T29] RAX: ffffffffffffffda RBX: 00007f3cc99d5fa0 RCX: 00007f3cc978eba9
[  759.689913][   T29] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  759.702297][   T29] RBP: 00007f3cc99d5fa0 R08: 0000000000000000 R09: 0000000000000000
[  759.715792][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  759.725146][   T29] R13: 00007f3cc99d6038 R14: 00007f3cc99d5fa0 R15: 00007ffce2a0cb48
[  759.733969][   T29]  </TASK>
[  759.737730][   T29] 
[  759.737730][   T29] Showing all locks held in the system:
[  759.746306][   T29] 5 locks held by kworker/u4:1/12:
[  759.751667][   T29] 1 lock held by khungtaskd/29:
[  759.769484][   T29]  #0: ffffffff8cd2fc20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  759.780770][   T29] 2 locks held by kworker/u4:2/42:
[  759.786189][   T29] 2 locks held by getty/5552:
[  759.791144][   T29]  #0: ffff88814db780a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  759.801454][   T29]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380
[  759.832593][   T29] 1 lock held by udevd/5803:
[  759.843733][   T29]  #0: ffff888021a114c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600
[  759.865530][   T29] 1 lock held by syz-executor/14167:
[  759.877547][   T29] 3 locks held by udevd/16462:
[  759.888537][   T29] 1 lock held by syz.0.3576/17016:
[  759.904794][   T29]  #0: ffff888021a114c8 (&disk->open_mutex){+.+.}-{3:3}, at: sync_bdevs+0x1af/0x330
[  759.934395][   T29] 1 lock held by syz.4.4002/18419:
[  760.291643][   T29]  #0: ffff8880b8e3c458 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xad/0x140
[  760.321516][   T29] 1 lock held by syz.4.4002/18423:
[  760.337133][   T29] 
[  760.365659][   T29] =============================================
[  760.365659][   T29] 
[  760.394850][   T29] NMI backtrace for cpu 0
[  760.399338][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  760.406575][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  760.416670][   T29] Call Trace:
[  760.419980][   T29]  <TASK>
[  760.422955][   T29]  dump_stack_lvl+0x16c/0x230
[  760.427678][   T29]  ? show_regs_print_info+0x20/0x20
[  760.432911][   T29]  ? load_image+0x3b0/0x3b0
[  760.437554][   T29]  nmi_cpu_backtrace+0x39b/0x3d0
[  760.442574][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  760.448786][   T29]  ? _printk+0xd0/0x110
[  760.452985][   T29]  ? load_image+0x3b0/0x3b0
[  760.457615][   T29]  ? load_image+0x3b0/0x3b0
[  760.462186][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  760.468330][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  760.474352][   T29]  watchdog+0xf41/0xf80
[  760.478547][   T29]  ? watchdog+0x1e1/0xf80
[  760.482942][   T29]  kthread+0x2fa/0x390
[  760.487300][   T29]  ? hungtask_pm_notify+0x90/0x90
[  760.492357][   T29]  ? kthread_blkcg+0xd0/0xd0
[  760.497064][   T29]  ret_from_fork+0x48/0x80
[  760.501608][   T29]  ? kthread_blkcg+0xd0/0xd0
[  760.506230][   T29]  ret_from_fork_asm+0x11/0x20
[  760.511052][   T29]  </TASK>
[  760.515178][   T29] Sending NMI from CPU 0 to CPUs 1:
[  760.520784][    C1] NMI backtrace for cpu 1
[  760.520796][    C1] CPU: 1 PID: 18423 Comm: syz.4.4002 Not tainted syzkaller #0
[  760.520812][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  760.520822][    C1] RIP: 0010:kasan_check_range+0x67/0x290
[  760.520847][    C1] Code: 49 c1 ef 03 49 ba 00 00 00 00 00 fc ff df 4f 8d 1c 17 49 ff c8 4d 89 c1 49 c1 e9 03 48 bb 01 00 00 00 00 fc ff df 4d 8d 34 19 <4d> 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 41 01 00 00 4c
[  760.520862][    C1] RSP: 0018:ffffc9000ca5f068 EFLAGS: 00000807
[  760.520877][    C1] RAX: 0000000000000001 RBX: dffffc0000000001 RCX: ffffffff81670c01
[  760.520889][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff90da5500
[  760.520900][    C1] RBP: ffffc9000ca5f2e8 R08: ffffffff90da5507 R09: 1ffffffff21b4aa0
[  760.520912][    C1] R10: dffffc0000000000 R11: fffffbfff21b4aa0 R12: ffff88802d098ac4
[  760.520925][    C1] R13: ffff88802d098000 R14: fffffbfff21b4aa1 R15: 1ffffffff21b4aa0
[  760.520938][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  760.520952][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  760.520963][    C1] CR2: 00007f4f1fb87000 CR3: 000000000cb30000 CR4: 00000000003506e0
[  760.520979][    C1] Call Trace:
[  760.520985][    C1]  <TASK>
[  760.520993][    C1]  __lock_acquire+0x611/0x7c80
[  760.521024][    C1]  ? verify_lock_unused+0x140/0x140
[  760.521042][    C1]  ? verify_lock_unused+0x140/0x140
[  760.521061][    C1]  ? __asan_memset+0x22/0x40
[  760.521082][    C1]  ? __mem_cgroup_uncharge_list+0x9e/0x150
[  760.521101][    C1]  ? uncharge_batch+0x440/0x440
[  760.521123][    C1]  lock_acquire+0x197/0x410
[  760.521140][    C1]  ? page_ext_get+0x22/0x2b0
[  760.521161][    C1]  ? pfn_valid+0xcd/0x420
[  760.521194][    C1]  ? read_lock_is_recursive+0x20/0x20
[  760.521212][    C1]  ? __mod_lruvec_page_state+0xa5/0x420
[  760.521238][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  760.521255][    C1]  ? __mod_lruvec_page_state+0xa5/0x420
[  760.521282][    C1]  ? pfn_valid+0xcd/0x420
[  760.521299][    C1]  ? page_ext_get+0x22/0x2b0
[  760.521317][    C1]  page_ext_get+0x3e/0x2b0
[  760.521340][    C1]  ? page_ext_get+0x22/0x2b0
[  760.521359][    C1]  page_table_check_clear+0x4a/0x6a0
[  760.521378][    C1]  ? __page_table_check_pte_clear+0x43/0x70
[  760.521398][    C1]  unmap_page_range+0x1ad1/0x2fe0
[  760.521440][    C1]  ? copy_page_range+0x3600/0x3600
[  760.521465][    C1]  ? unmap_single_vma+0x1b0/0x2a0
[  760.521490][    C1]  unmap_vmas+0x25e/0x3a0
[  760.521515][    C1]  ? unmap_page_range+0x2fe0/0x2fe0
[  760.521540][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  760.521566][    C1]  exit_mmap+0x200/0xb50
[  760.521586][    C1]  ? exit_mm_release+0x1a/0x30
[  760.521604][    C1]  ? vm_brk+0x30/0x30
[  760.521623][    C1]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  760.521656][    C1]  ? uprobe_clear_state+0x278/0x290
[  760.521674][    C1]  ? mm_update_next_owner+0x562/0x6c0
[  760.521700][    C1]  __mmput+0x118/0x3c0
[  760.521716][    C1]  exit_mm+0x1da/0x2c0
[  760.521739][    C1]  ? do_exit+0x23c0/0x23c0
[  760.521762][    C1]  ? taskstats_exit+0x35e/0x9e0
[  760.521790][    C1]  do_exit+0x88e/0x23c0
[  760.521816][    C1]  ? put_task_struct+0xc0/0xc0
[  760.521841][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  760.521858][    C1]  ? get_signal+0x1068/0x1400
[  760.521883][    C1]  ? lock_chain_count+0x20/0x20
[  760.521900][    C1]  ? _raw_spin_lock_irq+0xaf/0xe0
[  760.521916][    C1]  do_group_exit+0x21b/0x2d0
[  760.521942][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  760.521968][    C1]  get_signal+0x12fc/0x1400
[  760.522002][    C1]  arch_do_signal_or_restart+0x96/0x780
[  760.522030][    C1]  ? get_sigframe_size+0x20/0x20
[  760.522059][    C1]  ? __x64_sys_recvmmsg+0x191/0x240
[  760.522084][    C1]  ? exit_to_user_mode_loop+0x3b/0x110
[  760.522109][    C1]  exit_to_user_mode_loop+0x70/0x110
[  760.522132][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[  760.522155][    C1]  syscall_exit_to_user_mode+0x1a/0x50
[  760.522186][    C1]  do_syscall_64+0x61/0xb0
[  760.522204][    C1]  ? clear_bhb_loop+0x40/0x90
[  760.522220][    C1]  ? clear_bhb_loop+0x40/0x90
[  760.522237][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  760.522263][    C1] RIP: 0033:0x7f28d1d8eba9
[  760.522276][    C1] Code: Unable to access opcode bytes at 0x7f28d1d8eb7f.
[  760.522284][    C1] RSP: 002b:00007f28d2b5c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  760.522300][    C1] RAX: 0000000000010106 RBX: 00007f28d1fd6090 RCX: 00007f28d1d8eba9
[  760.522311][    C1] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000005
[  760.522322][    C1] RBP: 00007f28d1e11e19 R08: 0000000000000000 R09: 0000000000000000
[  760.522332][    C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  760.522342][    C1] R13: 00007f28d1fd6128 R14: 00007f28d1fd6090 R15: 00007ffe580ce848
[  760.522361][    C1]  </TASK>
[  760.988330][   T24] block nbd0: Possible stuck request ffff888021a90000: control (read@0,1024B). Runtime 300 seconds
[  760.999419][   T24] block nbd0: Possible stuck request ffff888021a90200: control (read@1024,1024B). Runtime 300 seconds
[  761.010631][   T24] block nbd0: Possible stuck request ffff888021a90400: control (read@2048,1024B). Runtime 300 seconds
[  761.021834][   T24] block nbd0: Possible stuck request ffff888021a90600: control (read@3072,1024B). Runtime 300 seconds
[  761.072621][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  761.079548][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  761.086826][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  761.097009][   T29] Call Trace:
[  761.100305][   T29]  <TASK>
[  761.103343][   T29]  dump_stack_lvl+0x16c/0x230
[  761.108059][   T29]  ? show_regs_print_info+0x20/0x20
[  761.113298][   T29]  ? load_image+0x3b0/0x3b0
[  761.117834][   T29]  panic+0x2c0/0x710
[  761.121839][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  761.127583][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  761.132189][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  761.137750][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  761.143932][   T29]  watchdog+0xf80/0xf80
[  761.148110][   T29]  ? watchdog+0x1e1/0xf80
[  761.152475][   T29]  kthread+0x2fa/0x390
[  761.156555][   T29]  ? hungtask_pm_notify+0x90/0x90
[  761.161605][   T29]  ? kthread_blkcg+0xd0/0xd0
[  761.166254][   T29]  ret_from_fork+0x48/0x80
[  761.170697][   T29]  ? kthread_blkcg+0xd0/0xd0
[  761.175354][   T29]  ret_from_fork_asm+0x11/0x20
[  761.180363][   T29]  </TASK>
[  761.183685][   T29] Kernel Offset: disabled
[  761.188039][   T29] Rebooting in 86400 seconds..