last executing test programs:

15m28.797320293s ago: executing program 32 (id=21):
r0 = syz_io_uring_setup(0x237, &(0x7f0000000240)={0x0, 0xebcc, 0x1, 0x2, 0x24e}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000380)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x80, 0x3, 0x0, 0x9276, 0x0, 0x0, {0x1}})
io_uring_enter(r0, 0x3b3d, 0x75d1, 0x40, 0x0, 0x0)

15m7.510089686s ago: executing program 33 (id=50):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x8000f28, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7f, 0xe)
write(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000a44000/0x4000)=nil, 0x4000, 0x0, 0xbc32038f2d035af6, 0xffffffffffffffff, 0x2882c000)
r4 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
lseek(r4, 0x2004, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)

15m7.267633825s ago: executing program 34 (id=52):
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20000080}, 0x5)
setsockopt$inet_tcp_int(r2, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r2, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14c222ee3c0cb001829a8681ed391da1a71d", 0x14}], 0x1}}], 0x1, 0x20008000)
setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f1a0f9fff9e440b4", "881aae83544dfa6412f91b9057e3f415", "9dca43b6", "9ecb592c6ee49fbd"}, 0x28)
socket$kcm(0x10, 0x2, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x5, 0x4c00)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
personality(0x5000004)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r3, 0xc08c5335, &(0x7f00000001c0)={0x1f00, 0x80, 0x0, 'queue0\x00'})
fstat(0xffffffffffffffff, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)

15m7.159892907s ago: executing program 35 (id=43):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000fdffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a40)={<r3=>0xffffffffffffffff})
close_range(r3, 0xffffffffffffffff, 0x2)
recvmmsg(0xffffffffffffffff, &(0x7f0000001f40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000a80)=""/4096, 0x1000}}], 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7290, &(0x7f0000000280)={0x0, 0x0, 0x2, 0x3, 0xde}, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/188, 0xbc, 0xdf0e}}], 0x1800, 0x2002, 0x0)

15m7.024184466s ago: executing program 36 (id=38):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x0)
ftruncate(r2, 0x6000000)
r3 = fanotify_init(0x200, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r3, 0x71, 0x40000009, r4, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x4000)

13m39.08622702s ago: executing program 6 (id=210):
r0 = io_uring_setup(0x792b, &(0x7f0000000600)={0x0, 0x2002, 0x1, 0x0, 0x4b1})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000002, 0x42032, 0xffffffffffffffff, 0x80000000)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

13m36.640490169s ago: executing program 6 (id=214):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in6=@mcast1, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {@in6=@mcast2, 0x0, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x14}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)

13m20.299920051s ago: executing program 37 (id=214):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in6=@mcast1, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {@in6=@mcast2, 0x0, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x14}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)

9m50.530174632s ago: executing program 38 (id=1211):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000240)={'bridge_slave_1\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$USBDEVFS_REAPURB(r2, 0x4008550c, 0x0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x7, 0x80, 0x0, 0x1, 0x101, 0x0})
lseek(0xffffffffffffffff, 0x9, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_opts(r5, 0x0, 0x4, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @rand_addr=0x64010103}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)

8m52.341145824s ago: executing program 5 (id=1522):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x8a003, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x74bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x6, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x8, 0xe3, 0x7}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x890)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, 0x0}, 0x0)

8m51.436924899s ago: executing program 5 (id=1527):
syz_mount_image$erofs(&(0x7f00000003c0), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x0, 0x17d, &(0x7f0000001ac0)="$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")
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x100)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
chdir(&(0x7f00000001c0)='./file0\x00')
link(0x0, &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

8m50.824857272s ago: executing program 5 (id=1531):
r0 = syz_io_uring_setup(0x46bb, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, 0x0, &(0x7f0000000140)=<r1=>0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r2, 0x0, &(0x7f0000000680)={&(0x7f0000000500)=@sco={0x1f, @none}, 0x80, 0x0}})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x100, 0xfd, 0x9, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0xcff5, r3}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x4, r3}, 0x38)
io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0)

8m50.245423649s ago: executing program 5 (id=1535):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@lazytime}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
creat(&(0x7f0000000300)='./bus\x00', 0xa1)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0xcad7d, 0x10)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x200)

8m49.374453802s ago: executing program 5 (id=1539):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000000)='.\x00', 0x400017e)
creat(&(0x7f0000000100)='./file0\x00', 0x1)
inotify_add_watch(r1, &(0x7f00000003c0)='./file0\x00', 0x84000100)
close_range(r0, 0xffffffffffffffff, 0x0)

8m48.450285795s ago: executing program 5 (id=1543):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x183183, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x20)

8m45.995889308s ago: executing program 39 (id=1543):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x183183, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x20)

6m35.53631917s ago: executing program 9 (id=1957):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1e000000000000000700400009"], 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000))
r1 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1b, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0x0)

6m35.009558468s ago: executing program 9 (id=1961):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x1ac}}, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a000000000000d74619edc700000000000000004cbd302b0000000000fa0000000000"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

6m34.300963123s ago: executing program 9 (id=1965):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r7=>0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, '-'}]}, 0x24}}, 0x48000)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r9, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000c80)=ANY=[@ANYRES16=r3, @ANYBLOB="010000000000000000003a00000008000300", @ANYRES32=r4, @ANYBLOB="05005b"], 0x24}}, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)={0x24, r10, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x6, 0x5b, '6\''}]}, 0x24}, 0x1, 0x0, 0x0, 0x8054}, 0x0)

6m33.740477706s ago: executing program 9 (id=1968):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x50, &(0x7f00000001c0), 0x1, 0x3fb, &(0x7f0000000a80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x189)
mknod(&(0x7f00000000c0)='./bus\x00', 0x8000, 0x77f8)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000480)={0x7, 0x5, 0x2, 0x401})

6m32.876897121s ago: executing program 9 (id=1975):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a80)=ANY=[], 0x1ac}}, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a000000000000d74619edc700000000000000004cbd302b0000000000fa0000000000"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

6m26.363291431s ago: executing program 9 (id=1979):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'bond_slave_0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000140)={@loopback, 0x80, r2})

6m25.019877738s ago: executing program 40 (id=1979):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'bond_slave_0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000140)={@loopback, 0x80, r2})

4m32.174962372s ago: executing program 7 (id=2265):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0xbc, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x90, 0x2, [@TCA_U32_SEL={0x84, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x9, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0xfffffff9, 0x43, 0x7ffd, 0x5}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x5, 0xb, 0x1, 0x42}, {0x6, 0x4, 0x0, 0x8}, {0x8001, 0x0, 0x0, 0x8001}, {0x1, 0x1800000, 0xa525}]}}, @TCA_U32_LINK={0x8, 0x3, 0x1000000}]}}]}, 0xbc}, 0x1, 0x0, 0x0, 0x80}, 0x40)

4m30.472711462s ago: executing program 7 (id=2272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000000008001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702000078ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4m29.426994481s ago: executing program 7 (id=2277):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x9, 0x201, &(0x7f0000000f40)="$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")
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
syz_io_uring_setup(0x1239, 0x0, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f00000000c0))
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r4, 0x4004743a, &(0x7f0000000300))
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$TCFLSH(r1, 0x540b, 0x2)

4m27.593115079s ago: executing program 7 (id=2282):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0xbc, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x90, 0x2, [@TCA_U32_SEL={0x84, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x9, 0x7, 0x0, [{0x8, 0x7, 0x1009, 0x5}, {0xfffffff9, 0x43, 0x7ffd, 0x5}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x5, 0xb, 0x1, 0x42}, {0x6, 0x4, 0x0, 0x8}, {0x8001, 0x0, 0x0, 0x8001}, {0x1, 0x1800000, 0xa525}]}}, @TCA_U32_LINK={0x8, 0x3, 0x1000000}]}}]}, 0xbc}, 0x1, 0x0, 0x0, 0x80}, 0x40)

4m25.788382687s ago: executing program 7 (id=2286):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x0, 0x2, 0x0, @empty, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x1000000}}}}}, 0x0)

4m24.119767014s ago: executing program 7 (id=2289):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000080), 0x8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4)
socket$inet6(0xa, 0x800000000000002, 0x0)

4m8.570983766s ago: executing program 41 (id=2289):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000080), 0x8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4)
socket$inet6(0xa, 0x800000000000002, 0x0)

4m5.844997487s ago: executing program 8 (id=2320):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020207025000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1e000000000000000700400009"], 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, 0x0)
r1 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1b, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0x0)

4m3.779960699s ago: executing program 8 (id=2323):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000011ac0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000300)={0x30, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x280a}, @NL80211_ATTR_BSSID={0xa}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004080}, 0x40000)

4m2.541963972s ago: executing program 8 (id=2327):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000f00)={'bridge_slave_1\x00', &(0x7f00000002c0)=@ethtool_perm_addr={0x19}})

4m0.463035189s ago: executing program 8 (id=2329):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xf}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
pipe2(&(0x7f0000000580)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000000040)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
tee(r1, r3, 0xfffffffffffffc01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tee(r1, r3, 0x60000000000, 0x0)

3m56.230868499s ago: executing program 8 (id=2334):
syz_open_procfs(0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syslog(0x2, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f0000000500)=0x100000001, 0x4)
bind$inet(r3, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3}, 0x48)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, r4, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0x3}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x6, 0x0}, {0x18, 0x9, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x6, 0x1, 0x5, 0x2}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3m54.68768032s ago: executing program 8 (id=2336):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
inotify_init()
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x400, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, 0x0)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f00000006c0)={{&(0x7f00009d6000/0x3000)=nil, 0x3000}, 0x4})
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r7 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0x8, 0x3, 0x4a8, 0x0, 0xffffffff, 0xffffffff, 0x150, 0xffffffff, 0x3d8, 0xffffffff, 0xffffffff, 0x3d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x128, 0x150, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x508)
read$FUSE(r6, &(0x7f0000005180)={0x2020}, 0x2020)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, 0x0, 0x4004010)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200000, &(0x7f00000012c0)={[{@dax}, {@acl}]}, 0xfe, 0x244, &(0x7f0000000400)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)

3m36.891867231s ago: executing program 42 (id=2336):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
inotify_init()
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x400, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, 0x0)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f00000006c0)={{&(0x7f00009d6000/0x3000)=nil, 0x3000}, 0x4})
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r7 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0x8, 0x3, 0x4a8, 0x0, 0xffffffff, 0xffffffff, 0x150, 0xffffffff, 0x3d8, 0xffffffff, 0xffffffff, 0x3d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x128, 0x150, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x508)
read$FUSE(r6, &(0x7f0000005180)={0x2020}, 0x2020)
syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, 0x0, 0x4004010)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200000, &(0x7f00000012c0)={[{@dax}, {@acl}]}, 0xfe, 0x244, &(0x7f0000000400)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1m50.674115932s ago: executing program 6 (id=2347):
r0 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f00000004c0)=[{0x28, 0x0, 0x5, 0xfffff034}, {0x80000006, 0x0, 0x12, 0xf9}]}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
sendto$inet(r1, &(0x7f0000000700)="09268a60fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88ff4f90b1a7511bf746bec66ba1fe92e8615fc3f7af9c3310b39cc2dc3616dcdfaebc65ca325fd99357ed9d11b266a7c88722db6e38df1089394f438cb9fbc08e62754c233cced4a4d4d05a3e5029a01298d3ee87d8a0803a2d26906f42f5b5aaf47d2752a8b23954f309cae13ef250cf76775ddfd153eef2b1a8458a3cb6dc764f19b41c8c6", 0xba, 0x40040, 0x0, 0x0)

1m49.53883489s ago: executing program 6 (id=2518):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x800000, 0x0)
creat(&(0x7f0000001380)='./file0\x00', 0x4)

1m47.4265952s ago: executing program 6 (id=2522):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
socket$inet6(0xa, 0x800000000000002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_io_uring_setup(0x19f2, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x8000000}, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[@ANYRES64=r4], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1m46.493415316s ago: executing program 6 (id=2526):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x25, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0xffff, 0x0, 0x0, 0xb3550aa4ba878396}, 0x9c)

1m42.482808147s ago: executing program 43 (id=2526):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x25, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0xffff, 0x0, 0x0, 0xb3550aa4ba878396}, 0x9c)

21.088590377s ago: executing program 0 (id=2827):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r2}, 0x10)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)

16.236550773s ago: executing program 3 (id=2828):
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0xc0089364, &(0x7f0000000180))

14.487279904s ago: executing program 3 (id=2831):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r1}, 0x10)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)

12.35904858s ago: executing program 0 (id=2834):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xffef}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x0)

11.286295631s ago: executing program 3 (id=2836):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000240))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f00000004c0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ppoll(&(0x7f0000000100)=[{r2, 0x806}], 0x1, &(0x7f0000000200), 0x0, 0x0)

10.85571657s ago: executing program 0 (id=2838):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000000), 0x10000002, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
io_setup(0x3, &(0x7f0000000000)=<r4=>0x0)
r5 = eventfd(0x6d)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r6 = socket$pptp(0x18, 0x1, 0x2)
io_submit(r4, 0x3, &(0x7f0000000600)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x7, 0x1, r3, &(0x7f0000000300)="30c50bd89c03e7d94f40548f1e49fa6d25799f5c0eaa1196a97ed0f6bee599acc8ca8604de5d900c7305c2cd8b", 0x2d, 0x4, 0x0, 0x2, r5}, 0x0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x8, 0x4, r6, &(0x7f0000000540), 0x0, 0x3}])
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'veth1_to_team\x00'})
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='tracefs\x00', 0x8010, &(0x7f0000000280)='\x00')

10.141466242s ago: executing program 3 (id=2840):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

9.955525841s ago: executing program 2 (id=2841):
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0xc0089364, &(0x7f0000000180))

9.651779024s ago: executing program 1 (id=2843):

9.368418747s ago: executing program 2 (id=2844):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = socket$inet6(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10)
sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

9.316159205s ago: executing program 3 (id=2845):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x15}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

9.047840484s ago: executing program 1 (id=2846):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)}], 0x1, 0x0, 0x0, 0x2044}, 0x60)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r2, 0x40047451, &(0x7f0000000180))

8.426909869s ago: executing program 1 (id=2848):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xffef}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x0)

8.353484513s ago: executing program 2 (id=2849):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={r1}, 0x0)

7.864017345s ago: executing program 4 (id=2850):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000240))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f00000004c0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ppoll(&(0x7f0000000100)=[{r2, 0x806}], 0x1, &(0x7f0000000200), 0x0, 0x0)

7.780999707s ago: executing program 3 (id=2851):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace(0x8, r3)
tgkill(r3, r3, 0x1a)
umount2(0x0, 0x2)

7.646442987s ago: executing program 1 (id=2852):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000400)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000ffdbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="24003300d0980700ffffffffffff080211000001505050505050020004000ec108"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x44050)

7.555756724s ago: executing program 2 (id=2853):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_mount_image$hfsplus(&(0x7f0000007340), &(0x7f0000000000)='./file2\x00', 0x1600008, &(0x7f0000000200)={[{@umask={'umask', 0x3d, 0x3}}, {}, {@part={'part', 0x3d, 0x7}}, {@barrier}, {@nobarrier}, {@uid={'uid', 0x3d, 0xee00}}, {@type={'type', 0x3d, "91260fae"}}]}, 0x3, 0x637, &(0x7f00000005c0)="$eJzs3UtsG2kdAPD/OI4TB9TN7qa7Ba1EtJUWRESbh7IQLpSHUA4rtFoOnKPWbay6aZW4KK0QCi9x4MKh4lwOuXFC6j1SOcMF9ZpjJVAvPaDcjGY8dpy386qd7e8Xjb/v8zfzzX/+9jzsyJoA3lrzE1HciCTmJz5bTdub6zO1zfWZoby7FhFpvRBRbBaRLEUkz5vdN9KHr6VP5vMnB63nSXXuixevN182W8XWwkkprQ0fvNxRmguu5VOMR8RAXu412O2oO8a7eeB4+/nvn/YPshlous1XW4mDXmvssXacxU+83wL9I2meN/cYjRjJztDN64DIjw6FNxvd2TvWUQ4AAAAuqHe2Ymut0Wj0Og4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4SPL7/yf5VGjVxyNp3f+/1DF7qYehnomNXgcAAAAAAAAAACfSGOhsfWMrtmI1LrV7k+x//h9njbHs8SvxMFaiEstxLVZjIepRj+WYiojRjoFKqwv1+vJUF0tO77vk9LluNAAAAAAAAAB82f025rf//w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP0giRhoFtk01qqPRqEYEcMRUUrnW4v4V6t+kW30OgAAAAB4A97Ziq1YjUutdiPJPvN/kH3uH46HsRT1qEY9alGJW9l3Ac1P/YXN9Zna5vrMvXTaO+5f/tfIdBlGNmI0v3vYf81XsjnKcTuq2TPX4mbcj1q5c5QrrXj2j+s3r9Kxf5DrMrJbeZlu+Z/zsj+MZhkZbGdkMo8tzeO7h2fih69OuqbxdE1TUWh/8zN2DjkfyctkV9l7u3M+HYUs36kPDs9ExDef/e0Xi7Wlu4u3Vyb6Z5NOqJmJRqOZiaGs1crEh29VJiazbb/cbs/HT+PnMRHj8XksRzV+GQtRj0qMx0+y2kL+fk4fR3dlqrBz6Bs7Wp8fFUkpf12aR9HjxfRxtuylqMbP4n7cikp8mv1Nx1R8N2ZjNuY6XuHLXez1hePt9Ve/lVfSQ/of87I/pHl9tyOvncfc0ayv85ntLL139sfG4tfzSrqO30XEj89wO09ndybSs8Szrzb73j88E3/NrhNWakt3lxcXHnS5vk/yMt2P/tBXZ4n0/fJe+mJlrZ3vjrTv/X37prK+sXZfYU/f5XbfUXtqKb+G2zvSdNb34b59M1nflY6+Pddb7eshAPrYyLdHSuX/lP9Zflr+fXmx/Nnwj4a+N/RRKQb/Mfj94uTAJ4WPkr/H0/j19ud/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg5FYePb67UKtVlo+sJNnN/yO6mrmj0rqd0+EzJ1HMbuRznJFVarXKcPRFGMeq1P4d0fFM0ut4+qEy1G9v/t4el4Dzd71+78H1lUePv1O9t3CncqeyNDg7Ozc5N/vpzPXb1dpApI+VyV5HCZyH7ZN+ryMBAAAAAAAAAAAAunX4zwAG87lO93OCHm8iAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcMHNT0RxI5KYmrw2mbY312dq6dSqb89ZjIhCRCS/ikieR9yI5hSjHcMlB63nSXXuixevN19uj1VszV84bLnurOVTjEfEQF6e1Xg3Tz1e0t7CNGFXS6cLDs7M/wMAAP//oEkI4g==")
ioctl$RTC_IRQP_READ(0xffffffffffffffff, 0x8008700b, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x0, 0x0)
fanotify_init(0x200, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
syz_emit_vhci(&(0x7f0000002300)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_le_read_buffer_size={{0xfe}, {0x9, 0x9, 0x8a}}}}, 0xa)

7.048858449s ago: executing program 4 (id=2854):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(0xffffffffffffffff, 0xc0089364, &(0x7f0000000180))

6.949378177s ago: executing program 1 (id=2855):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x1c0)
r0 = landlock_create_ruleset(&(0x7f0000000200)={0x2081, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000002c0)={0x2001}, 0x18, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000340)={0x2000, r2}, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

4.835426845s ago: executing program 4 (id=2856):
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
r0 = gettid()
timer_create(0x9, &(0x7f0000000180)={0x0, 0x1e, 0x4, @tid=r0}, &(0x7f00000000c0))
timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)

4.708909349s ago: executing program 1 (id=2857):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)

4.228840148s ago: executing program 0 (id=2858):
r0 = eventfd2(0x0, 0x0)
io_setup(0x81, &(0x7f0000000400)=<r1=>0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
read$eventfd(r0, &(0x7f0000000000), 0x8)
io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1fd, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r0}])

3.583944625s ago: executing program 4 (id=2859):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))

2.54900527s ago: executing program 2 (id=2860):
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x40)
close(r0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r1, &(0x7f00000000c0), 0x18)
connect$can_j1939(r1, &(0x7f0000000280), 0x7a)
sendmmsg(r1, &(0x7f0000000140)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000380)="3886ef14fe2c4fd262b92b", 0xb}], 0x1}}], 0x1, 0x40000)
read$FUSE(r0, &(0x7f000000e440)={0x2020}, 0x123e)

2.386516857s ago: executing program 0 (id=2861):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x100004c, &(0x7f0000000100), 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x0, 0x0, 0x8000c62)
copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xae8, 0x863, 0x0)

1.775813358s ago: executing program 4 (id=2862):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000e280)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x800000, 0x0, {0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x2000, r2, r3, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1}, 0x50)
link(&(0x7f0000000280)='./file0/../file0/file0\x00', &(0x7f0000000400)='./file0/../file0/file0\x00')
syz_fuse_handle_req(r0, &(0x7f000000a280)="1695367704d10dd832678e4e2d01860484a69eaac410e2d6cf3b3d3925f9a3cb602592377170dffdc4de86f163e390e21d07459b0f058cfc248c4bcbe896f3c68006f3c2cbe07c55b87170871c1d364d740faeb750c8c8acb76aca18bc0c018ed341b55b0ef80cefe95b85756aac978a0e0b5ce59cae6657643e7ada0c1336bab310888351664553c2faa6dd39054e19e23cc7c4b4d33546407f880194aa0761f2a9360c4ba26de342328b92db81ae84fc9c1e9eefb4b7ec3f58a6d5d23b907327b14480a37f3c84305729a91c28807f8809b997235bfa2d4b6f45ee9568bb4a416df34f4140c5e272bfc068ea61a48b365490ccb02772a906dad457f5d2dd1a57cc1209e8897c8115049d7e4e3c756a7f5ad0c004ef66c8bf91f600910e73b4aa5f516bab5cd62ad93642960ab32b7fdaeacb1a9587a389a529c231f8a47a65fb6d27ba6a0eeb46660cd75dbf47df89e9f578eafa6992a12d9d7de56d69fd0e30b15caabd13c28d63921597466292f8c4e87f23d53d52e6e8f1c9295af0743c8c671a49273074ba44dbce9e9b1136a93dbc19d2b8e60cda5f50eba2d814822a68a0fd4ff5e6a25dd5346f96b26b5e1563ebb97829a76fd8c2aa467499fdced91b05b193b68316494f11f5ce97ed8e13d474b03c6f6eda4eff54b0ec362fda53003e6e2a3868a5d57e2426aed5adccdac8e162c6cc20361dd4709889b79b2810ba42f531fdd3746562a00da65b4211fb7d8f482a3610748d3b80d2942d8432471f98c6e9036cb57f3913b31dd8baddd6d85b44e8463b838fcfb6979628c5fa3dbd30688e10b9ede257ebc7b96d4092f38d11b9e6a4d10490a9df1387b3743cf51e206c7dbc0741c408bbebaae7f36d81b5ce5b21bb9fe992c8a0cb3a91ea2df21e571ff094b53b17c46fe22c0cead29144d203294eb42c984790a6b6348ed8b7b0317ee5b2353cc54bcfd808bf0f61f73917584e17bd9259c8a04d2ba3b4f931571947c77035975933471fb1203088dce478eb4e411ddb7b88caeb02e1cda741245df701a2b5c29c48a631eaf18549bd90c70222fd6dafe5550726bb58dd0fbf84ffeeae683a0379505f03740a652025add8e0e4e6b5bfb4bd0876dfe1ecb639acc110eba97294a4e4642aefbcad04ba50d830e945fd9900ee7e02488694041f43cbaa86280c1df64e8f1f81f7cd5130914efd19b58262f3bd2c43bd8b4a5beac09f1ba27020521994465e62c329debb50efe0716d22cf0056febc7cb95aa818e10639077e91cac3c80b37d6eebc6907dde971b578383ee04086a0dad18750ceff6b8d6d373afa93a51fee65fe1318c1ac291b784e45d66962c8b54571bc1e92a996c11561d94af6ecdd37948d35adbd1ad63c1c05c31c7f4afd707aa1956d1444fec1137fb6d81f56566887131777e5fe3e2fafe8af8f21ed34480afe74afb25d8d16f8089fcb851ac49dd826b7f273aa3d771856d712c62397d49c72d93e3c2a5e6b9767fcff0fc5b3d70dcd70ff8bad5dfd7f5a84c194f99450601f970104f9be026852ead21824152dd8f6536fcd01a69177a65f2af266e619d61d20de0c738680fbec29e7c594cad29f009d46d87908c951b2e4ad8d9a67db8be6f570fe5416d9e4dd22a108140a1c95369731807325ee7f4201209a795fa1609ce8fa27384677816f651a96cc08400e1b647bdddfb851313e3ccaa472b9a6a1da3a0936e119a6d7808f09de244d739c39df3ed36004b77cb54b6b1396b718c87fba28cb1439c7d1d140dae1ee2c2a7d647427b1e7472710c7ac4f1fb0fc0c9d15ecce28167d23e2e42474dbf1c63c0819606be9c9b6dc2eb59bf9932568ef408c20e9498cf105e84eee30460d4348f4cdfab623b416adadb4427887d9b1b6b8db75b224e8a55fa0351d21093b2b7e42e6685491cbfce100d602d0281f4bd086b50612f3ccf055fab1aad97a52695a233c3d458be4536b66b0acdda5ce0aaab48bb7d7f39a8af473c4478991f1c4569839eab0c1d684001ee1772290871653a2293bb7754c1eac178c60f86e2a98e1992dee198c76365f2d04d159d7c210c6cc58764e3b7dfb5bc15190555febd01c69cab8f55926c28a13fa4f9060dde1ca2df7e1f71fd99a0c350d7f0e341ece8e0685e9c205b486ef400910211b688f07fb05b542261c74b45f4ac23ff53e9e620ab12dad7b5131f67128bb8ed6a4a70caec437f2157f8bcb3d080091e5715dfc7d7539dd0320c90d0aab6a6d7a447ebeea893a0efa2176292c648c62cedd4138c9d0535ab0621855484fc43e0e3e84357db6951bb21fe2f4e99fa188ebecbc23f73ea879bd304408acd1c470fd112606ccfd7b7970e950ebd363afbba359a51877248a42845097094ff785dc82264225752f3aefa980d9ed5309b48f47a5b5ef49f69808b91bde955277b6525f55436ffeba0bfa8c13f6314c57ec97eea295afc66a9f4ec844474c0da6ff1ef0c6c65c035f3bb74a70ffa668359b58a46af97600c428626b45c81a4e372e198894c02e2bee8010fb4c2c075ea623a6ee24a99e225f809322df6ea6f39b1566b1aee5403d45ba648f94f70976013199b3241744458d030a5319360780897413289d89267c389e04f23de79adf4b864c5ca76efc225eb1ecf6424887f0d8b3ac13cbe9df4eb69f7b702e85fb396dc4a030d57a8c4edd227ee568fb11a9859935ad53dcfdb01727f106af352c569a020b7e405a1ad4c6b39e2e8796fe9f16db3794550f5ef3ecd6af2b2ab0383e6c198f17ada5840bde84ccbaa661d9c456d9ddaf92763ba450098cd5a971d847fd5030a4c9b066ab3b0096dfdf7e5ce2f8349165f94c493b7e4192e85239bb11552f910fb41c5e96ee10fc8dce711e88e0572ce0bbbd9c9f3b7c9dae89f1dfa6af309c4321755a5b19070c8731ac590c30fffb69feeb75f699aebb101d3a30f784f1745182cb4f0bf63a148b521f0a03c691927694ee453b278523e3ed256c150098a932f62c90ac65faa4b9782c27a3ef6ca2b5ecae6a01d8a1d7096bf6a7d1b317a9eab22ef4907c631bcca224f723f5fb9a44d7e1295186cf37fd71343919aa167fa70a505a73e9f52a11cfbd40d8c1087d4ffdfe45a40ed5aebfa4b0c3622c78a914d68dd92f46478711437ff88803ab28cd9ce2223aa0fa37eb9d9a4a7866dec4ca6bb66e794ccac6bd19b11daa0b6d4d42cbcf7d6426b5718030ca51bf92b3d8ea0b11c46ec5c0c6e3805c88b39731b2b751d9928ed1ddba7c66bcc5273d709fd295aa0792384435b98c1f44575c028ff2869074156713931f7e62f8b0f8c7ee9dfeaeb2e096e77600586a47d6f6a2e13a17dfceae46ad84858bf8873f9f1e35fc700aef0a648af168ab0774a3441a203ef325577f2c76f5f0e5808acdc7965bc65e8ad1ca816bc3b67711ea42e619c957d0f26b394be1f3b0c4ac9af8558eaebf5c1c27b6549022513479b4c28dbe3f1c3131cc9211eee768f96a9c8b5e0e6425bef921a355faccf0072ba19b16d88b75feb5dc8fcfc1b7b5973eb9654ca3dcfd482831ff5d1fe09fe7ae43cf129c8c17a6686685a13ed076f34608b7ac16eb8e9de6a44418c4e3f8162e6a679bc9482df96a04b14575ebf093b99bf5cc26495f5dd6e571129d9760de3f801b001a1f3248d14f579bc519de2b656641a88da758a2ed3baf15fdf2739ddb44f0e5892de7ea48e9302129d0c939137b9d0687b296577675bcbf433a53f6a9816797cbfef1ba0caa2b8602387b5a8bae24d3e15d42b34d81708738fd269c3e8cbacdc3ff5ab1d4816a783d7be0f0a8086e345a6b4c231ffd61745f6c45cfceaf6089e70542aea1574e3c78740f77a08eb55b37f03549c1dd318cb5a76094210e8cf800c350d328fbf9442d0437e7affd54b3bfc33da3f24558f3ea8e59da8e61ae60e7e7b4de7179b8cf941d51d420c8eee69143966800dc4f7bcb50a033331fcac02a65e88de28ab219c68388a9da9196e044dd1ebbd3994bf8cc862f6f8b419fa1f4f4e5427f10866b498935fa28b8e6f9c5e48be8b74b9c2262823390480f71aff6cf72281f526265877d223eef9ad7a4be7438f9afb6aff0e80c5125c2c612ceb83f0470ea04479979c0a10fbbd0bed7379e949cc19fe36fbcbcc59a9fe30a2662d3e4d22862e8841b587b8995ef8482bc60fe0863b41752ef3dd44a387eff101595822bf1ce440ff9e5f73e560e4f7fbfe4754d9dabbcd92de02017eb43d3cf7c75e45ba04009a582a68ce11eefd52253c721daa5f37c6408e37b48d1f2e36d7c1793300f2c9039e69a52057486b63c0fa644d00528ce48f2e551ca88e356ac25ae74c73492ed3e6233490acfbe7ed8244f23e2af86e0ade6b78bb34a75a86f6cbadbd39762680cb0821d6d28f18d427df13d0e747f6da54be970e43ef8ca8285dc8bf44e3cecdbf2d8757a9800bb889b846d58cc636a2648809451a95736a0ecec6ea3fe61fb24dcd8a00ac0b8933918189cda555b17e431d99ee190d6d0d9f769e665ec193ba8889ae72a01e18b98cebb75d20ed778e5778ef657ce85d40eafa44b46f293d64023b877e8c5d58587c3abecf9a1ad8d874a4cdba0bfbea61b7eb19e81f7c932be12a83bacc51017b42dbe2931dc11c742a5a942cb6ed9bd9922ad78f55b0f6cbae0e8d4235140263ed8c83ab22e71a0f0a62b6920b5d5109e415254e527546546bd025cf1583e3e8d9d5bf735a4651fa2e5c3c86a185bb77e9b75224cdda8cb0eb21d9e3bb19e286832aa5dce19f055539a0a5caccfd752742a31d0af882c4f02c29cbd90ac2cdf5cc61c448cd09eb7b82b930ca99962c0e5ed84124fe37f7d30aad0296ee340377a7e0aa7413c495ac8ab0b482c4c5f59872efd5a1ceadbc7606e67d3c79a77d095bd82519db0893b9d2bbc2b2f3a7391826840e49424703c006399cde5f2a52a9383e89dfbfca284be4d75dd3aafd8a43dc6c71bd7fde9460647eb5c97707e96ddb9124d6020da38ee7ad743db8fd0377a8711905194c496e39a2132d7bbf35b79f920b6dcaa73625bf8b5320da250513cd45bf42c8072809ad59d69c02f0554cf82b79ff291e42d9227de1948352b0dba0281b69876ae0ca24972a5e75aee7e0a46bd4fc83f5a0dd3f22d666f2d950ca580c6da6dfaaa293beded10d1328613611b6e01d5d8567541e81466467302d8050a3ae4791fbddc1aec749edb68173be5341166c1d5c42d63e7368473e48bafa43459de3fa3a5550a4ac979711dd9a2d6796b0bcf9b5881124ade4b12bf64fa55724976a0da9d642e76a036c430fdfb2c06d599b0f78e978580f8eb763d2846177ff18b9b5cf8c76197ed809ef24212bc5563a1713214ce78e0e6cced6e41578d46a07839795c83c189610244bc1b680535fce39f290da90d719078015d90020b1d4567a97081b48514709df8e327d814e8c15496d90efacae6b13e297ed520d280203896bbc3a23f3b638adf594de03a782bb292a93ef0b14b8b3e13c01787a0b7bfb3abd8ab15eebbc651b7b054d3e56ebb7808de9b9bd067560ec6a6432455b37054292a3d9d32434506bf84b2907560017089de3f60c2deb4dfb7371f96d65a575d446aa1d2df81867135120df4e24e9227f72ff9f8f015a7754948704ecd084a1a93fbeb5a44af086ef73e9fc1c072b7d5473e92558fc2824acf27f1dbe9b019247d3074bf4256a966ceb674a2c4222632c8e4b6c0736de019ccfe4cca40b9b07f8c4df9753cdfb4ad66643ed71510983e29c2b5f9ae7db4913cb74d9dd0461a900810650d0da73f766aa6882385f3bb40644bf43f01faf2aa4cd187659edb0498527f201442b64349afa814b3dae5ce815971f3b11d177e3e1aaf90c7674c097d475640218ad27e63f9071c9081c06d9b5d1f3a070da3eed4f4080190a74063e7f97b5f35706dd1173dcbfa13a70d5362e50d57d0c5105c8d3beb926d93f61699e737ebe1a935839c3aa5b629dc93aa209d9e7774c40de7f59fca1eb274a8280022a15934e5dd2579a8cf5cd16a3b0a1ff3ea712c4258164fe2fa17a4cbfa5630f4041bad4204605eb2e762d610fa17dafa415ed8a678da1d4b5a6618d71d0066d66e3ac10b3ce65137a5a02344abc57f1be4ce0cbf1a2ac66dcb5e94495e863819c627e4704fb479c232b27aa4a5dfca8896a7eb8e0592b6b392ec9fa2767f569d5c1356d7ef7a909d8ee344ba017c75ca664d98f5288230b7f1ffa2fa7a5d07fab5f4b53b7f19c3fb361795fd632fa8a654004d931b4b7fc0890927aec727160cded3c01b7e40e6b81ce015796895f9c007762a1c22acfb9513eccd93c845e91ea8b0960b299b3ce788cbcce5bea9a94325289d2c3573975c512d56e19c4655f849b3652f8b5f9fa6f49e03202f2031debe3c299c3ceceb1febf4b285da9033493088a36f885ed6d3958b8d05cc6be00f3465de8bf6e41796d17e393067585b459b143d592cea102f584e48676a45f896cf662bd6b3b2309aa7f46d2b8ec6597a063f12bcc88922050c8c1e070134ce77ab1cb7a7f29983a0b30d9b2abeca5cfbfc55e941376c616c2834b1c1c9a9473b531c86c3b708478ee95923fe6a8108c2c4dc8a78a9d5e995f6c815b292b986cab0afa233ef10567a49d4e8dc17f438b90b620df4d291b52549ac8e1b69078b62011ed4bb0e288db740817ff07d01e779e11cb8e0606b5ca3aac6c7b262499f5a115acdad8a67b6eb77503318ef3bf0008347b270aa986d9e79e2af174f38a4743250c1091e6053a7a785464483161aad3ef3ad976e5329b71afe9bbfd93d7541a1014db4cc159ac266021e841c665217fa150e130f921ebd4cfb5accdb87f5f9bc0fd94b402289db4d0ac3f0906a689aef044c09fc2c5a00f7795ea935aeb943eb32826bd2176c1d1cb058195e3229d293595ebc07514c6b038a1d964199c59e59d4fc621c54b7bbd3410ccec22f7fb6751527c2aa0940ed2f0c9dcfc4e99ced91d09ba4a37042b5f48b127439cad24df2951ff1e769d3892dc4788dbbe27cce60f7f0138789444712e84e059ac0a4e87557f6c3369fc61b9a843c816df3cb4ec77a11e16390234da24dc0420f6a44554fc7954cc74d63ec030d4d964898e14500d0dacdbb2959f7a8a191773f66448348f36c3f4904187088bcfeafda7dd721236810d04469e93ca4e7926305c25b1ef1380d775008fd238e33e8dd2dc5a9783f97414487a7ef70eba3dcf71331803fad223f65aadfc87d79512bf311c14926d619a089f5e84c46f4a9ff393969f8eacc8fa20acaa9eb01a8aab625853e415d3871e555a11ee71ee93cba85ee9cde60b3962e294c2c840f0a1ba87714bac54f1ca0ebda74daa3e8e19d382b951d64a22da48c632ec5754f42129214a807427e69a93c128b6b0a8697c9ee375818dd79244a38287fe8f66c7cc3aa18aee2fbf804fc1aadcc7d2daf75be82a60276b6902a51f2bbb64c261915b80053fb9635f405f1fa855d1ec8adc0ebe9648b8151eda70ec5ad5f704fa2a337bcfb7ecbc845a11cae7a68d6bc58f107ac7bb0c2f6b83edc48703ba00c94036b9af4ada51d6d78bfe697df06f47573c14cd7191ec52dc0f208ecdcf54669529bba2c2fb7a6b38f6f2b5ec5fe876f03c096ae092b6f881a84b00edd1e9f67449069d876afaa99eb1a446f20656b5104c72ed28bd8553c724785f4e8bfdc33194409960de4969b708ce26e4cd608d21ace0c38e27d54b55369a9e807cfda9a6240466dd94f6150d4b0105f7b9ae392009b2cf146d1dad5d7c8664463d7d60d11b45f30d01db7364e21ac557d37a4c9ad88926c472e98710d2cbfc4b70d6a5dbb128d46909e634761c6f6952bf9021aa5282c391dcee3278a25e3e2ee31a7f6713979a546084fb2e598214c36a3b7618bf23c57bb23b33e9c98dfe5192ef257dc2d891a6f7c11be334fbdab015eedafe1c4aea95ff1fa6d340d0cade542f3f782c1589470fa64c6fd9ac0c31536ecee0ae312f992733beea6fcaf7562dd6e0f2c016f712ce14d93f02a54f577c75b444fd7f46e9bd2cd9cd1f89195781d88f984eca45c97355095d3b48b0d9bd730c7d6f63b1dc78d2344bdb0f18c4e1554822345c11efa2ba32bcef4f29ed05315cf44617a80d7d1392de077bbda08669c8c3cb6c0b12f872f1247bc1d07634bf5bf4acc3a4ecdae7e6acd7c4af9820147afe55500a7270d7eb511f907339e5af54cfaf33e2364f54091ebee2a245ba048452d383cd441604c4dd1c6376e4df8b83ebf6070d2be248174fc1dc0a1352c103325360aeb3ab71cb73bb646ac6247dd68155fd48b90250c3b0f250a74f827780367e117a94094e5005e2f926accaef0b3e36c25e315c1e80cd4c3481f3465d99025c7de91c45bb8dd0a5577174c1f366017d87d2033239a8b6f399a9095845b5fafe9cca113b93f455bb790709b6c93fcbbd0c4bd7b5d621088dca06802e241836291226ad56d40b3b4e90eb68bd5845742baf4cb4a69b4bdb07f02d0bd6fbb5a5fad3af030816b254725e6db4073b7a0536b884c8985c3a159cdb105c73f7e0e03546248336449eff6afeb96cf8ad3617df18ee2247bc2d11ebbe10e0379f5578c41611872c5461541fb4da5be3f3348e0592982a61c352315370a9b452306c9f31f9040ef755ad096a8733dd9daf6bdbcb7a3521ad2282ae4fa7bfdb9cda5997ba3a6652af46c6d0205bb356dfb411e2b931b357723bb70254211819b74a461ed5c126cec6573cda4f6107fc3ebc76483621e9ab5789a5575ea3a91463f76138ea0f3ec9c44e1cddb2de59bef83333d235e922b920e267453676575b38e6415bd136534b8df2360ab489fb69eefd04b66758ab5dd105be7b0635f7194f9e4b158b22b21ac97fda4e804747a9718b40a32531cd5c3fd1d3c1dd8ba5ef9c86d3c8df8c71f81da1a9756e5db4dddf70755053f7129d656a8069fe83c39ab240cf7a73f0f880ec7a791c5115ab262184839b906c238eaabf2268dfcd6560c5bcb70fea00b580ad52e7de0333e6de63ae351952e6e5dee6edf284de0a2f53e2089db13bd5eca5f98883a24eb2e1a58ae199f8db9c60a5b6b85585b2d2a17d6b5406e5668685d95c4718c375db05f7953b363c25d2ed0906eda70eb659845acd31fec9b8e4d5951d12fd50bbb969dd824a78c72622c8311a980f0f2e6a1ddc368879a1f3a07d3c0780e85a4e5d13223a3424782e3f77bf6a1ebf823f468d41b777ff61345064f1096ed653c277bab90ca5afc8ad6d25f4447236cdd82950afff27763f3fef5308f034379f4ad4955cb8cc5280d51b5427de4eba374f64dde2f1e7a6ae628aa4696160a5cf0ae9fc70e307b4eb19c0a5af2c2855710c8e117211d73a7e7f3f7f2ba55d03a4b73d816c9c3fc1edb86ec95ddcd77884a913805ad6549e7a5f776a1c2385dd6d83877727f128207cda29f83462269a7f606fa31934d06a6e0efd238d0a180c754a9d2e85609fd20c880ea0e79cbe887c442f9f682801da783529e1e45eb3e70195fa2711fa291dca43ee0672b7afc14cf87b9506a7ebe223019c856777e1783f6ae1b0ed90486b32e3b6f7ff77be834c7b6676da6c8052fa49450e3e16a6f90ee33742bbfe3dc025832e0bbc7abeb625077b8c1ea07dee89c7dc26fa42514ff9ac21e848e32309bc2862a873fb57796e05923fce42fa2833c73866e22a04497ec13acebcdff6ae1df71dd8756f1febac04f2034c1f3e1d401ddbdb7f2ef676d5c85437830d527a5fb04c9bbf0d892ee1306d2d2df37008916a3a66e70f865cd6d25de16fdb4bb4f2616204cf86a3ffdbf147223968c092a46dc2aae4aedb32fb850b85d4adb87bfada328bce4c2c70ec42affde442179fcc1d3d9f5e4a848c8ba03b0df3065d1b2d5f1b08d8c25148c51bb54e191a87ea59903084000b4b520fffda111fe831d4bdcf62423c1fcd673b020c5f2c41973dd1b9698054368081f917715e1c1592bc78dd265e051bcda5bf5877821fedfcf7790a58b328cf780f71ee71491e59194504bc800d319251607e53ba0e1ed15cd4fd5c959eaff4d3a1c7cb28c479f2776256633ef7c0f0e98688b54e8c8634cf57e27e5c1ee1e43573ae23bfbb1ff1bef6cabd33c02ff165c44f0f190426ba8391ba4f03458be3351869c5c5c9d5fa5600edbcce523525b9cd9c3bb040e34771ea277d05cb76302c72fac5edc815412dbbbc651371d70d044c4f89a68da7abd836fb3a495e212b5fd13819c41c9a240405582ae69b7c35b30935af3085d457a4d76a94c9272c5eafcecc4c92dd4f314b04b4739864e626a5bab27fa2f345f052afe3bae2ff4c442c42a1c83091bfcc23a3b5e06a511d02cefcd618a6d9761de00af192cf1aacc902cf3ba98f898c48fbc74b6710db7ac890b4f7ed7377e0fa3b4c46a131e775130a80db5014a79e674c8fc8b45495066e88201d2e320320fa4561abab617d0e67e9e879b0080a8ab404f4eb007a088990aa6a7b29afce5b8dd038ce96d43e1271315f6070e761e759c44fba1ce78730e35ca31e0bf5840cc01289c81613a07c497f288ed70a6d10d9f58fe135558b2a862bd877fcc939d7536e7dc988409290cd73da04a3b1399b0a2637f737d5f86bba4a31019546e2000a3ca57f8291cd9af28299eb93909061200c9738cca998add04e7bb0137ecc460fc3ef72872e7d13c159914fcdf577910e6c5d7a1636b13b78c5088551c614e3c75befb0f37fb89b918f4aad0126a9efd3390d6a0cab97ed0e01c7eae0e798a4142345578beb10d6b61a90b4d1fe836022def90bb8e37e07428a4592e7bf30e935951e492234a8db96f081379e7c4e18c3b6ce4ed1f97698dc1da940f14217e877bb8e0f33b392d801a01c48ec62ce2774d2e4e55e9415c063e1bfa31a8f0633443ec19c5fab977c1485147e46c06f86742278fd071de4a165dff7eddd5390a1e031d80e3d44477f6009c9fc27a7d92b865a292b0d586083f681c2d92da7e7f42eabd076fa7d61eba0c2b406c75f1cec561b1a523dd4c6f344b02ed59bd473d7d30a24144e981fc8da434931adeb841d63bb705485f8f58a180da91af64bad1379356787b37467dc9b4a0d12496e5048e7ccb40a978eebee5eaac4e9dd96faf194aa93a22333d7f68cccde147dce26c9ff18d7c8ffe0d1377c70dd1057d54473b2c2b2b3eea82fb223952c0dc3796efd0cd94afea38341ab9a83c6a9ee77f26bf8dea8510dfc964f9b9b4942c08ade50e43f06e5101f2e6b68b6a7f9cc5443c862b1198627461938daf4bd1fc7b21d6d7fd3f775f0e4a1f60434a242b049f159dbe5de145e741c5c9b4e59a7f5d7de54a6d51cd87845dde819ca74e3abf60356fbcf18bfff3b6ae1c545e243c08f9f41b86e55ed6e71be453843e0bffc5b6bdcfeefd33075ee5110627d4f05e008e54ddd62fb6979d9c2a5e4a2cb45fad7b2d77bd17508952889b30df2124cdc2fe6a749a12c9f6dbbd01226cc4ba2693b7e6a858d3c36ac6519ee70e896588a6df81b0e3be3604bbbe1a845088cf1834a04368dde8b6ee76d0492911dc09b05cf6642e0003cd8faafd398872c1a8dc3e85d3658ec8", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})

289.290718ms ago: executing program 2 (id=2863):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
fallocate(0xffffffffffffffff, 0x8, 0x4000, 0x4000)

282.344722ms ago: executing program 4 (id=2864):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0x40010)

0s ago: executing program 0 (id=2865):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001280)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23)

kernel console output (not intermixed with test programs):

 from 0 to 4096
[  628.598987][T11088] veth1_vlan: entered promiscuous mode
[  628.651808][ T6497] udevd[6497]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  628.661813][ T7164] udevd[7164]: inotify_add_watch(7, /dev/loop7p7, 10) failed: No such file or directory
[  628.704689][ T7162] udevd[7162]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  628.735340][T11315] UDF-fs: warning (device loop9): udf_load_vrs: No anchor found
[  628.743260][T11315] UDF-fs: Scanning with blocksize 512 failed
[  628.791123][T11315] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  628.967498][T11088] veth0_macvtap: entered promiscuous mode
[  629.070672][T11088] veth1_macvtap: entered promiscuous mode
[  629.114030][ T6497] udevd[6497]: inotify_add_watch(7, /dev/loop7p3, 10) failed: No such file or directory
[  629.128711][ T7162] udevd[7162]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  629.378437][T11088] batman_adv: batadv0: Interface activated: batadv_slave_0
[  629.465634][T11088] batman_adv: batadv0: Interface activated: batadv_slave_1
[  629.544522][ T7162] udevd[7162]: inotify_add_watch(7, /dev/loop7p7, 10) failed: No such file or directory
[  629.580000][T11088] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  629.590589][T11088] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  629.599734][T11088] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  629.608793][T11088] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  629.894244][T11340] loop9: detected capacity change from 0 to 2048
[  629.970835][ T7162]  loop9: p1 < > p3
[  629.998146][ T7162] loop9: p3 size 134217728 extends beyond EOD, truncated
[  630.045250][T11345] netlink: 'syz.8.1620': attribute type 5 has an invalid length.
[  630.053344][T11345] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1620'.
[  630.116983][T11340]  loop9: p1 < > p3
[  630.126978][T11340] loop9: p3 size 134217728 extends beyond EOD, truncated
[  630.195409][   T42] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  630.399735][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 131, changing to 11
[  630.411976][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 33569, setting to 1024
[  630.424135][   T42] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  630.437534][   T42] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  630.447002][   T42] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  630.547615][T11351] netlink: 'syz.7.1621': attribute type 58 has an invalid length.
[  630.737447][   T42] usb 10-1: config 0 descriptor??
[  631.189259][   T42] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  631.294256][   T42] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  631.407558][ T5831] usb 10-1: USB disconnect, device number 10
[  632.559240][T11369] fido_id[11369]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  632.639399][T11384] loop9: detected capacity change from 0 to 128
[  632.811569][T11384] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  632.883708][T11384] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  633.136545][ T6170] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  633.445608][T11400] netlink: 'syz.9.1631': attribute type 5 has an invalid length.
[  633.453538][T11400] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1631'.
[  633.526225][T11405] netlink: 'syz.8.1632': attribute type 58 has an invalid length.
[  634.083437][T11417] loop1: detected capacity change from 0 to 256
[  634.233509][T11417] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  634.551848][T11420] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1638'.
[  634.554415][T11422] loop9: detected capacity change from 0 to 512
[  634.783284][T11422] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  634.796602][T11422] ext4 filesystem being mounted at /328/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  634.991953][T11422] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 12: comm syz.9.1639: path /328/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  635.012940][    C1] vkms_vblank_simulate: vblank timer overrun
[  635.090477][T11422] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 13: comm syz.9.1639: path /328/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  635.243840][T11432] loop1: detected capacity change from 0 to 2048
[  635.277284][T11422] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 14: comm syz.9.1639: path /328/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  635.297117][T11432] udf: Bad value for 'dmode'
[  635.367322][T11422] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 15: comm syz.9.1639: path /328/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  635.495891][T11422] EXT4-fs error (device loop9): ext4_readdir:264: inode #2: block 16: comm syz.9.1639: path /328/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  635.788659][ T6170] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.017469][ T3658] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  636.025635][ T3658] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  636.093905][T11445] netlink: 'syz.7.1645': attribute type 58 has an invalid length.
[  636.180922][T11447] netlink: 'syz.1.1646': attribute type 5 has an invalid length.
[  636.188971][T11447] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1646'.
[  636.190984][ T4108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  636.209980][ T4108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  637.191922][T11473] loop9: detected capacity change from 0 to 128
[  637.243301][T11473] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  637.284990][T11476] loop8: detected capacity change from 0 to 256
[  637.293085][T11473] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  637.368614][T11476] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xcab3d314, utbl_chksum : 0xe619d30d)
[  637.847304][ T5831] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  638.137275][ T5831] usb 3-1: config 0 has an invalid interface number: 255 but max is 0
[  638.146292][ T5831] usb 3-1: config 0 has no interface number 0
[  638.156953][ T5831] usb 3-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  638.169684][ T5831] usb 3-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  638.183499][ T5831] usb 3-1: config 0 interface 255 has no altsetting 0
[  638.190533][ T5831] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  638.199817][ T5831] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  638.613486][T11480] netlink: 'syz.7.1657': attribute type 58 has an invalid length.
[  638.938203][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  638.944777][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  639.386509][ T5831] usb 3-1: config 0 descriptor??
[  639.486935][ T5831] ums-realtek 3-1:0.255: USB Mass Storage device detected
[  639.728045][ T3658] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  639.739845][ T5831] usb 3-1: USB disconnect, device number 2
[  639.818856][T11492] netlink: 'syz.7.1660': attribute type 5 has an invalid length.
[  639.826887][T11492] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1660'.
[  640.415738][T11501] loop7: detected capacity change from 0 to 512
[  640.638505][T11501] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  640.651946][T11501] ext4 filesystem being mounted at /320/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  640.742040][T11501] EXT4-fs error (device loop7): ext4_lookup:1787: inode #12: comm syz.7.1664: iget: bad i_size value: 2533274857506816
[  640.805976][T11501] EXT4-fs error (device loop7): ext4_lookup:1787: inode #12: comm syz.7.1664: iget: bad i_size value: 2533274857506816
[  640.980518][ T6161] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.266649][T11520] netlink: 'syz.2.1670': attribute type 58 has an invalid length.
[  641.920841][T11530] netlink: 'syz.9.1674': attribute type 5 has an invalid length.
[  641.929039][T11530] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1674'.
[  643.578537][T11552] loop9: detected capacity change from 0 to 128
[  643.885730][T11552] FAT-fs (loop9): Directory bread(block 32) failed
[  643.892540][T11552] FAT-fs (loop9): Directory bread(block 33) failed
[  643.899694][T11552] FAT-fs (loop9): Directory bread(block 34) failed
[  643.906546][T11552] FAT-fs (loop9): Directory bread(block 35) failed
[  643.913325][T11552] FAT-fs (loop9): Directory bread(block 36) failed
[  643.920230][T11552] FAT-fs (loop9): Directory bread(block 37) failed
[  643.929569][T11552] FAT-fs (loop9): Directory bread(block 38) failed
[  643.936793][T11552] FAT-fs (loop9): Directory bread(block 39) failed
[  643.943578][T11552] FAT-fs (loop9): Directory bread(block 40) failed
[  643.950404][T11552] FAT-fs (loop9): Directory bread(block 41) failed
[  644.090919][ T5854] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  644.265573][ T5854] usb 9-1: Using ep0 maxpacket: 8
[  644.302752][ T5854] usb 9-1: config 179 has an invalid interface number: 65 but max is 0
[  644.311457][ T5854] usb 9-1: config 179 has no interface number 0
[  644.318154][ T5854] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  644.329543][ T5854] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  644.341041][ T5854] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  644.352617][ T5854] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  644.365981][ T5854] usb 9-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  644.379504][ T5854] usb 9-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  644.388802][ T5854] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.873378][T11559] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  645.745291][ T5854] usb 9-1: USB disconnect, device number 4
[  645.751347][    C0] xpad 9-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  645.751503][    C0] xpad 9-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  646.059125][T11578] loop1: detected capacity change from 0 to 2048
[  646.153168][T11578] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  646.225523][T11578] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.356798][T11602] loop8: detected capacity change from 0 to 256
[  648.272397][T11620] loop8: detected capacity change from 0 to 512
[  648.365567][T11620] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  648.497712][T11620] EXT4-fs (loop8): 1 truncate cleaned up
[  648.505235][T11620] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  648.637456][T11625] loop1: detected capacity change from 0 to 512
[  648.667161][T11620] EXT4-fs (loop8): shut down requested (0)
[  648.677931][T11625] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  648.734816][T11625] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.1706: iget: bad i_size value: 360287970189639680
[  648.867219][T11625] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1706: couldn't read orphan inode 15 (err -117)
[  648.914275][ T6164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.929500][T11625] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  649.113386][T11625] EXT4-fs (loop1): shut down requested (2)
[  649.436287][ T5854] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  649.478281][T10182] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  649.671215][ T5854] usb 9-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  649.682753][ T5854] usb 9-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[  649.693941][ T5854] usb 9-1: config 0 interface 0 has no altsetting 0
[  649.702065][ T5854] usb 9-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[  649.711432][ T5854] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  649.962223][ T5854] usb 9-1: config 0 descriptor??
[  650.459539][ T5854] input: HID 054c:03d5 as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:054C:03D5.0005/input/input14
[  650.656959][ T5854] sony 0003:054C:03D5.0005: input,hidraw0: USB HID v0.00 Joystick [HID 054c:03d5] on usb-dummy_hcd.8-1/input0
[  650.721779][ T5854] usb 9-1: USB disconnect, device number 5
[  651.264342][T11677] loop1: detected capacity change from 0 to 512
[  651.351480][T11677] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  651.433604][T11671] fido_id[11671]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  651.592737][T11677] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  651.601387][T11677] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  651.642617][T11683] loop7: detected capacity change from 0 to 256
[  651.717964][T11677] System zones: 0-1, 15-15, 18-18, 34-34
[  651.724588][T11677] EXT4-fs (loop1): orphan cleanup on readonly fs
[  651.731528][T11677] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[  651.741142][T11677] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  651.756242][T11677] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  651.788824][T11685] warning: `syz.9.1726' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  651.791443][T11683] exFAT-fs (loop7): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  651.824415][T11687] loop8: detected capacity change from 0 to 512
[  651.987236][T11677] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1722: bg 0: block 40: padding at end of block bitmap is not set
[  652.047212][T11690] loop2: detected capacity change from 0 to 2048
[  652.098034][T11677] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  652.150317][T11677] EXT4-fs (loop1): 1 truncate cleaned up
[  652.153786][T11687] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  652.158045][T11677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  652.169085][T11687] ext4 filesystem being mounted at /381/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  652.266849][T11690] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  652.707171][   T30] audit: type=1326 audit(1750861438.648:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11698 comm="syz.9.1727" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc6d318e929 code=0x0
[  652.803544][ T6164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  652.902867][T10182] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.227530][T11713] loop7: detected capacity change from 0 to 256
[  653.477093][T11713] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  653.490303][T11713] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  653.932035][ T5852] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  654.171169][ T5852] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  654.181584][ T5852] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 2
[  654.191083][ T5852] usb 9-1: config 1 has no interface number 0
[  654.197708][ T5852] usb 9-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  654.395225][ T5852] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  654.404507][ T5852] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.412843][ T5852] usb 9-1: Product: syz
[  654.417289][ T5852] usb 9-1: Manufacturer: syz
[  654.422044][ T5852] usb 9-1: SerialNumber: syz
[  654.547875][ T5852] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found
[  654.555092][ T5852] cdc_ncm 9-1:1.1: bind() failure
[  654.771633][ T5854] usb 9-1: USB disconnect, device number 6
[  655.194001][T11750] fuse: Bad value for 'fd'
[  655.581404][T11755] loop7: detected capacity change from 0 to 512
[  655.633273][T11755] EXT4-fs (loop7): blocks per group (255) and clusters per group (8192) inconsistent
[  655.729923][T11760] loop8: detected capacity change from 0 to 256
[  655.748323][T11761] loop2: detected capacity change from 0 to 256
[  655.787263][T11760] vfat: Bad value for 'shortname'
[  655.957315][T11761] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  655.976487][T11761] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  656.135322][ T5854] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  656.346673][ T5854] usb 9-1: Using ep0 maxpacket: 16
[  656.388693][ T5854] usb 9-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 116, changing to 10
[  656.400586][ T5854] usb 9-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid maxpacket 24896, setting to 1024
[  656.412260][ T5854] usb 9-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  656.425563][ T5854] usb 9-1: config 0 interface 0 has no altsetting 0
[  656.432387][ T5854] usb 9-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  656.441786][ T5854] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  656.749323][ T5854] usb 9-1: config 0 descriptor??
[  656.945677][T11777] loop1: detected capacity change from 0 to 2048
[  657.073834][T11777] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  657.168612][ T5854] hid (null): unknown global tag 0xe
[  657.174332][ T5854] hid (null): unknown global tag 0xe
[  657.183397][ T5854] hid (null): unknown global tag 0xd
[  657.188991][ T5854] hid (null): unknown global tag 0xe
[  657.195505][ T5854] hid (null): unknown global tag 0xd
[  657.202585][ T5854] hid (null): unknown global tag 0x8b
[  657.518953][ T5854] usb 9-1: USB disconnect, device number 7
[  657.989393][T11795] fuse: Bad value for 'fd'
[  659.481741][T11817] Bluetooth: MGMT ver 1.23
[  661.208172][T11821] ip6t_rpfilter: unknown options
[  662.867821][ T5795] Bluetooth: hci8: unexpected event for opcode 0x0407
[  662.933362][T11827] loop2: detected capacity change from 0 to 256
[  663.560697][T11834] loop8: detected capacity change from 0 to 160
[  663.572977][T11827] FAT-fs (loop2): Directory bread(block 64) failed
[  663.579969][T11827] FAT-fs (loop2): Directory bread(block 65) failed
[  663.587091][T11827] FAT-fs (loop2): Directory bread(block 66) failed
[  663.593754][T11827] FAT-fs (loop2): Directory bread(block 67) failed
[  663.600665][T11827] FAT-fs (loop2): Directory bread(block 68) failed
[  663.607429][T11827] FAT-fs (loop2): Directory bread(block 69) failed
[  663.614177][T11827] FAT-fs (loop2): Directory bread(block 70) failed
[  663.620967][T11827] FAT-fs (loop2): Directory bread(block 71) failed
[  663.627815][T11827] FAT-fs (loop2): Directory bread(block 72) failed
[  663.634518][T11827] FAT-fs (loop2): Directory bread(block 73) failed
[  663.696263][T11837] fuse: Bad value for 'fd'
[  664.426501][T11847] loop8: detected capacity change from 0 to 256
[  664.503781][T11847] exfat: Bad value for 'uid'
[  664.508652][T11847] exfat: Bad value for 'uid'
[  665.669183][T11860] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  666.437234][   T30] audit: type=1326 audit(1750861452.408:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  666.460099][   T30] audit: type=1326 audit(1750861452.408:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  666.483123][   T30] audit: type=1326 audit(1750861452.438:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  666.505987][   T30] audit: type=1326 audit(1750861452.438:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  666.529465][   T30] audit: type=1326 audit(1750861452.438:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  666.552504][   T30] audit: type=1326 audit(1750861452.438:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  666.575389][   T30] audit: type=1326 audit(1750861452.438:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f665cf2ab19 code=0x7ffc0000
[  666.598015][   T30] audit: type=1326 audit(1750861452.438:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f665cf2ab19 code=0x7ffc0000
[  666.621212][   T30] audit: type=1326 audit(1750861452.438:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f665cf2ab19 code=0x7ffc0000
[  666.644079][   T30] audit: type=1326 audit(1750861452.438:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11870 comm="syz.8.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f665cf2ab19 code=0x7ffc0000
[  673.857725][T11888] netlink: 'syz.2.1786': attribute type 12 has an invalid length.
[  675.291681][T11909] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  675.416967][T11912] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1794'.
[  676.205311][T11921] loop1: detected capacity change from 0 to 256
[  676.381004][T11924] loop9: detected capacity change from 0 to 128
[  676.420146][T11924] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  676.450083][T11921] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  676.470937][T11924] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  677.067178][T11937] loop2: detected capacity change from 0 to 256
[  677.138273][T11937] vfat: Bad value for 'fmask'
[  677.600229][T11943] netlink: 420 bytes leftover after parsing attributes in process `syz.8.1802'.
[  678.337609][T11947] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1807'.
[  680.585578][ T5852] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  681.265114][ T5852] usb 3-1: Using ep0 maxpacket: 16
[  681.297370][ T5852] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  681.306546][ T5852] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  681.317048][ T5852] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  681.425483][ T5852] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  681.434760][ T5852] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  681.443275][ T5852] usb 3-1: Product: syz
[  681.447753][ T5852] usb 3-1: Manufacturer: syz
[  681.452508][ T5852] usb 3-1: SerialNumber: syz
[  681.453965][T11986] fuse: Bad value for 'fd'
[  681.691300][T11989] loop7: detected capacity change from 0 to 256
[  681.899522][T11989] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  681.913182][T11989] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  681.980701][ T5852] usb 3-1: 0:2 : does not exist
[  682.138724][T11993] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1821'.
[  682.730879][   T30] kauditd_printk_skb: 65 callbacks suppressed
[  682.731000][   T30] audit: type=1326 audit(1750861468.648:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12001 comm="syz.8.1824" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f665cf8e929 code=0x0
[  682.878116][ T5852] usb 3-1: 1:0: failed to get current value for ch 0 (-22)
[  683.155551][ T5852] usb 3-1: USB disconnect, device number 3
[  685.552520][T12018] loop9: detected capacity change from 0 to 1024
[  685.688101][T12018] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  686.419905][T12018] loop9: detected capacity change from 0 to 512
[  686.539456][T12018] EXT4-fs: Ignoring removed i_version option
[  686.667711][T12018] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  686.904784][T12018] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  686.918759][T12018] ext4 filesystem being mounted at /369/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  687.066558][ T6400] udevd[6400]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  687.164232][T12018] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #2: comm syz.9.1828: corrupted inode contents
[  687.179356][T12018] EXT4-fs (loop9): Remounting filesystem read-only
[  687.246599][T12019] loop1: detected capacity change from 0 to 8192
[  687.260843][T12031] fuse: Bad value for 'fd'
[  687.992029][   T30] audit: type=1800 audit(1750861473.948:333): pid=12019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1830" name="bus" dev="loop1" ino=1048735 res=0 errno=0
[  688.064013][ T6170] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.095138][   T57] Quota error (device loop9): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  688.598819][T12027] loop7: detected capacity change from 0 to 8192
[  688.694377][T12041] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1836'.
[  688.807634][T12049] loop1: detected capacity change from 0 to 256
[  688.976396][T12049] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  688.989911][T12049] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  689.510169][T12058] loop8: detected capacity change from 0 to 256
[  689.660216][   T30] audit: type=1326 audit(1750861475.598:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6d318e929 code=0x7ffc0000
[  689.766346][T12058] exFAT-fs (loop8): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  689.825250][   T30] audit: type=1326 audit(1750861475.678:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6d318e929 code=0x7ffc0000
[  689.848097][   T30] audit: type=1326 audit(1750861475.688:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc6d312ab19 code=0x7ffc0000
[  689.870455][    C0] vkms_vblank_simulate: vblank timer overrun
[  689.877732][   T30] audit: type=1326 audit(1750861475.688:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc6d312ab19 code=0x7ffc0000
[  689.900516][   T30] audit: type=1326 audit(1750861475.688:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc6d312ab19 code=0x7ffc0000
[  689.923135][   T30] audit: type=1326 audit(1750861475.688:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc6d312ab19 code=0x7ffc0000
[  689.945749][   T30] audit: type=1326 audit(1750861475.718:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc6d312ab19 code=0x7ffc0000
[  689.968109][    C0] vkms_vblank_simulate: vblank timer overrun
[  689.975687][   T30] audit: type=1326 audit(1750861475.718:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12056 comm="syz.9.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc6d312ab19 code=0x7ffc0000
[  690.464821][T12070] netlink: 'syz.9.1846': attribute type 5 has an invalid length.
[  690.521349][T12069] loop2: detected capacity change from 0 to 1024
[  690.639937][T12069] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  690.846428][T12069] loop2: detected capacity change from 0 to 512
[  690.855158][T12069] EXT4-fs: Ignoring removed i_version option
[  691.150547][T12080] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1849'.
[  692.121504][T12069] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  692.371406][T12069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  692.385310][T12069] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  692.639940][T12069] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1845: corrupted inode contents
[  692.690867][T12098] loop1: detected capacity change from 0 to 256
[  692.765511][ T5852] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  692.786343][T12069] EXT4-fs (loop2): Remounting filesystem read-only
[  693.076194][ T5852] usb 10-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid maxpacket 50660, setting to 1024
[  693.086127][T12098] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  693.087941][ T5852] usb 10-1: config 0 interface 0 has no altsetting 0
[  693.100612][T12098] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  693.106815][ T5852] usb 10-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  693.106916][ T5852] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  693.258014][T11088] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  693.284122][   T58] __quota_error: 14 callbacks suppressed
[  693.284182][   T58] Quota error (device loop2): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  693.305431][ T5852] usb 10-1: config 0 descriptor??
[  693.312773][T12096] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  693.714505][T12112] capability: warning: `syz.8.1855' uses 32-bit capabilities (legacy support in use)
[  693.912165][ T5852] nintendo 0003:057E:200E.0007: hidraw0: USB HID v81.04 Device [HID 057e:200e] on usb-dummy_hcd.9-1/input0
[  694.054674][ T5852] nintendo 0003:057E:200E.0007: Failed charging grip handshake
[  694.070764][ T5852] nintendo 0003:057E:200E.0007: Failed to initialize controller; ret=-110
[  694.167286][ T5852] nintendo 0003:057E:200E.0007: probe - fail = -110
[  694.174616][ T5852] nintendo 0003:057E:200E.0007: probe with driver nintendo failed with error -110
[  694.179897][T12120] loop7: detected capacity change from 0 to 128
[  694.260955][T12120] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  694.276593][ T5852] usb 10-1: USB disconnect, device number 11
[  694.803130][T12120] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  694.837293][T12119] fido_id[12119]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  696.678741][T12135] loop9: detected capacity change from 0 to 16
[  696.855750][T12135] erofs (device loop9): mounted with root inode @ nid 36.
[  697.166830][T12137] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1863'.
[  697.656850][T12146] loop8: detected capacity change from 0 to 1024
[  697.665834][T12146] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  697.672761][T12151] loop1: detected capacity change from 0 to 256
[  697.815792][T12146] loop8: detected capacity change from 0 to 512
[  697.824474][T12146] EXT4-fs: Ignoring removed i_version option
[  697.896508][T12151] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  697.910463][T12151] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  697.933165][T12146] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  698.018771][T12146] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  698.031760][T12146] ext4 filesystem being mounted at /406/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  698.125160][T12161] loop9: detected capacity change from 0 to 128
[  698.135206][T12154] loop2: detected capacity change from 0 to 2048
[  698.173953][T12146] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #2: comm syz.8.1866: corrupted inode contents
[  698.222430][T12161] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  698.297211][T12154] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  698.309987][T12154] ext4 filesystem being mounted at /44/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  698.325946][T12161] ext4 filesystem being mounted at /378/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  698.365702][T12146] EXT4-fs (loop8): Remounting filesystem read-only
[  698.379819][T12161] fscrypt (loop9, inode 12): Direct key flag not allowed with different contents and filenames modes
[  698.659100][ T6170] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  698.708003][ T6164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.708838][ T4030] Quota error (device loop8): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  698.756104][T12173] loop1: detected capacity change from 0 to 16
[  698.800466][T11088] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.811770][T12173] erofs (device loop1): mounted with root inode @ nid 36.
[  699.588217][T12185] binder: 12182:12185 ioctl 541b 0 returned -22
[  699.892939][T12192] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1879'.
[  700.108387][T12195] siw: device registration error -23
[  700.273240][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  700.280164][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  700.349884][T12202] loop2: detected capacity change from 0 to 256
[  700.454298][T12202] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  700.467939][T12202] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  700.649277][T12205] loop8: detected capacity change from 0 to 1024
[  700.714375][T12205] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  700.730673][T12208] loop1: detected capacity change from 0 to 512
[  700.799700][T12208] EXT4-fs: Ignoring removed nomblk_io_submit option
[  700.825797][T12205] loop8: detected capacity change from 0 to 512
[  700.853249][T12205] EXT4-fs: Ignoring removed i_version option
[  700.950179][T12205] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  701.018017][T12208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  701.033206][T12208] ext4 filesystem being mounted at /112/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  701.106193][ T5852] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  701.221975][T12205] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  701.235928][T12205] ext4 filesystem being mounted at /409/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  702.295643][T12205] EXT4-fs error (device loop8): ext4_do_update_inode:5568: inode #2: comm syz.8.1885: corrupted inode contents
[  704.317241][ T5852] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  704.328553][ T5852] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  704.338644][ T5852] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  704.351881][ T5852] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  704.361244][ T5852] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  705.586535][T12205] EXT4-fs (loop8): Remounting filesystem read-only
[  707.906454][T10182] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.957027][ T5852] usb 8-1: config 0 descriptor??
[  708.078282][ T6164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.096344][   T14] Quota error (device loop8): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  708.170263][ T5852] usb 8-1: can't set config #0, error -71
[  708.224326][ T5852] usb 8-1: USB disconnect, device number 7
[  708.857847][T12240] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1895'.
[  710.487521][ T5885] usb 8-1: new full-speed USB device number 8 using dummy_hcd
[  712.415511][ T5885] usb 8-1: unable to get BOS descriptor or descriptor too short
[  713.448607][T12250] Bluetooth: hci1: command 0x0406 tx timeout
[  716.625374][ T5885] usb 8-1: unable to read config index 0 descriptor/start: -71
[  716.633247][ T5885] usb 8-1: can't read configurations, error -71
[  716.919129][ T5795] Bluetooth: hci8: unexpected event for opcode 0x200d
[  717.008420][T12259] loop9: detected capacity change from 0 to 512
[  717.078115][T12259] ext2: Invalid gid '0x00000000ffffffff'
[  717.263985][T12263] loop1: detected capacity change from 0 to 1024
[  717.341960][T12263] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  717.452297][T12263] loop1: detected capacity change from 0 to 512
[  717.497063][T12263] EXT4-fs: Ignoring removed i_version option
[  717.555649][T12263] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  717.761358][T12263] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  717.774534][T12263] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  717.987019][T12263] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.1902: corrupted inode contents
[  718.072544][T12263] EXT4-fs (loop1): Remounting filesystem read-only
[  718.478541][T12286] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1909'.
[  718.657591][T10182] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.739184][   T58] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  719.022663][   T30] audit: type=1326 audit(1750861504.848:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12288 comm="syz.8.1910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  719.045271][    C1] vkms_vblank_simulate: vblank timer overrun
[  719.057792][   T30] audit: type=1326 audit(1750861504.848:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12288 comm="syz.8.1910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  719.080232][    C1] vkms_vblank_simulate: vblank timer overrun
[  719.086905][   T30] audit: type=1326 audit(1750861504.888:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12288 comm="syz.8.1910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  719.109643][   T30] audit: type=1326 audit(1750861504.888:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12288 comm="syz.8.1910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  719.132081][    C1] vkms_vblank_simulate: vblank timer overrun
[  719.139033][   T30] audit: type=1326 audit(1750861504.888:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12288 comm="syz.8.1910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  719.161479][    C1] vkms_vblank_simulate: vblank timer overrun
[  721.292007][T12300] loop7: detected capacity change from 0 to 8
[  721.485435][T12300] SQUASHFS error: zlib decompression failed, data probably corrupt
[  721.493592][T12300] SQUASHFS error: Failed to read block 0x9b: -5
[  721.500229][T12300] SQUASHFS error: Unable to read metadata cache entry [99]
[  721.512967][T12300] SQUASHFS error: Unable to read inode 0x127
[  721.631230][T12295] loop2: detected capacity change from 0 to 2048
[  721.659349][ T5795] Bluetooth: Wrong link type (-57)
[  721.892733][T12295] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  723.433258][T12323] loop9: detected capacity change from 0 to 1024
[  723.525599][T12323] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  723.871958][T12323] loop9: detected capacity change from 0 to 512
[  723.993778][T12323] EXT4-fs: Ignoring removed i_version option
[  724.048949][T12331] xt_socket: unknown flags 0x58
[  724.111263][T12323] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  724.238941][T12323] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  724.251901][T12323] ext4 filesystem being mounted at /390/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  725.752597][T12323] EXT4-fs error (device loop9): ext4_do_update_inode:5568: inode #2: comm syz.9.1921: corrupted inode contents
[  726.906770][T12323] EXT4-fs (loop9): Remounting filesystem read-only
[  730.941898][ T6170] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  730.958573][ T4030] Quota error (device loop9): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  733.075712][T12250] Bluetooth: hci0: command 0x0406 tx timeout
[  733.298810][T12384] loop7: detected capacity change from 0 to 1024
[  733.376985][T12384] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  736.850081][T12436] loop9: detected capacity change from 0 to 1024
[  736.981623][T12432] loop2: detected capacity change from 0 to 2048
[  736.999556][T12436] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  739.392675][T12457] fuse: Bad value for 'fd'
[  740.415879][T12482] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1964'.
[  740.539381][T12482] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1964'.
[  740.896194][T12491] loop8: detected capacity change from 0 to 1024
[  740.928853][T12491] hfsplus: Unknown parameter 'd¬ö&w£áÃý|ecompose'
[  741.320582][T12497] loop9: detected capacity change from 0 to 512
[  741.416903][T12502] fuse: Bad value for 'fd'
[  741.446898][T12497] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  741.534509][T12497] EXT4-fs error (device loop9): ext4_lookup:1787: inode #15: comm syz.9.1968: iget: bad i_size value: 15393162788874
[  741.833631][ T6170] EXT4-fs error (device loop9): __ext4_iget:5379: inode #16: block 4278190080: comm syz-executor: invalid block
[  741.909663][ T6170] EXT4-fs error (device loop9): __ext4_iget:5379: inode #16: block 4278190080: comm syz-executor: invalid block
[  742.394396][T12515] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1972'.
[  744.563647][T12513] loop2: detected capacity change from 0 to 1024
[  748.048271][T12503] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 264: padding at end of block bitmap is not set
[  748.232098][T12088] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  749.848282][T12546] fuse: Bad value for 'fd'
[  749.890643][T12548] loop7: detected capacity change from 0 to 512
[  750.047878][T12548] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  750.058895][T12548] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c01c, mo2=0002]
[  750.294646][T12548] System zones: 1-12
[  750.299547][T12548] EXT4-fs (loop7): Can't support bigalloc feature without extents feature
[  750.299547][T12548] 
[  750.310680][T12548] EXT4-fs (loop7): Skipping orphan cleanup due to unknown ROCOMPAT features
[  750.321092][T12548] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  750.547104][T12548] EXT4-fs error (device loop7): ext4_map_blocks:780: inode #2: block 3: comm syz.7.1985: lblock 0 mapped to illegal pblock 3 (length 1)
[  750.947002][T12548] EXT4-fs warning (device loop7): dx_probe:791: inode #2: lblock 0: comm syz.7.1985: error -117 reading directory block
[  751.524352][ T5795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  751.533629][ T5795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  751.543247][ T5795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  751.568265][ T5795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  751.572885][ T6161] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  751.578075][ T5795] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  753.227693][ T5795] Bluetooth: hci8: command 0x0406 tx timeout
[  753.277327][T12574] loop7: detected capacity change from 0 to 1024
[  754.287422][ T5795] Bluetooth: hci2: command tx timeout
[  756.325291][ T5795] Bluetooth: hci2: command tx timeout
[  757.170450][T12574] hfsplus: failed to load extents file
[  758.095453][T12561] chnl_net:caif_netlink_parms(): no params data found
[  758.405208][ T5795] Bluetooth: hci2: command tx timeout
[  759.455755][T12561] bridge0: port 1(bridge_slave_0) entered blocking state
[  759.456042][T12561] bridge0: port 1(bridge_slave_0) entered disabled state
[  759.456626][T12561] bridge_slave_0: entered allmulticast mode
[  759.459065][T12561] bridge_slave_0: entered promiscuous mode
[  759.507055][T12561] bridge0: port 2(bridge_slave_1) entered blocking state
[  759.507323][T12561] bridge0: port 2(bridge_slave_1) entered disabled state
[  759.507818][T12561] bridge_slave_1: entered allmulticast mode
[  759.510249][T12561] bridge_slave_1: entered promiscuous mode
[  759.858999][T12561] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  759.893758][T12561] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  760.162129][T12561] team0: Port device team_slave_0 added
[  760.205522][T12561] team0: Port device team_slave_1 added
[  760.451599][T12561] batman_adv: batadv0: Adding interface: batadv_slave_0
[  760.459504][T12561] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  760.486120][T12561] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  760.521834][ T5795] Bluetooth: hci2: command tx timeout
[  760.549978][T12561] batman_adv: batadv0: Adding interface: batadv_slave_1
[  760.560190][T12561] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  760.586709][T12561] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  760.773048][T12561] hsr_slave_0: entered promiscuous mode
[  760.781979][T12561] hsr_slave_1: entered promiscuous mode
[  760.789932][T12561] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  760.797795][T12561] Cannot create hsr debugfs directory
[  761.584260][T12657] loop8: detected capacity change from 0 to 128
[  761.662635][T12658] lo: entered allmulticast mode
[  761.677542][T12657] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  761.737006][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  761.743658][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  761.863926][T12657] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  764.128850][T12561] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  764.192161][T12561] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  764.271198][T12561] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  764.356402][T12561] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  765.472277][T12561] 8021q: adding VLAN 0 to HW filter on device bond0
[  766.014680][T12561] 8021q: adding VLAN 0 to HW filter on device team0
[  766.191736][ T3576] bridge0: port 1(bridge_slave_0) entered blocking state
[  766.199329][ T3576] bridge0: port 1(bridge_slave_0) entered forwarding state
[  766.396289][ T3576] bridge0: port 2(bridge_slave_1) entered blocking state
[  766.403809][ T3576] bridge0: port 2(bridge_slave_1) entered forwarding state
[  767.362249][T12723] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2033'.
[  768.675914][T12561] 8021q: adding VLAN 0 to HW filter on device batadv0
[  769.067098][T12561] veth0_vlan: entered promiscuous mode
[  769.114073][T12561] veth1_vlan: entered promiscuous mode
[  769.701131][T12561] veth0_macvtap: entered promiscuous mode
[  769.854701][T12764] trusted_key: encrypted_key: key user:syz not found
[  770.732205][T12561] veth1_macvtap: entered promiscuous mode
[  770.767607][ T5852] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  771.035977][ T5852] usb 8-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  771.045505][ T5852] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  771.220095][ T5852] usb 8-1: config 0 descriptor??
[  771.305758][T12561] batman_adv: batadv0: Interface activated: batadv_slave_0
[  771.325289][T12561] batman_adv: batadv0: Interface activated: batadv_slave_1
[  771.349566][T12561] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  771.359612][T12561] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  771.368710][T12561] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  771.379229][T12561] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  771.659058][ T5852] usb 8-1: string descriptor 0 read error: -32
[  771.671701][T12767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  771.686581][T12767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  771.795723][ T5852] usb 8-1: Cannot read MAC address
[  771.801481][ T5852] MOSCHIP usb-ethernet driver 8-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  771.879927][ T5852] usb 8-1: USB disconnect, device number 10
[  773.689189][T12796] loop7: detected capacity change from 0 to 256
[  774.462533][T12796] loop8: detected capacity change from 0 to 16384
[  775.031506][   T30] audit: type=1804 audit(1750861560.978:361): pid=12816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.2051" name="/newroot/396/file1/file0" dev="loop7" ino=1048781 res=1 errno=0
[  775.476445][T12813] loop8: detected capacity change from 16384 to 16383
[  778.752913][T12863] loop8: detected capacity change from 0 to 512
[  779.413210][T12863] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  779.426286][T12863] ext4 filesystem being mounted at /451/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  779.943235][ T6164] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  780.112009][   T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  780.120858][   T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  780.743903][ T3576] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  780.752104][ T3576] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  782.323154][T12902] overlayfs: overlapping lowerdir path
[  782.569987][ T3716] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  782.828810][ T3716] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  782.903114][T12909] loop7: detected capacity change from 0 to 8
[  783.159506][ T3716] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  783.478867][ T3716] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  784.567723][ T3716] mac80211_hwsim hwsim21 wlan1: left allmulticast mode
[  784.575161][ T3716] mac80211_hwsim hwsim21 wlan1: left promiscuous mode
[  784.586734][ T3716] bridge0: port 3(wlan1) entered disabled state
[  784.842288][ T3716] bridge_slave_1: left allmulticast mode
[  784.848246][ T3716] bridge_slave_1: left promiscuous mode
[  784.854737][ T3716] bridge0: port 2(bridge_slave_1) entered disabled state
[  785.004669][ T3716] bridge_slave_0: left allmulticast mode
[  785.011112][ T3716] bridge_slave_0: left promiscuous mode
[  785.017512][ T3716] bridge0: port 1(bridge_slave_0) entered disabled state
[  786.346292][ T5885] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  786.597135][ T5885] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  786.608568][ T5885] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  786.618667][ T5885] usb 9-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  786.630251][ T5885] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  786.826676][ T3716] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  786.911254][ T5885] usb 9-1: config 0 descriptor??
[  786.940121][ T3716] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  787.008324][ T3716] bond0 (unregistering): Released all slaves
[  787.365768][ T5885] hid-thrustmaster 0003:044F:B65D.0008: unknown main item tag 0x0
[  787.396566][ T5885] hid-thrustmaster 0003:044F:B65D.0008: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.8-1/input0
[  787.409687][ T5885] hid-thrustmaster 0003:044F:B65D.0008: Wrong number of endpoints?
[  787.667448][    C0] hid-thrustmaster 0003:044F:B65D.0008: URB to get model id failed with error -71
[  787.673590][ T5852] usb 9-1: USB disconnect, device number 8
[  788.103537][T12962] fido_id[12962]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  788.293850][   T30] audit: type=1326 audit(1750861574.238:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12970 comm="syz.1.2096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28bb38e929 code=0x7ffc0000
[  788.316809][   T30] audit: type=1326 audit(1750861574.248:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12970 comm="syz.1.2096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28bb38e929 code=0x7ffc0000
[  788.436782][   T30] audit: type=1326 audit(1750861574.318:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12970 comm="syz.1.2096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f28bb39087a code=0x7ffc0000
[  788.459528][   T30] audit: type=1326 audit(1750861574.318:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12970 comm="syz.1.2096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f28bb38d290 code=0x7ffc0000
[  788.459690][   T30] audit: type=1326 audit(1750861574.318:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12970 comm="syz.1.2096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28bb38e929 code=0x7ffc0000
[  788.507900][   T30] audit: type=1326 audit(1750861574.368:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12970 comm="syz.1.2096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28bb38e929 code=0x7ffc0000
[  788.635233][ T3716] hsr_slave_0: left promiscuous mode
[  788.695010][ T3716] hsr_slave_1: left promiscuous mode
[  788.702320][ T3716] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  788.710478][ T3716] batman_adv: batadv0: Removing interface: batadv_slave_0
[  788.783854][ T3716] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  788.791738][ T3716] batman_adv: batadv0: Removing interface: batadv_slave_1
[  788.926306][ T3716] veth1_macvtap: left promiscuous mode
[  788.931999][ T3716] veth0_macvtap: left promiscuous mode
[  788.937946][ T3716] veth1_vlan: left promiscuous mode
[  788.943392][ T3716] veth0_vlan: left promiscuous mode
[  793.037952][ T3716] team0 (unregistering): Port device team_slave_1 removed
[  793.051580][ T3576] smc: removing ib device syz0
[  793.147724][ T3716] team0 (unregistering): Port device team_slave_0 removed
[  793.629969][ T5885] syz0: Port: 1 Link DOWN
[  797.645725][   T30] audit: type=1326 audit(1750861583.608:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x7ffc0000
[  797.669538][   T30] audit: type=1326 audit(1750861583.608:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x7ffc0000
[  797.694554][   T30] audit: type=1326 audit(1750861583.608:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x7ffc0000
[  798.105307][   T30] audit: type=1326 audit(1750861583.688:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97e432ab19 code=0x7ffc0000
[  798.128102][   T30] audit: type=1326 audit(1750861583.688:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x7ffc0000
[  798.150776][   T30] audit: type=1326 audit(1750861583.698:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97e432ab19 code=0x7ffc0000
[  798.174221][   T30] audit: type=1326 audit(1750861583.698:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x7ffc0000
[  798.202667][   T30] audit: type=1326 audit(1750861583.708:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97e432ab19 code=0x7ffc0000
[  798.226319][   T30] audit: type=1326 audit(1750861583.708:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x7ffc0000
[  798.249597][   T30] audit: type=1326 audit(1750861583.718:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13041 comm="syz.3.2116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97e432ab19 code=0x7ffc0000
[  801.422350][T13088] loop8: detected capacity change from 0 to 2048
[  804.211208][T13102] ptrace attach of "./syz-executor exec"[13103] was attempted by "./syz-executor exec"[13102]
[  804.554539][T13088] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  804.554746][T13088] EXT4-fs: failed to create workqueue
[  804.570372][T13088] EXT4-fs (loop8): mount failed
[  805.843725][T13111] loop3: detected capacity change from 0 to 1024
[  805.898236][T13111] EXT4-fs: Ignoring removed nobh option
[  806.146165][T13111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  806.826137][T12561] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  808.462936][T13128] loop3: detected capacity change from 0 to 2048
[  808.814091][T13128] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  809.898534][T13142] loop7: detected capacity change from 0 to 8
[  810.202390][T13146] sit0: entered promiscuous mode
[  810.218760][T13146] netlink: 'syz.2.2146': attribute type 1 has an invalid length.
[  810.226849][T13146] netlink: 1 bytes leftover after parsing attributes in process `syz.2.2146'.
[  822.176452][T13268] loop3: detected capacity change from 0 to 1024
[  823.264010][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  823.270672][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  824.164962][T13276] hfsplus: xattr search failed
[  825.108766][T13283] loop3: detected capacity change from 0 to 16
[  825.280896][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  825.280957][   T30] audit: type=1326 audit(1750861611.228:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9cd8e929 code=0x7ffc0000
[  825.381566][T13283] erofs (device loop3): mounted with root inode @ nid 36.
[  825.482707][   T30] audit: type=1326 audit(1750861611.278:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f7c9cd8e929 code=0x7ffc0000
[  825.505608][   T30] audit: type=1326 audit(1750861611.278:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9cd8e929 code=0x7ffc0000
[  825.528625][   T30] audit: type=1326 audit(1750861611.278:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9cd8e929 code=0x7ffc0000
[  825.553355][   T30] audit: type=1326 audit(1750861611.298:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f7c9cd8e929 code=0x7ffc0000
[  825.556648][T13288] erofs (device loop3): readahead error at folio 3604 @ nid 36
[  825.576771][   T30] audit: type=1326 audit(1750861611.298:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13285 comm="syz.7.2187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c9cd8e929 code=0x7ffc0000
[  825.583634][T13288] erofs (device loop3): readahead error at folio 3603 @ nid 36
[  825.615155][T13288] erofs (device loop3): readahead error at folio 3602 @ nid 36
[  825.622896][T13288] erofs (device loop3): readahead error at folio 3601 @ nid 36
[  825.630811][T13288] erofs (device loop3): readahead error at folio 3600 @ nid 36
[  825.638727][T13288] erofs (device loop3): readahead error at folio 3599 @ nid 36
[  826.285953][ T5795] Bluetooth: hci6: unexpected event for opcode 0x1002
[  827.631092][T13306] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2189'.
[  829.456740][T13322] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2194'.
[  829.562847][T13321] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2194'.
[  857.179159][T13466] raw_sendmsg: syz.8.2241 forgot to set AF_INET. Fix it!
[  858.752830][   T30] audit: type=1326 audit(1750861643.998:395): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=13474 comm="syz.8.2244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  858.776042][   T30] audit: type=1326 audit(1750861643.998:396): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=13474 comm="syz.8.2244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  858.799276][   T30] audit: type=1326 audit(1750861643.998:397): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=13474 comm="syz.8.2244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  858.824529][   T30] audit: type=1326 audit(1750861643.998:398): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=13474 comm="syz.8.2244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  858.848379][   T30] audit: type=1326 audit(1750861644.438:399): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=13474 comm="syz.8.2244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  858.871470][   T30] audit: type=1326 audit(1750861644.458:400): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=13474 comm="syz.8.2244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f665cf8e929 code=0x7ffc0000
[  860.346553][T13495] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2252'.
[  862.313471][T13526] loop3: detected capacity change from 0 to 512
[  862.565920][T13526] EXT4-fs (loop3): 1 orphan inode deleted
[  862.573296][T13526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  862.597737][   T57] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  862.612361][   T57] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[  862.623973][T13526] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  863.130931][T12561] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  865.246097][   T30] audit: type=1326 audit(1750861651.198:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13570 comm="syz.2.2273" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c6e78e929 code=0x0
[  865.493105][T13580] loop3: detected capacity change from 0 to 256
[  865.598619][T13580] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  868.099850][T13601] batadv_slave_1: entered promiscuous mode
[  868.511505][T13597] batadv_slave_1: left promiscuous mode
[  876.412018][T12250] Bluetooth: hci2: command 0x0406 tx timeout
[  878.263940][T13672] loop3: detected capacity change from 0 to 256
[  878.300432][T13672] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  878.311617][T13672] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  879.521565][T12250] Bluetooth: hci8: command 0x0406 tx timeout
[  880.002771][T13672] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe670ac5a, utbl_chksum : 0xe619d30d)
[  884.157280][T12250] Bluetooth: hci1: unexpected event for opcode 0x1003
[  884.779114][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  884.786271][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  886.786168][ T5852] kernel write not supported for file bpf-prog (pid: 5852 comm: kworker/1:5)
[  888.987973][T13732] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2319'.
[  889.429617][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  889.500263][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  889.518297][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  889.552759][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  889.570629][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  891.771245][T12250] Bluetooth: hci3: command tx timeout
[  892.911836][T13733] chnl_net:caif_netlink_parms(): no params data found
[  893.847777][T12250] Bluetooth: hci3: command tx timeout
[  895.925334][T12250] Bluetooth: hci3: command tx timeout
[  898.015788][T12250] Bluetooth: hci3: command tx timeout
[  905.934407][T13733] bridge0: port 1(bridge_slave_0) entered blocking state
[  905.942264][T13733] bridge0: port 1(bridge_slave_0) entered disabled state
[  905.950636][T13733] bridge_slave_0: entered allmulticast mode
[  905.960611][T13733] bridge_slave_0: entered promiscuous mode
[  906.187777][T13733] bridge0: port 2(bridge_slave_1) entered blocking state
[  906.195600][T13733] bridge0: port 2(bridge_slave_1) entered disabled state
[  906.203257][T13733] bridge_slave_1: entered allmulticast mode
[  906.212319][T13733] bridge_slave_1: entered promiscuous mode
[  907.277632][T13733] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  907.439004][T13733] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  908.089704][T13733] team0: Port device team_slave_0 added
[  908.548005][T13733] team0: Port device team_slave_1 added
[  909.635828][   T30] audit: type=1326 audit(1750861694.618:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13806 comm="syz.1.2340" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f28bb38e929 code=0x0
[  910.455662][T13733] batman_adv: batadv0: Adding interface: batadv_slave_0
[  910.462750][T13733] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  910.489924][T13733] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  910.510187][T13733] batman_adv: batadv0: Adding interface: batadv_slave_1
[  910.518377][T13733] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  910.555027][T13733] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  913.937513][T13733] hsr_slave_0: entered promiscuous mode
[  913.948837][T13733] hsr_slave_1: entered promiscuous mode
[  913.958597][T13733] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  913.966634][T13733] Cannot create hsr debugfs directory
[  919.001480][ T3658] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  919.618199][ T3658] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  920.299971][ T3658] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  921.225582][ T5795] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  921.368409][ T5795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  921.400320][ T5795] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  921.459419][ T5795] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  921.499596][ T5795] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  922.342819][ T3658] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.066619][T13733] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  924.286876][ T3658] bridge_slave_1: left allmulticast mode
[  924.292862][ T3658] bridge_slave_1: left promiscuous mode
[  924.299906][ T3658] bridge0: port 2(bridge_slave_1) entered disabled state
[  924.471002][ T3658] bridge_slave_0: left allmulticast mode
[  924.477110][ T3658] bridge_slave_0: left promiscuous mode
[  924.484021][ T3658] bridge0: port 1(bridge_slave_0) entered disabled state
[  924.805413][ T5795] Bluetooth: hci4: command tx timeout
[  925.693317][ T3658] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  925.738314][ T3658] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  925.781990][ T3658] bond0 (unregistering): Released all slaves
[  925.785958][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[  925.812763][ T3658] bond1 (unregistering): Released all slaves
[  926.145830][T13733] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  926.349301][T13733] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  926.556956][T13733] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  926.846010][T13893] xt_SECMARK: invalid mode: 2
[  926.885472][ T5795] Bluetooth: hci4: command tx timeout
[  927.651875][T13900] x_tables: duplicate underflow at hook 3
[  929.175006][ T5795] Bluetooth: hci4: command tx timeout
[  929.535545][ T3658] hsr_slave_0: left promiscuous mode
[  929.606011][ T3658] hsr_slave_1: left promiscuous mode
[  929.614485][ T3658] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  929.622814][ T3658] batman_adv: batadv0: Removing interface: batadv_slave_0
[  929.738918][ T3658] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  929.747989][ T3658] batman_adv: batadv0: Removing interface: batadv_slave_1
[  929.909729][ T3658] veth1_macvtap: left promiscuous mode
[  929.916188][ T3658] veth0_macvtap: left promiscuous mode
[  929.922207][ T3658] veth1_vlan: left promiscuous mode
[  929.928354][ T3658] veth0_vlan: left promiscuous mode
[  931.205203][T12250] Bluetooth: hci4: command tx timeout
[  931.887620][ T3658] team0 (unregistering): Port device team_slave_1 removed
[  932.011609][ T3658] team0 (unregistering): Port device team_slave_0 removed
[  935.091616][ T3658] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  935.286986][T13858] chnl_net:caif_netlink_parms(): no params data found
[  935.357637][ T3658] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  935.510663][T12250] Bluetooth: hci1: unexpected event for opcode 0x1004
[  935.666573][ T3658] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  935.935083][ T3658] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  936.211596][T13733] 8021q: adding VLAN 0 to HW filter on device bond0
[  936.565831][T13733] 8021q: adding VLAN 0 to HW filter on device team0
[  936.878830][ T3674] bridge0: port 1(bridge_slave_0) entered blocking state
[  936.886467][ T3674] bridge0: port 1(bridge_slave_0) entered forwarding state
[  936.947502][ T3658] bridge_slave_1: left allmulticast mode
[  936.960291][ T3658] bridge_slave_1: left promiscuous mode
[  936.967508][ T3658] bridge0: port 2(bridge_slave_1) entered disabled state
[  937.086966][ T3658] bridge_slave_0: left allmulticast mode
[  937.092918][ T3658] bridge_slave_0: left promiscuous mode
[  937.100085][ T3658] bridge0: port 1(bridge_slave_0) entered disabled state
[  939.536363][T12250] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  939.545276][T12250] Bluetooth: hci1: Injecting HCI hardware error event
[  939.555727][T12250] Bluetooth: hci1: hardware error 0x00
[  939.693221][ T3658] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  939.734696][ T3658] bond_slave_0: left allmulticast mode
[  939.799855][ T3658] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  939.846949][ T3658] bond_slave_1: left allmulticast mode
[  939.857942][ T3658] bond0 (unregistering): Released all slaves
[  941.610068][T12250] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  942.283141][ T3674] bridge0: port 2(bridge_slave_1) entered blocking state
[  942.290903][ T3674] bridge0: port 2(bridge_slave_1) entered forwarding state
[  944.575483][ T3658] hsr_slave_0: left promiscuous mode
[  944.615684][ T3658] hsr_slave_1: left promiscuous mode
[  944.624117][ T3658] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  944.637155][ T3658] batman_adv: batadv0: Removing interface: batadv_slave_0
[  944.748406][ T3658] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  944.756873][ T3658] batman_adv: batadv0: Removing interface: batadv_slave_1
[  944.892775][ T3658] veth1_macvtap: left promiscuous mode
[  944.898919][ T3658] veth0_macvtap: left promiscuous mode
[  944.905116][ T3658] veth1_vlan: left promiscuous mode
[  944.910763][ T3658] veth0_vlan: left promiscuous mode
[  946.046551][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  946.053345][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  946.417518][ T3658] team0 (unregistering): Port device team_slave_1 removed
[  946.777505][ T3658] team0 (unregistering): Port device team_slave_0 removed
[  948.344636][T13858] bridge0: port 1(bridge_slave_0) entered blocking state
[  948.352525][T13858] bridge0: port 1(bridge_slave_0) entered disabled state
[  948.360637][T13858] bridge_slave_0: entered allmulticast mode
[  948.370712][T13858] bridge_slave_0: entered promiscuous mode
[  949.349398][T13858] bridge0: port 2(bridge_slave_1) entered blocking state
[  949.357342][T13858] bridge0: port 2(bridge_slave_1) entered disabled state
[  949.365580][T13858] bridge_slave_1: entered allmulticast mode
[  949.376478][T13858] bridge_slave_1: entered promiscuous mode
[  949.406292][T14007] loop3: detected capacity change from 0 to 512
[  950.305649][T14007] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c11d, mo2=0002]
[  950.317672][T13858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  950.350029][T13858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  950.460825][T14007] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.2389: corrupted in-inode xattr: e_value size too large
[  950.635881][T14007] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.2389: couldn't read orphan inode 15 (err -117)
[  950.741023][T14007] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  950.836535][ T5795] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  950.848282][ T5795] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  950.858178][ T5795] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  950.869747][T13858] team0: Port device team_slave_0 added
[  950.872933][ T5795] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  950.892734][ T5795] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  951.077602][T13858] team0: Port device team_slave_1 added
[  951.728782][T13858] batman_adv: batadv0: Adding interface: batadv_slave_0
[  951.737510][T13858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  951.764210][T13858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  951.859118][T13858] batman_adv: batadv0: Adding interface: batadv_slave_1
[  951.866601][T13858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  951.893344][T13858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  952.144620][T12561] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  952.402782][T13858] hsr_slave_0: entered promiscuous mode
[  952.420343][T13858] hsr_slave_1: entered promiscuous mode
[  952.429819][T13858] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  952.437865][T13858] Cannot create hsr debugfs directory
[  952.968205][T12250] Bluetooth: hci5: command tx timeout
[  955.065218][T12250] Bluetooth: hci5: command tx timeout
[  955.577018][T14014] chnl_net:caif_netlink_parms(): no params data found
[  956.745807][T14051] loop3: detected capacity change from 0 to 2048
[  957.213069][T12250] Bluetooth: hci5: command tx timeout
[  957.224673][T13858] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  957.258850][T13858] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  957.327335][T13858] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  957.496517][T14051] EXT4-fs (loop3): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  957.806702][T14062] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  957.901421][T13858] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  958.031092][T14051] EXT4-fs error (device loop3): ext4_lookup:1787: inode #16: comm syz.3.2397: iget: bad i_size value: 8796093031208
[  958.279102][ T3597] bridge_slave_1: left allmulticast mode
[  958.287986][ T3597] bridge_slave_1: left promiscuous mode
[  958.295917][ T3597] bridge0: port 2(bridge_slave_1) entered disabled state
[  959.285289][T12250] Bluetooth: hci5: command tx timeout
[  959.332512][ T3597] bridge_slave_0: left allmulticast mode
[  959.338641][ T3597] bridge_slave_0: left promiscuous mode
[  959.345667][ T3597] bridge0: port 1(bridge_slave_0) entered disabled state
[  960.251581][T12561] EXT4-fs (loop3): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  961.697331][ T3597] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  961.773715][ T3597] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  961.829969][ T3597] bond0 (unregistering): Released all slaves
[  962.279549][ T3597] hsr_slave_0: left promiscuous mode
[  962.325303][ T3597] hsr_slave_1: left promiscuous mode
[  962.333916][ T3597] batman_adv: batadv0: Removing interface: batadv_slave_0
[  962.423402][ T3597] batman_adv: batadv0: Removing interface: batadv_slave_1
[  963.322614][T14090] netlink: 'syz.1.2405': attribute type 39 has an invalid length.
[  964.980292][T14097] loop3: detected capacity change from 0 to 256
[  965.898872][T14097] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  965.913231][T14097] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  966.415574][ T3597] team0 (unregistering): Port device team_slave_1 removed
[  966.467504][ T3597] team0 (unregistering): Port device team_slave_0 removed
[  967.742933][T14014] bridge0: port 1(bridge_slave_0) entered blocking state
[  967.751171][T14014] bridge0: port 1(bridge_slave_0) entered disabled state
[  967.759258][T14014] bridge_slave_0: entered allmulticast mode
[  967.769396][T14014] bridge_slave_0: entered promiscuous mode
[  968.008164][T14014] bridge0: port 2(bridge_slave_1) entered blocking state
[  968.016005][T14014] bridge0: port 2(bridge_slave_1) entered disabled state
[  968.023853][T14014] bridge_slave_1: entered allmulticast mode
[  968.034117][T14014] bridge_slave_1: entered promiscuous mode
[  968.635530][T14014] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  968.775566][T14014] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  968.973590][T14114] loop3: detected capacity change from 0 to 1024
[  969.161257][T14114] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  969.262703][T14014] team0: Port device team_slave_0 added
[  969.307822][T14014] team0: Port device team_slave_1 added
[  969.442441][T14114] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2410: Invalid block bitmap block 0 in block_group 0
[  969.526001][T14114] Quota error (device loop3): write_blk: dquota write failed
[  969.533794][T14114] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  969.544547][T14114] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2410: Failed to acquire dquot type 0
[  969.609473][T14114] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.2410: Freeing blocks not in datazone - block = 0, count = 4096
[  969.639429][T14014] batman_adv: batadv0: Adding interface: batadv_slave_0
[  969.646812][T14014] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  969.673465][T14014] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  969.726398][T13858] 8021q: adding VLAN 0 to HW filter on device bond0
[  969.756520][T14114] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2410: Invalid inode bitmap blk 0 in block_group 0
[  969.778077][ T3597] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8
[  969.787670][ T3597] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 0
[  969.828849][T14114] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  969.891255][T14014] batman_adv: batadv0: Adding interface: batadv_slave_1
[  969.898864][T14014] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  969.930463][T14014] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  969.989639][T13858] 8021q: adding VLAN 0 to HW filter on device team0
[  970.006984][T14114] EXT4-fs (loop3): 1 orphan inode deleted
[  970.016415][T14114] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  970.105636][T13771] bridge0: port 1(bridge_slave_0) entered blocking state
[  970.113279][T13771] bridge0: port 1(bridge_slave_0) entered forwarding state
[  970.305031][T13771] bridge0: port 2(bridge_slave_1) entered blocking state
[  970.312668][T13771] bridge0: port 2(bridge_slave_1) entered forwarding state
[  970.929032][T14014] hsr_slave_0: entered promiscuous mode
[  970.939920][T14014] hsr_slave_1: entered promiscuous mode
[  970.956220][T14014] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  970.964060][T14014] Cannot create hsr debugfs directory
[  971.189361][T12561] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  972.187071][T14138] loop3: detected capacity change from 0 to 512
[  972.456431][T14138] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  972.708545][T14138] EXT4-fs (loop3): 1 truncate cleaned up
[  972.719010][T14138] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  972.943391][   T30] audit: type=1800 audit(2000000009.290:403): pid=14134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2417" name="file1" dev="tmpfs" ino=983 res=0 errno=0
[  973.537973][T14014] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  973.646606][T14014] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  973.648970][T12561] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  973.741780][T14014] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  973.863162][T14014] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  974.143177][T13858] 8021q: adding VLAN 0 to HW filter on device batadv0
[  974.667717][T14156] netlink: 'syz.3.2419': attribute type 39 has an invalid length.
[  975.673346][T14014] 8021q: adding VLAN 0 to HW filter on device bond0
[  975.942257][T14014] 8021q: adding VLAN 0 to HW filter on device team0
[  976.074239][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  976.081995][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  976.250807][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  976.258537][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  977.005991][ T5831] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  978.495159][T13858] veth0_vlan: entered promiscuous mode
[  978.952915][ T5831] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  978.964339][ T5831] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  978.974901][ T5831] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  978.989172][ T5831] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  978.998833][ T5831] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  979.966707][ T5831] usb 4-1: config 0 descriptor??
[  981.295668][ T5831] usb 4-1: can't set config #0, error -71
[  981.377449][ T5831] usb 4-1: USB disconnect, device number 2
[  982.136807][T14194] fuse: Bad value for 'user_id'
[  982.141992][T14194] fuse: Bad value for 'user_id'
[  982.193626][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  982.207612][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  982.231250][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  982.258749][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  982.276795][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  982.355851][T14014] 8021q: adding VLAN 0 to HW filter on device batadv0
[  984.122181][T14218] 9pnet_fd: Insufficient options for proto=fd
[  984.267797][T14217] netlink: 'syz.2.2431': attribute type 39 has an invalid length.
[  984.421342][ T5795] Bluetooth: hci3: command tx timeout
[  984.985193][T14197] chnl_net:caif_netlink_parms(): no params data found
[  985.139179][T14223] loop3: detected capacity change from 0 to 128
[  985.383342][T14223] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  985.465726][T14223] ext4 filesystem being mounted at /73/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  985.890430][T14223] fscrypt: Error allocating hmac(sha512): -2
[  986.487940][ T5795] Bluetooth: hci3: command tx timeout
[  986.568653][T12561] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  986.878180][ T5795] Bluetooth: hci0: unexpected cc 0x2007 length: 100 > 2
[  986.885716][ T5795] Bluetooth: hci0: unexpected event for opcode 0x2007
[  987.215668][T14197] bridge0: port 1(bridge_slave_0) entered blocking state
[  987.223348][T14197] bridge0: port 1(bridge_slave_0) entered disabled state
[  987.237732][T14197] bridge_slave_0: entered allmulticast mode
[  987.247877][T14197] bridge_slave_0: entered promiscuous mode
[  987.404206][T14197] bridge0: port 2(bridge_slave_1) entered blocking state
[  987.412696][T14197] bridge0: port 2(bridge_slave_1) entered disabled state
[  987.423641][T14197] bridge_slave_1: entered allmulticast mode
[  987.441651][T14197] bridge_slave_1: entered promiscuous mode
[  987.695961][T14249] fuse: Bad value for 'user_id'
[  987.701130][T14249] fuse: Bad value for 'user_id'
[  988.123535][T14197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  988.208663][T14014] veth0_vlan: entered promiscuous mode
[  988.473949][T14197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  988.576576][ T5795] Bluetooth: hci3: command tx timeout
[  988.817323][T14014] veth1_vlan: entered promiscuous mode
[  989.002829][T14197] team0: Port device team_slave_0 added
[  989.061050][ T3597] bridge_slave_1: left allmulticast mode
[  989.067117][ T3597] bridge_slave_1: left promiscuous mode
[  989.079711][ T3597] bridge0: port 2(bridge_slave_1) entered disabled state
[  989.195502][ T3597] bridge_slave_0: left allmulticast mode
[  989.201606][ T3597] bridge_slave_0: left promiscuous mode
[  989.209443][ T3597] bridge0: port 1(bridge_slave_0) entered disabled state
[  989.917160][T14265] netlink: 'syz.2.2442': attribute type 39 has an invalid length.
[  989.961761][ T3597] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  990.056533][ T3597] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  990.136868][ T3597] bond0 (unregistering): Released all slaves
[  990.190373][T14197] team0: Port device team_slave_1 added
[  990.351691][T14269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2443'.
[  990.643637][T14197] batman_adv: batadv0: Adding interface: batadv_slave_0
[  990.651076][T14197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  990.679318][T14197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  990.694229][ T5795] Bluetooth: hci3: command tx timeout
[  990.759831][ T3597] hsr_slave_0: left promiscuous mode
[  990.795894][ T3597] hsr_slave_1: left promiscuous mode
[  990.804561][ T3597] batman_adv: batadv0: Removing interface: batadv_slave_0
[  990.847939][ T3597] batman_adv: batadv0: Removing interface: batadv_slave_1
[  990.936974][ T3597] veth0_vlan: left promiscuous mode
[  990.976019][ T5795] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  990.985062][ T5795] Bluetooth: hci0: Injecting HCI hardware error event
[  990.993122][ T5795] Bluetooth: hci0: hardware error 0x00
[  992.737713][ T3597] team0 (unregistering): Port device team_slave_1 removed
[  992.818803][ T3597] team0 (unregistering): Port device team_slave_0 removed
[  993.138654][ T5795] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  993.293506][T14197] batman_adv: batadv0: Adding interface: batadv_slave_1
[  993.301641][T14197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  993.329202][T14197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  993.473999][T14014] veth0_macvtap: entered promiscuous mode
[  993.677490][T14014] veth1_macvtap: entered promiscuous mode
[  994.187248][T14197] hsr_slave_0: entered promiscuous mode
[  994.211722][T14197] hsr_slave_1: entered promiscuous mode
[  994.221356][T14197] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  994.229400][T14197] Cannot create hsr debugfs directory
[  994.370141][T14014] batman_adv: batadv0: Interface activated: batadv_slave_0
[  994.461251][T14014] batman_adv: batadv0: Interface activated: batadv_slave_1
[  994.661667][T14014] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  994.671840][T14014] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  994.681148][T14014] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  994.690477][T14014] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  995.419513][T14301] netlink: 'syz.2.2452': attribute type 39 has an invalid length.
[  997.101206][T14197] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  997.208395][T14197] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  997.312762][T14197] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  997.455777][T14197] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  999.255000][T14197] 8021q: adding VLAN 0 to HW filter on device bond0
[  999.549224][T14197] 8021q: adding VLAN 0 to HW filter on device team0
[  999.690460][ T3716] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.698227][ T3716] bridge0: port 1(bridge_slave_0) entered forwarding state
[  999.845440][ T3716] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.853098][ T3716] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1000.831074][T14352] netlink: 'syz.3.2463': attribute type 39 has an invalid length.
[ 1002.720444][T14197] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1002.731911][T14373] loop3: detected capacity change from 0 to 256
[ 1004.367271][T14391] 9pnet_fd: Insufficient options for proto=fd
[ 1004.949447][T13771] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1004.957956][T13771] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1005.576590][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1005.585734][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1005.818852][T14401] netlink: 'syz.3.2474': attribute type 39 has an invalid length.
[ 1007.516706][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1007.523598][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1008.751607][T14411] loop4: detected capacity change from 0 to 16
[ 1009.055943][T14411] erofs (device loop4): mounted with root inode @ nid 36.
[ 1009.151689][ T5795] erofs (device loop4): failed to decompress -26 in[46, 0] out[9000]
[ 1009.203882][T14410] erofs (device loop4): failed to decompress -26 in[46, 4050] out[8192]
[ 1009.212871][T14410] erofs (device loop4): read error -117 @ 0 of nid 89
[ 1009.265978][   T30] audit: type=1800 audit(2000000045.590:404): pid=14410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2312" name="file2" dev="loop4" ino=89 res=0 errno=0
[ 1009.934218][T14197] veth0_vlan: entered promiscuous mode
[ 1010.949784][T14197] veth1_vlan: entered promiscuous mode
[ 1011.300159][T14197] veth0_macvtap: entered promiscuous mode
[ 1011.392864][T14197] veth1_macvtap: entered promiscuous mode
[ 1011.727420][T14197] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1011.942647][T14197] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1011.999548][T14197] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.014560][T14197] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.025819][T14197] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.035045][T14197] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.166070][T14427] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2481'.
[ 1013.496543][T14443] netlink: 'syz.3.2485': attribute type 39 has an invalid length.
[ 1014.430639][   T30] audit: type=1326 audit(2000000050.760:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14453 comm="syz.3.2489" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f97e438e929 code=0x0
[ 1016.112626][T14471] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2493'.
[ 1016.465852][T14478] netlink: 'syz.2.2496': attribute type 27 has an invalid length.
[ 1017.075740][ T5852] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 1017.248120][T14485] netlink: 'syz.3.2498': attribute type 39 has an invalid length.
[ 1017.278624][ T5852] usb 5-1: Using ep0 maxpacket: 8
[ 1017.317612][ T5852] usb 5-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1017.328212][ T5852] usb 5-1: config 0 has an invalid interface number: 21 but max is 0
[ 1017.342009][ T5852] usb 5-1: config 0 has no interface number 0
[ 1017.350214][ T5852] usb 5-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1017.362279][ T5852] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1017.374154][ T5852] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1017.660028][ T5852] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1017.670670][ T5852] usb 5-1: New USB device strings: Mfr=0, Product=1, SerialNumber=0
[ 1017.679230][ T5852] usb 5-1: Product: syz
[ 1017.834945][ T5852] usb 5-1: config 0 descriptor??
[ 1017.852980][T14481] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1018.661894][ T5852] usb 5-1: USB disconnect, device number 2
[ 1019.578136][ T5885] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[ 1019.916696][ T5885] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1019.925617][ T5885] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1020.483665][ T5885] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1020.493310][ T5885] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1020.501814][ T5885] usb 4-1: Manufacturer: syz
[ 1020.546072][ T5885] usb 4-1: config 0 descriptor??
[ 1021.116267][ T5885] rc_core: IR keymap rc-hauppauge not found
[ 1021.122462][ T5885] Registered IR keymap rc-empty
[ 1021.139303][ T5885] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[ 1021.154234][ T5885] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input17
[ 1021.376677][T14519] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2507'.
[ 1021.406805][    C0] igorplugusb 4-1:0.0: receive overflow invalid: 56
[ 1021.664361][ T5852] usb 4-1: USB disconnect, device number 3
[ 1021.985841][T14530] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2509'.
[ 1022.063676][T14530] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2509'.
[ 1022.140927][T14530] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2509'.
[ 1023.001916][ T3674] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1023.010913][ T3674] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1023.137647][T14535] netlink: 'syz.4.2510': attribute type 39 has an invalid length.
[ 1023.169863][ T5852] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[ 1023.415226][T12903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1023.415612][ T5852] usb 4-1: Using ep0 maxpacket: 32
[ 1023.423254][T12903] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1023.628018][ T5852] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[ 1023.640370][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1023.649497][ T5852] usb 4-1: Product: syz
[ 1023.653950][ T5852] usb 4-1: Manufacturer: syz
[ 1023.659053][ T5852] usb 4-1: SerialNumber: syz
[ 1023.793308][ T5852] usb 4-1: config 0 descriptor??
[ 1024.255528][ T5852] airspy 4-1:0.0: Board ID: 00
[ 1024.260649][ T5852] airspy 4-1:0.0: Firmware version: 
[ 1024.705534][ T5852] airspy 4-1:0.0: usb_control_msg() failed -71 request 0e
[ 1024.776968][ T5852] airspy 4-1:0.0: Registered as swradio24
[ 1024.783039][ T5852] airspy 4-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[ 1024.857062][ T5852] usb 4-1: USB disconnect, device number 4
[ 1026.889237][T14563] overlayfs: failed to clone upperpath
[ 1028.302153][ T3658] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1028.356567][T14579] netlink: 'syz.4.2524': attribute type 39 has an invalid length.
[ 1028.573749][ T3658] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1028.817315][ T3658] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1029.088167][ T3658] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1029.886971][ T3658] bridge_slave_1: left allmulticast mode
[ 1029.892962][ T3658] bridge_slave_1: left promiscuous mode
[ 1029.900096][ T3658] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1030.023365][ T3658] bridge_slave_0: left allmulticast mode
[ 1030.029608][ T3658] bridge_slave_0: left promiscuous mode
[ 1030.042203][ T3658] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1031.166629][ T3658] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1031.237437][ T3658] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1031.303935][ T3658] bond0 (unregistering): Released all slaves
[ 1032.255503][ T3658] hsr_slave_0: left promiscuous mode
[ 1032.314989][ T3658] hsr_slave_1: left promiscuous mode
[ 1032.323747][ T3658] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1032.333804][ T3658] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1032.416278][ T3658] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1032.424092][ T3658] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1032.635771][ T3658] veth1_macvtap: left promiscuous mode
[ 1032.641627][ T3658] veth0_macvtap: left promiscuous mode
[ 1032.649468][ T3658] veth1_vlan: left promiscuous mode
[ 1032.655445][ T3658] veth0_vlan: left promiscuous mode
[ 1032.711407][ T5795] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[ 1033.739130][T14607] overlayfs: failed to clone upperpath
[ 1034.093219][ T5831] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1034.287012][T14615] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1034.307699][T14615] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1034.351629][T14615] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1034.397283][T14615] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1034.410894][T14615] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1034.432765][ T5831] usb 4-1: Using ep0 maxpacket: 16
[ 1034.836884][ T5831] usb 4-1: config 1 has an invalid interface number: 105 but max is 0
[ 1034.849522][ T5831] usb 4-1: config 1 has no interface number 0
[ 1034.857482][ T5831] usb 4-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 1034.867821][ T5831] usb 4-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[ 1034.878319][ T5831] usb 4-1: config 1 interface 105 has no altsetting 0
[ 1035.032062][ T5831] usb 4-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 1035.041819][ T5831] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1035.054149][ T5831] usb 4-1: Product: syz
[ 1035.060004][ T5831] usb 4-1: Manufacturer: syz
[ 1035.065098][ T5831] usb 4-1: SerialNumber: syz
[ 1035.076706][ T3658] team0 (unregistering): Port device team_slave_1 removed
[ 1035.191084][ T3658] team0 (unregistering): Port device team_slave_0 removed
[ 1035.589463][T14610] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1035.687418][T14610] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1036.249163][T14610] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1036.266631][T14610] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1036.496465][ T5795] Bluetooth: hci3: command tx timeout
[ 1036.695466][ T5831] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32
[ 1036.730623][ T5795] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1036.740377][ T5795] Bluetooth: hci2: Injecting HCI hardware error event
[ 1036.750064][ T5795] Bluetooth: hci2: hardware error 0x00
[ 1036.924241][ T5831] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[ 1036.958830][ T5831] aqc111 4-1:1.105 eth21: register 'aqc111' at usb-dummy_hcd.3-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 20:fc:94:45:3a:41
[ 1036.990348][ T5831] usb 4-1: USB disconnect, device number 5
[ 1037.021759][T14632] netlink: 'syz.2.2540': attribute type 39 has an invalid length.
[ 1037.073770][ T5831] aqc111 4-1:1.105 eth21: unregister 'aqc111' usb-dummy_hcd.3-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[ 1037.220766][ T5831] aqc111 4-1:1.105 eth21 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[ 1037.231252][ T5831] aqc111 4-1:1.105 eth21 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[ 1037.242430][ T5831] aqc111 4-1:1.105 eth21 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[ 1038.080194][T14614] chnl_net:caif_netlink_parms(): no params data found
[ 1038.543498][T14649] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1038.566996][T14615] Bluetooth: hci3: command tx timeout
[ 1038.717602][T14649] kvm: pic: non byte read
[ 1038.723467][T14649] kvm: pic: non byte read
[ 1038.816986][ T5795] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1038.821479][T14649] kvm: pic: non byte read
[ 1040.202424][T14674] netlink: 'syz.4.2552': attribute type 39 has an invalid length.
[ 1040.383717][T14614] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1040.391579][T14614] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.399742][T14614] bridge_slave_0: entered allmulticast mode
[ 1040.409876][T14614] bridge_slave_0: entered promiscuous mode
[ 1040.546276][T14614] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.553947][T14614] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.562277][T14614] bridge_slave_1: entered allmulticast mode
[ 1040.572708][T14614] bridge_slave_1: entered promiscuous mode
[ 1040.658487][ T5795] Bluetooth: hci3: command tx timeout
[ 1040.828091][T14614] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1040.925905][T14614] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1041.339652][T14614] team0: Port device team_slave_0 added
[ 1041.437156][T14614] team0: Port device team_slave_1 added
[ 1041.957442][T14614] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1041.966008][T14614] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.993111][T14614] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1042.240385][T14614] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1042.248102][T14614] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1042.276138][T14614] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1042.725999][ T5795] Bluetooth: hci3: command tx timeout
[ 1042.915824][T14614] hsr_slave_0: entered promiscuous mode
[ 1042.926847][T14614] hsr_slave_1: entered promiscuous mode
[ 1042.942248][T14614] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1042.950213][T14614] Cannot create hsr debugfs directory
[ 1043.392781][T14712] netlink: 'syz.2.2565': attribute type 39 has an invalid length.
[ 1046.343474][T14614] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1046.445105][T14614] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1046.509882][T14614] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1046.534637][T14746] netlink: 'syz.1.2576': attribute type 21 has an invalid length.
[ 1046.596938][T14746] netlink: 'syz.1.2576': attribute type 6 has an invalid length.
[ 1046.605414][T14746] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2576'.
[ 1046.616422][T14614] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1046.651562][T14749] netlink: 'syz.2.2578': attribute type 39 has an invalid length.
[ 1048.107130][T14614] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1048.388248][T14614] 8021q: adding VLAN 0 to HW filter on device team0
[ 1048.529099][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1048.536879][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1048.685221][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1048.692876][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1050.416922][T14785] netlink: 'syz.4.2589': attribute type 39 has an invalid length.
[ 1051.682345][T14614] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1052.352141][T14614] veth0_vlan: entered promiscuous mode
[ 1052.517003][T14614] veth1_vlan: entered promiscuous mode
[ 1052.926360][T14614] veth0_macvtap: entered promiscuous mode
[ 1053.034164][T14614] veth1_macvtap: entered promiscuous mode
[ 1053.193591][   T30] audit: type=1326 audit(2000000089.550:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14811 comm="syz.4.2599" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9c3eb8e929 code=0x0
[ 1053.334469][T14614] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1053.510108][T14614] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1053.649283][T14614] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.658562][T14614] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.668006][T14614] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1053.677208][T14614] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1061.668406][T14917] overlayfs: failed to clone upperpath
[ 1061.870571][T14923] overlayfs: failed to clone upperpath
[ 1062.658857][ T3576] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1062.667372][ T3576] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1063.086008][ T3658] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1063.094297][ T3658] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1066.265308][T14976] kernel read not supported for file /eth0 (pid: 14976 comm: syz.3.2646)
[ 1066.304230][   T30] audit: type=1800 audit(2000000102.640:407): pid=14976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2646" name="eth0" dev="mqueue" ino=45472 res=0 errno=0
[ 1068.920844][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1069.045849][ T5831] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1069.256944][ T5831] usb 4-1: Using ep0 maxpacket: 16
[ 1069.294218][ T5831] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1069.381458][ T5831] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1069.392049][ T5831] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1069.400546][ T5831] usb 4-1: Product: syz
[ 1069.407108][ T5831] usb 4-1: Manufacturer: syz
[ 1069.412012][ T5831] usb 4-1: SerialNumber: syz
[ 1069.591033][ T5831] usb 4-1: config 0 descriptor??
[ 1069.648650][ T5831] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1069.660267][ T5831] em28xx 4-1:0.0: DVB interface 0 found: bulk
[ 1069.830555][T15001] net_ratelimit: 310 callbacks suppressed
[ 1069.830727][T15001] sctp: failed to load transform for md5: -2
[ 1070.339911][ T5831] em28xx 4-1:0.0: unknown em28xx chip ID (0)
[ 1071.033595][ T5831] em28xx 4-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[ 1071.047079][ T5831] em28xx 4-1:0.0: board has no eeprom
[ 1071.231271][ T5831] em28xx 4-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1071.239711][ T5831] em28xx 4-1:0.0: dvb set to bulk mode.
[ 1071.258550][ T5852] em28xx 4-1:0.0: Binding DVB extension
[ 1071.385842][ T5831] usb 4-1: USB disconnect, device number 6
[ 1071.394085][ T5831] em28xx 4-1:0.0: Disconnecting em28xx
[ 1071.975329][ T5852] em28xx 4-1:0.0: Registering input extension
[ 1072.015937][ T5831] em28xx 4-1:0.0: Closing input extension
[ 1072.151582][ T5831] em28xx 4-1:0.0: Freeing device
[ 1072.945040][ T5885] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1073.135160][ T5885] usb 4-1: Using ep0 maxpacket: 8
[ 1073.190266][ T5885] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1073.201747][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1073.210984][ T5885] usb 4-1: Product: syz
[ 1073.215582][ T5885] usb 4-1: Manufacturer: syz
[ 1073.220465][ T5885] usb 4-1: SerialNumber: syz
[ 1073.364231][ T5885] usb 4-1: config 0 descriptor??
[ 1073.541224][T15047] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2671'.
[ 1073.597881][ T5885] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1074.798360][T15060] tipc: Started in network mode
[ 1074.803651][T15060] tipc: Node identity a26f804b7cda, cluster identity 4711
[ 1074.813541][T15060] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1074.995785][T15060] syzkaller0: entered promiscuous mode
[ 1075.001591][T15060] syzkaller0: entered allmulticast mode
[ 1075.011343][T15060] tipc: Resetting bearer <eth:syzkaller0>
[ 1075.247684][T15059] tipc: Resetting bearer <eth:syzkaller0>
[ 1075.310219][ T5885] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1075.323184][ T5885] dvbdev: DVB: registering new adapter (TerraTec NOXON DAB Stick)
[ 1075.331570][ T5885] usb 4-1: media controller created
[ 1075.485011][ T5885] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1075.490434][T15059] tipc: Disabling bearer <eth:syzkaller0>
[ 1076.085918][T14615] Bluetooth: hci5: command 0x0406 tx timeout
[ 1076.640982][ T5885] i2c i2c-1: Added multiplexed i2c bus 2
[ 1076.647981][ T5885] rtl2832 1-0010: Realtek RTL2832 successfully attached
[ 1076.657832][ T5885] usb 4-1: DVB: registering adapter 1 frontend 0 (Realtek RTL2832 (DVB-T))...
[ 1076.667609][ T5885] dvbdev: dvb_create_media_entity: media entity 'Realtek RTL2832 (DVB-T)' registered.
[ 1077.448760][ T5885] DVB: Unable to find symbol r820t_attach()
[ 1078.141094][ T5885] usb 4-1: USB disconnect, device number 7
[ 1078.625257][ T5885] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1078.835225][ T5885] usb 4-1: Using ep0 maxpacket: 32
[ 1078.895230][ T5885] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[ 1078.903938][ T5885] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1078.916278][ T5885] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1078.929743][ T5885] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1078.945389][ T5885] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1079.161472][ T5885] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1079.171176][ T5885] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1079.180320][ T5885] usb 4-1: Product: syz
[ 1079.188732][ T5885] usb 4-1: Manufacturer: syz
[ 1079.193633][ T5885] usb 4-1: SerialNumber: syz
[ 1079.356432][ T5885] usb 4-1: config 0 descriptor??
[ 1079.400261][ T5885] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1079.549779][ T5885] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1080.040107][T15112] ldusb 4-1:0.0: Write buffer overflow, 1 bytes dropped
[ 1080.341988][ T5831] usb 4-1: USB disconnect, device number 8
[ 1080.450175][ T5831] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[ 1084.144567][T15162] loop3: detected capacity change from 0 to 512
[ 1084.218049][T15162] EXT4-fs: Ignoring removed i_version option
[ 1084.286438][T15162] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1084.462664][T15162] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1084.476126][T15162] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1084.596404][T15162] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.2710: corrupted inode contents
[ 1084.725507][T15162] EXT4-fs (loop3): Remounting filesystem read-only
[ 1085.156247][T12561] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1085.220347][   T14] Quota error (device loop3): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[ 1086.325611][T15191] netlink: 'syz.4.2720': attribute type 5 has an invalid length.
[ 1086.985823][ T5885] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1087.176865][ T5885] usb 4-1: Using ep0 maxpacket: 8
[ 1087.248669][ T5885] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1087.258824][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1087.267352][ T5885] usb 4-1: Product: syz
[ 1087.271791][ T5885] usb 4-1: Manufacturer: syz
[ 1087.280687][ T5885] usb 4-1: SerialNumber: syz
[ 1087.402817][ T5885] usb 4-1: config 0 descriptor??
[ 1087.648745][ T5885] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1089.240592][ T5885] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1089.252336][ T5885] dvbdev: DVB: registering new adapter (TerraTec NOXON DAB Stick)
[ 1089.260704][ T5885] usb 4-1: media controller created
[ 1089.396051][ T5885] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1091.041790][ T5885] i2c i2c-1: Added multiplexed i2c bus 2
[ 1091.048138][ T5885] rtl2832 1-0010: Realtek RTL2832 successfully attached
[ 1091.057995][ T5885] usb 4-1: DVB: registering adapter 1 frontend 0 (Realtek RTL2832 (DVB-T))...
[ 1091.073347][ T5885] dvbdev: dvb_create_media_entity: media entity 'Realtek RTL2832 (DVB-T)' registered.
[ 1092.308600][ T5885] DVB: Unable to find symbol r820t_attach()
[ 1093.014598][ T5885] usb 4-1: USB disconnect, device number 9
[ 1093.778430][ T5795] Bluetooth: hci5: unexpected event for opcode 0x2041
[ 1094.257635][ T5885] usb 4-1: new low-speed USB device number 10 using dummy_hcd
[ 1094.536807][ T5885] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1094.585078][ T5885] usb 4-1: config 9 has an invalid interface number: 236 but max is 0
[ 1094.593626][ T5885] usb 4-1: config 9 has no interface number 0
[ 1094.602195][ T5885] usb 4-1: config 9 interface 236 altsetting 0 endpoint 0x4 has invalid maxpacket 16, setting to 8
[ 1094.614104][ T5885] usb 4-1: config 9 interface 236 altsetting 0 has a duplicate endpoint with address 0x4, skipping
[ 1094.625815][ T5885] usb 4-1: config 9 interface 236 altsetting 0 has an endpoint descriptor with address 0x51, changing to 0x1
[ 1094.637866][ T5885] usb 4-1: config 9 interface 236 altsetting 0 endpoint 0x1 has invalid maxpacket 18441, setting to 8
[ 1094.653080][ T5885] usb 4-1: config 9 interface 236 altsetting 0 endpoint 0x9 is Bulk; changing to Interrupt
[ 1094.665804][ T5885] usb 4-1: config 9 interface 236 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[ 1094.901003][ T5885] usb 4-1: string descriptor 0 read error: -22
[ 1094.910577][ T5885] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice=55.e2
[ 1094.920849][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1094.998627][T15264] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1095.048027][T15264] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1095.113120][ T5885] usb 4-1: ath9k_htc: Device endpoint numbers are not the expected ones
[ 1095.367703][ T5831] usb 4-1: USB disconnect, device number 10
[ 1098.442375][T15314] fuse: Bad value for 'fd'
[ 1100.608350][T15344] netlink: 'syz.1.2772': attribute type 29 has an invalid length.
[ 1100.631485][T15344] netlink: 'syz.1.2772': attribute type 29 has an invalid length.
[ 1106.108807][T15417] tipc: Enabled bearer <ib:bond_slave_0>, priority 10
[ 1107.115035][ T5831] tipc: Node number set to 3736436811
[ 1109.305448][ T5885] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1109.500180][ T5885] usb 4-1: Using ep0 maxpacket: 16
[ 1109.544483][ T5885] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1109.555761][ T5885] usb 4-1: config 0 has no interface number 0
[ 1109.607375][ T5885] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1109.617100][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1109.625779][ T5885] usb 4-1: Product: syz
[ 1109.630225][ T5885] usb 4-1: Manufacturer: syz
[ 1109.635245][ T5885] usb 4-1: SerialNumber: syz
[ 1109.758444][ T5885] usb 4-1: config 0 descriptor??
[ 1109.829491][ T5885] gspca_main: spca1528-2.14.0 probing 04fc:1528
[ 1111.510667][ T5885] gspca_spca1528: reg_r err -71
[ 1111.517700][ T5885] spca1528 4-1:0.1: probe with driver spca1528 failed with error -71
[ 1111.659961][ T5885] usb 4-1: USB disconnect, device number 11
[ 1120.193331][T15509] xt_bpf: check failed: parse error
[ 1125.856621][T15547] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2844'.
[ 1127.451946][T15564] loop3: detected capacity change from 0 to 1024
[ 1127.534428][T15564] EXT4-fs: Ignoring removed orlov option
[ 1127.541601][T15564] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1127.760917][T15564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1130.363023][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1133.557318][T15603] fuse: Bad value for 'fd'
[ 1135.410243][T15610] =====================================================
[ 1135.417700][T15610] BUG: KMSAN: uninit-value in eth_type_trans+0x69d/0x9a0
[ 1135.425271][T15610]  eth_type_trans+0x69d/0x9a0
[ 1135.430206][T15610]  __dev_forward_skb2+0x4b1/0x950
[ 1135.435632][T15610]  dev_forward_skb_nomtu+0x3b/0xe0
[ 1135.441032][T15610]  __bpf_redirect+0x14d6/0x1760
[ 1135.446212][T15610]  bpf_clone_redirect+0x366/0x530
[ 1135.451481][T15610]  ___bpf_prog_run+0x1297/0xeba0
[ 1135.456782][T15610]  __bpf_prog_run512+0xc5/0x100
[ 1135.461891][T15610]  bpf_test_run+0x54a/0xd20
[ 1135.466769][T15610]  bpf_prog_test_run_skb+0x19f8/0x26c0
[ 1135.472472][T15610]  bpf_prog_test_run+0x5c2/0xa40
[ 1135.477800][T15610]  __sys_bpf+0x6ca/0xe60
[ 1135.482268][T15610]  __x64_sys_bpf+0xa4/0xf0
[ 1135.487020][T15610]  x64_sys_call+0x2c3b/0x3db0
[ 1135.491981][T15610]  do_syscall_64+0xd9/0x210
[ 1135.496829][T15610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.502970][T15610] 
[ 1135.505526][T15610] Uninit was created at:
[ 1135.510084][T15610]  kmem_cache_alloc_node_noprof+0x818/0xf00
[ 1135.516366][T15610]  kmalloc_reserve+0x13c/0x4b0
[ 1135.521444][T15610]  pskb_expand_head+0x1fc/0x1610
[ 1135.526752][T15610]  skb_ensure_writable+0x44e/0x510
[ 1135.532184][T15610]  bpf_clone_redirect+0x1c1/0x530
[ 1135.537580][T15610]  ___bpf_prog_run+0x1297/0xeba0
[ 1135.542762][T15610]  __bpf_prog_run512+0xc5/0x100
[ 1135.547963][T15610]  bpf_test_run+0x54a/0xd20
[ 1135.552701][T15610]  bpf_prog_test_run_skb+0x19f8/0x26c0
[ 1135.558508][T15610]  bpf_prog_test_run+0x5c2/0xa40
[ 1135.563715][T15610]  __sys_bpf+0x6ca/0xe60
[ 1135.568286][T15610]  __x64_sys_bpf+0xa4/0xf0
[ 1135.572919][T15610]  x64_sys_call+0x2c3b/0x3db0
[ 1135.577980][T15610]  do_syscall_64+0xd9/0x210
[ 1135.582722][T15610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.588985][T15610] 
[ 1135.591477][T15610] CPU: 1 UID: 0 PID: 15610 Comm: syz.0.2865 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(undef) 
[ 1135.604008][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1135.614378][T15610] =====================================================
[ 1135.621575][T15610] Disabling lock debugging due to kernel taint
[ 1135.627981][T15610] Kernel panic - not syncing: kmsan.panic set ...
[ 1135.634612][T15610] CPU: 1 UID: 0 PID: 15610 Comm: syz.0.2865 Tainted: G    B               6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(undef) 
[ 1135.648641][T15610] Tainted: [B]=BAD_PAGE
[ 1135.652952][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1135.663225][T15610] Call Trace:
[ 1135.666671][T15610]  <TASK>
[ 1135.669756][T15610]  __dump_stack+0x26/0x30
[ 1135.674369][T15610]  dump_stack_lvl+0x53/0x270
[ 1135.679229][T15610]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1135.685365][T15610]  dump_stack+0x1e/0x25
[ 1135.689789][T15610]  panic+0x4bd/0xd50
[ 1135.694027][T15610]  kmsan_report+0x31c/0x320
[ 1135.698833][T15610]  ? bpf_prog_test_run+0x5c2/0xa40
[ 1135.704219][T15610]  ? __msan_warning+0x1b/0x30
[ 1135.709175][T15610]  ? eth_type_trans+0x69d/0x9a0
[ 1135.714283][T15610]  ? __dev_forward_skb2+0x4b1/0x950
[ 1135.719769][T15610]  ? dev_forward_skb_nomtu+0x3b/0xe0
[ 1135.725354][T15610]  ? __bpf_redirect+0x14d6/0x1760
[ 1135.730624][T15610]  ? bpf_clone_redirect+0x366/0x530
[ 1135.736073][T15610]  ? ___bpf_prog_run+0x1297/0xeba0
[ 1135.741436][T15610]  ? __bpf_prog_run512+0xc5/0x100
[ 1135.746717][T15610]  ? bpf_test_run+0x54a/0xd20
[ 1135.751642][T15610]  ? bpf_prog_test_run_skb+0x19f8/0x26c0
[ 1135.757529][T15610]  ? bpf_prog_test_run+0x5c2/0xa40
[ 1135.762924][T15610]  ? __sys_bpf+0x6ca/0xe60
[ 1135.767600][T15610]  ? __x64_sys_bpf+0xa4/0xf0
[ 1135.772441][T15610]  ? x64_sys_call+0x2c3b/0x3db0
[ 1135.777581][T15610]  ? do_syscall_64+0xd9/0x210
[ 1135.782506][T15610]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.788839][T15610]  ? kmem_cache_alloc_node_noprof+0x61/0xf00
[ 1135.795094][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.800523][T15610]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1135.806653][T15610]  ? __pfx_eth_type_trans+0x1/0x10
[ 1135.812043][T15610]  ? filter_irq_stacks+0x49/0x190
[ 1135.817322][T15610]  ? stack_depot_save_flags+0x35/0x7b0
[ 1135.823059][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.828478][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.833895][T15610]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1135.840542][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.845967][T15610]  __msan_warning+0x1b/0x30
[ 1135.850754][T15610]  eth_type_trans+0x69d/0x9a0
[ 1135.855737][T15610]  __dev_forward_skb2+0x4b1/0x950
[ 1135.861067][T15610]  ? pskb_expand_head+0x1268/0x1610
[ 1135.866550][T15610]  dev_forward_skb_nomtu+0x3b/0xe0
[ 1135.871967][T15610]  __bpf_redirect+0x14d6/0x1760
[ 1135.877095][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.882530][T15610]  bpf_clone_redirect+0x366/0x530
[ 1135.887844][T15610]  ___bpf_prog_run+0x1297/0xeba0
[ 1135.893110][T15610]  __bpf_prog_run512+0xc5/0x100
[ 1135.898244][T15610]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1135.904868][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.910295][T15610]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1135.916433][T15610]  ? __local_bh_enable_ip+0x11/0xb0
[ 1135.921877][T15610]  ? filter_irq_stacks+0x49/0x190
[ 1135.927164][T15610]  ? stack_depot_save_flags+0x35/0x7b0
[ 1135.932896][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.938322][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.943743][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.949169][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.954583][T15610]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1135.961203][T15610]  ? kmsan_get_metadata+0x150/0x160
[ 1135.966710][T15610]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1135.972829][T15610]  ? __pfx___bpf_prog_run512+0x10/0x10
[ 1135.978574][T15610]  ? __pfx___bpf_prog_run512+0x10/0x10
[ 1135.984304][T15610]  bpf_test_run+0x54a/0xd20
[ 1135.989056][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.994475][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1135.999898][T15610]  ? kmsan_get_metadata+0xfb/0x160
[ 1136.005332][T15610]  ? bpf_test_run+0x39e/0xd20
[ 1136.010286][T15610]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1136.016425][T15610]  bpf_prog_test_run_skb+0x19f8/0x26c0
[ 1136.022201][T15610]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1136.028273][T15610]  bpf_prog_test_run+0x5c2/0xa40
[ 1136.033506][T15610]  __sys_bpf+0x6ca/0xe60
[ 1136.038054][T15610]  __x64_sys_bpf+0xa4/0xf0
[ 1136.042722][T15610]  x64_sys_call+0x2c3b/0x3db0
[ 1136.047712][T15610]  do_syscall_64+0xd9/0x210
[ 1136.052462][T15610]  ? irqentry_exit+0x16/0x60
[ 1136.057285][T15610]  ? clear_bhb_loop+0x40/0x90
[ 1136.062219][T15610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.068372][T15610] RIP: 0033:0x7faf48b8e929
[ 1136.072989][T15610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1136.092983][T15610] RSP: 002b:00007faf4991d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1136.101675][T15610] RAX: ffffffffffffffda RBX: 00007faf48db5fa0 RCX: 00007faf48b8e929
[ 1136.109872][T15610] RDX: 0000000000000023 RSI: 0000200000000240 RDI: 000000000000000a
[ 1136.118061][T15610] RBP: 00007faf48c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1136.126237][T15610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1136.134414][T15610] R13: 0000000000000000 R14: 00007faf48db5fa0 R15: 00007ffda1505ab8
[ 1136.142638][T15610]  </TASK>
[ 1136.146118][T15610] Kernel Offset: disabled
[ 1136.150525][T15610] Rebooting in 86400 seconds..