last executing test programs:

3m35.27999153s ago: executing program 2 (id=269):
r0 = memfd_create(&(0x7f00000006c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xef`i\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x0)
write$binfmt_elf64(r0, &(0x7f0000002180)=ANY=[], 0x78)
r1 = fanotify_init(0x200, 0x1000)
userfaultfd(0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x7)
r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x143200, 0x0)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000140)={0x0, 0xc, 0x0, 0x0, 0x0, "810000cc2b000000000000fa25ffff00ffffff"})
ioctl$TCFLSH(r5, 0x540b, 0x2)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
r7 = dup(r0)
fanotify_mark(r1, 0x1, 0x48000802, r7, 0x0)
sendfile(r7, r0, &(0x7f00000001c0)=0x8, 0x9)

3m34.112875898s ago: executing program 2 (id=270):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$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")
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
bpf$BPF_MAP_FREEZE(0x16, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x51)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000007c0)=ANY=[@ANYBLOB="000000004c900200050000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

3m33.036126881s ago: executing program 2 (id=277):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, 0x0, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = getpgid(0x0)
r3 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r2, r3, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

3m31.815705982s ago: executing program 2 (id=280):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/timer_list\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r1, 0x0)
creat(&(0x7f0000000580)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
pread64(r0, &(0x7f0000001440)=""/126, 0x7e, 0x41)

3m31.095766174s ago: executing program 2 (id=281):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="9879ffa09bed9e22a51e36bbf10829f06cd1fbbcb3d3845f9ab5318c0860f2e177f5c64adc199457683f7d56c047b241269ea29cf3c9905936bf2c3fae01cf", 0xfffffdfb, 0x201, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

3m30.99167338s ago: executing program 1 (id=283):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f00000074c0)={0x0, 0x0, &(0x7f0000007480)={&(0x7f0000001000)=ANY=[@ANYBLOB="1400000010000100000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

3m30.81763718s ago: executing program 1 (id=285):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e26, @broadcast}, {0x2, 0x4e21, @local}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4a, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x4, 0x8})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x48885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

3m30.628137601s ago: executing program 1 (id=287):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x1, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = getpgid(0x0)
r2 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r1, r2, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)

3m30.624074491s ago: executing program 2 (id=288):
r0 = memfd_create(&(0x7f00000006c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xef`i\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x0)
write$binfmt_elf64(r0, &(0x7f0000002180)=ANY=[], 0x78)
r1 = fanotify_init(0x200, 0x1000)
userfaultfd(0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x7)
r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x143200, 0x0)
syz_open_pts(r5, 0x141601)
ioctl$TCFLSH(r5, 0x540b, 0x2)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
r7 = dup(r0)
fanotify_mark(r1, 0x1, 0x48000802, r7, 0x0)
sendfile(r7, r0, &(0x7f00000001c0)=0x8, 0x9)

3m30.154548658s ago: executing program 32 (id=288):
r0 = memfd_create(&(0x7f00000006c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xef`i\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x0)
write$binfmt_elf64(r0, &(0x7f0000002180)=ANY=[], 0x78)
r1 = fanotify_init(0x200, 0x1000)
userfaultfd(0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x7)
r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x143200, 0x0)
syz_open_pts(r5, 0x141601)
ioctl$TCFLSH(r5, 0x540b, 0x2)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
r7 = dup(r0)
fanotify_mark(r1, 0x1, 0x48000802, r7, 0x0)
sendfile(r7, r0, &(0x7f00000001c0)=0x8, 0x9)

3m30.147519489s ago: executing program 1 (id=290):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/timer_list\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r1, 0x0)
creat(&(0x7f0000000580)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
pread64(r0, &(0x7f0000001440)=""/126, 0x7e, 0x41)

3m28.529153654s ago: executing program 1 (id=294):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x400000000000000, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

3m28.528748034s ago: executing program 3 (id=295):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x61, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_matches\x00')
read$FUSE(r2, &(0x7f00000027c0)={0x2020}, 0x2038)

3m27.964165016s ago: executing program 1 (id=296):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="9879ffa09bed9e22a51e36bbf10829f06cd1fbbcb3d3845f9ab5318c0860f2e177f5c64adc199457683f7d56c047b241269ea29cf3c9905936bf2c3fae01cf", 0xfffffdfb, 0x201, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

3m27.337586083s ago: executing program 33 (id=296):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="9879ffa09bed9e22a51e36bbf10829f06cd1fbbcb3d3845f9ab5318c0860f2e177f5c64adc199457683f7d56c047b241269ea29cf3c9905936bf2c3fae01cf", 0xfffffdfb, 0x201, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

3m26.232088057s ago: executing program 3 (id=301):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r0, 0x26, &(0x7f00000031c0)={0x1})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$lock(r0, 0x7, &(0x7f0000000040)={0x1, 0x0, 0x4, 0x9})
fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x7fffffff, 0xffffffffffffffff})

3m25.302697902s ago: executing program 3 (id=302):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r1, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
sync()
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="02000000040000000500000043010000", @ANYRES32, @ANYRESOCT], 0x50)
r4 = socket$alg(0x26, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000480)={0x3, 0x4, 0x4, 0xa, 0x0, r3, 0x950b, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
splice(r4, 0x0, 0xffffffffffffffff, 0x0, 0x1800, 0x8)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f0000000380)={'syztnl2\x00', &(0x7f0000000300)={'syztnl1\x00', 0x0, 0x40, 0x8700, 0x5, 0x5, {{0x8, 0x4, 0x3, 0x32, 0x20, 0x65, 0x0, 0xf, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x32}, @loopback, {[@timestamp_prespec={0x44, 0x4, 0x8}, @lsrr={0x83, 0x7, 0x15, [@rand_addr=0x64010100]}]}}}}})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)

3m25.016059828s ago: executing program 3 (id=304):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/timer_list\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r1, 0x0)
creat(&(0x7f0000000580)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
pread64(r0, &(0x7f0000001440)=""/126, 0x7e, 0x41)

3m24.217599755s ago: executing program 3 (id=306):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ab0001", 0x28, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x7, 0xc2, 0xa389, 0x0, 0x0, {[@exp_smc={0xfe, 0x6}, @generic={0x5, 0x2}, @exp_smc={0xfe, 0x6}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0)

3m23.403924612s ago: executing program 3 (id=307):
syz_usb_connect(0x0, 0x3b, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000005c0)={[{@barrier_val={'barrier', 0x3d, 0x101}}, {@errors_remount}]}, 0x2, 0x445, &(0x7f0000000b00)="$eJzs28+PE1UcAPDvTLeLCLgr4g9+qKto3PhjlwVUDh7UaOIBExM96HGzuxCksIZdEyFEwRg8GWPi3Xj0X/CkF2M8mXjVuyEhhgvgqWbaGbYtbdktLUX6+SQD78282fe+nXnte/PaAEbWVPZPErE1Iv6MiIl6trnAVP2/q5fPLly7fHYhiWr13X+SWrkrl88uFEWL87bkmek0Iv0iid1t6l05feb4fKWydCrPz66e+Gh25fSZF46dmD+6dHTp5P5Dhw4emHv5pf0v9iXOrE1Xdn26vGfnWx988/bhr5rib4mjT6a6HXy6Wu1zdcO1rSGdjA2xIWxIKSKyy1Wu9f+JKMXaxZuINz8fauOAgapWq9UtnQ+fqwJ3sSSa87o8jIrigz6b/xZb6yDg1cENP4bu0mv1CVAW99V8qx8ZizQvU26Z3/bTVES8f+7f77ItBvMcAgCgyU/Z+Of5duO/NB5qKHdfvjY0GRH3R8T2iHggInZExIMRtbIPR8QjG6y/dZHkxvFPerGnwNYpG/+9kq9tNY//itFfTJby3LZa/OXkyLHK0r78NZmO8qYsP9eljp/f+OPrTscax3/ZltVfjAXzdlwc29R8zuL86vytxNzo0vmIXWPt4k+urwQkEbEzInb1WMexZ3/Y0+nYzePvog/rTNXvI56pX/9z0RJ/Iem+Pjl7T1SW9s0Wd8WNfvv9wjud6r+l+Psgu/73tr3/r8c/mTSu165svI4Lf33ZcU7T6/0/nrxXS4/n+z6ZX109NRcxnhyuN7px//61c4t8UT6Lf3pv+/6/PdZeid0Rkd3Ej0bEYxHxeN72JyLiyYjY2yX+X19/6sPe4x+sLP7FDV3/tcR4tO5pnygd/+XHpkonb4j/Wvfrf7CWms73rOf9bz3t6u1uBgAAgP+fNCK2RpLOXE+n6cxM/fvyOyLSyvLK6nNHlj8+uVj/jcBklNPiSddEw/PQuXxaX8+fj4j6VwuK4wfy58bfljbX8jMLy5XFYQcPI25Lh/6f+bs07NYBA+f3WjC69H8YXfo/jC79H0ZXm/6/eRjtAG6/dp//nw2hHcDt19L/LfvBCDH/h9Gl/8Po0v9hJK1sjpv/SL5rovhLPZ5+1yaifEc0Y2CJSO+IZkgMKDHc9yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB++S8AAP///fHg0g==")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file1\x00', 0xa54ec2991df72bc, 0x0, 0x0, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
syz_emit_ethernet(0xdc, &(0x7f0000000400)=ANY=[@ANYBLOB="fb9a7779db9b00000000000088a821000000000000000001"], 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

3m22.869312424s ago: executing program 34 (id=307):
syz_usb_connect(0x0, 0x3b, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000005c0)={[{@barrier_val={'barrier', 0x3d, 0x101}}, {@errors_remount}]}, 0x2, 0x445, &(0x7f0000000b00)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file1\x00', 0xa54ec2991df72bc, 0x0, 0x0, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
syz_emit_ethernet(0xdc, &(0x7f0000000400)=ANY=[@ANYBLOB="fb9a7779db9b00000000000088a821000000000000000001"], 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

55.408614097s ago: executing program 4 (id=636):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bff000/0x400000)=nil)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000400)={[0xb, 0x0, 0x37974643, 0xb5, 0x1000, 0x82c3, 0x1002, 0xfffffffffffffff3, 0x10000fffb, 0x201, 0x4, 0x2372, 0x8bda, 0xffffffffffffff00, 0x6, 0x20], 0xeeff4000, 0x296156})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

54.066892985s ago: executing program 4 (id=640):
r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x78af, 0x101800)
fdatasync(r0)

53.751963614s ago: executing program 4 (id=642):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, 0x0, 0x20040000)
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee7, 0x8031, 0xffffffffffffffff, 0x84c18000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="5d5b00000000000024001a8020000a80140007000000000000d2eb000000000000000001050008"], 0x58}}, 0x0)

49.442745095s ago: executing program 4 (id=655):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x759, &(0x7f0000000a80)={[{@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}, 0x0}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0xf}}, {@i_version}, {@nouid32}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xb6a}}, {@data_err_ignore}], [], 0x2c}, 0x2, 0x4f9, &(0x7f0000000200)="$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")
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f00000004c0)='./file1\x00', 0xc805, &(0x7f0000000040)=ANY=[], 0xfe, 0x692, &(0x7f0000007040)="$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")
setns(r1, 0x24020000)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r4, &(0x7f0000000100)='.\x00', 0x9000, &(0x7f0000001dc0)={0x0, 0x85, 0x20000}, 0x20)

46.212322353s ago: executing program 4 (id=663):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, 0x0, 0x20040000)
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee7, 0x8031, 0xffffffffffffffff, 0x84c18000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="5d5b00000000000024001a8020000a80140007000000000000d2eb000000000000000001050008"], 0x58}}, 0x0)

43.36424418s ago: executing program 4 (id=668):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x1}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000005400)=[{{&(0x7f0000000040)={0xa, 0x4e27, 0xfff, @remote, 0x2}, 0x1c, 0x0}}], 0x40000000000016d, 0x1000)

41.603762662s ago: executing program 35 (id=668):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x1}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000005400)=[{{&(0x7f0000000040)={0xa, 0x4e27, 0xfff, @remote, 0x2}, 0x1c, 0x0}}], 0x40000000000016d, 0x1000)

28.715523164s ago: executing program 6 (id=694):
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
sendmmsg$inet(r0, &(0x7f00000021c0)=[{{&(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10, 0x0}}], 0x1, 0xf00)

28.575647673s ago: executing program 6 (id=695):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@ipv6_newrule={0x30, 0x20, 0x1, 0x70bd27, 0x0, {0xa, 0x0, 0x0, 0x40}, [@FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'hsr0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x24040804}, 0x4008000)

27.453063308s ago: executing program 6 (id=697):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace(0x10, 0x0)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
waitid(0x2, r0, 0x0, 0x8, 0x0)
write$UHID_INPUT(r4, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
ptrace$getregset(0x4205, 0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000000)=""/120, 0x78})

21.858901055s ago: executing program 6 (id=701):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
umount2(&(0x7f00000010c0)='./file0/file0\x00', 0x8)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)

21.517300325s ago: executing program 6 (id=704):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000100), 0x2, 0x528, &(0x7f0000000c00)="$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")
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x3, 0x125, 0x2000000000800001, 0x3, 0x2, 0x9, 0x5, 0xfffffffffffffffd, 0x107fe})

20.827973525s ago: executing program 6 (id=707):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @rand_addr, 0x4}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x49, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2, 0x4}, 0x1c)
recvmmsg(r3, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

20.23064298s ago: executing program 36 (id=707):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @rand_addr, 0x4}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x49, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2, 0x4}, 0x1c)
recvmmsg(r3, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

18.451082113s ago: executing program 5 (id=716):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
wait4(r0, 0x0, 0x40000000, 0x0)
ptrace$cont(0x1f, r0, 0x0, 0x10)

17.216357636s ago: executing program 5 (id=718):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
waitid(0x2, r0, 0x0, 0x8, 0x0)

15.112135188s ago: executing program 5 (id=710):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace(0x10, 0x0)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
waitid(0x2, r0, 0x0, 0x8, 0x0)
write$UHID_INPUT(r4, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
ptrace$getregset(0x4205, 0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000000)=""/120, 0x78})

11.748976744s ago: executing program 7 (id=711):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000090, &(0x7f0000000300)={[{@dioread_nolock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@dioread_lock}]}, 0x45, 0x7b1, &(0x7f0000000380)="$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")
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000140)={'#! ', './file0'}, 0xb)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x8d}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x134)
read$FUSE(r1, &(0x7f0000001600)={0x2020}, 0xfffffffffffffd78)
mount$fuseblk(0x0, 0x0, 0x0, 0x1403, 0x0)

11.744452695s ago: executing program 5 (id=712):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
umount2(&(0x7f00000010c0)='./file0/file0\x00', 0x8)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)

11.461626861s ago: executing program 5 (id=713):
r0 = semget(0x0, 0x5, 0x6b4)
semop(r0, &(0x7f00000002c0)=[{0x4, 0xfffc, 0x1000}], 0x1)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x6, 0x101, 0x7, 0x3ff, 0xf])

11.101515332s ago: executing program 7 (id=714):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
socket$inet(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e26, @broadcast}, {0x2, 0x4e21, @local}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4a, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x4, 0x8})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x48885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

10.940082402s ago: executing program 5 (id=717):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="2e000000010007", 0x7)

10.258785541s ago: executing program 37 (id=717):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="2e000000010007", 0x7)

10.249151072s ago: executing program 7 (id=720):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
waitid(0x2, r0, 0x0, 0x8, 0x0)

9.135285387s ago: executing program 0 (id=722):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace(0x10, 0x0)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
waitid(0x2, r0, 0x0, 0x8, 0x0)
write$UHID_INPUT(r4, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
ptrace$getregset(0x4205, 0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000000)=""/120, 0x78})

8.968071977s ago: executing program 7 (id=723):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYRES16], 0x0, 0x11ed, &(0x7f0000002480)="$eJzs3E2rG1UYB/Cn19rWW++LWqstiAfd6GZo7sKNLgySgjSgtI3QCsLUO9GQMQmZcCEiVldu/Rzi0p0g7nRzN34Gd3fjsgtxxKT2tiXiG2no5ffb5IFz/uQcZjhwhjlz8NqXH/W7VdbNJ7F27FisjSLSrRQp1uJPn8XLr/7w43NXrl2/1Gy3W5dTuti82nglpbT5/HfvfvL1C99PTr/zzea3J2N/+72DX3Z+3j+7f+7gt6sf9qrUq9JgOEl5ujEcTvIbZZF2e1U/S+ntssirIvUGVTG+p71bDkejacoHuxvro3FRVSkfTFO/mKbJME3G05R/kPcGKcuytLEe/B+dr27VdR1R14/Giajrun4s1uN0PB4bsRlbsR1PxJPxVJyJp+NsPBPPxrlZr1WPGwAAAAAAAAAAAAAAAAAAAI4W5/8BAAAAAAAAAAAAAAAAAABg9a5cu36p2W63Lqd0KqL8Yq+z15n/ztub3ehF63bnX2N2+n9uXl98s926kGa24/Py5u38zb3OI4f5MopozD4nsDDfmOfTvfmTsX53fie24szi/M7C/Kl46cW78llsxU/vxzDK2I0/sof5TxspvfFW+778+Vk/AAAAOAqydMfC/XuW/VX7PH9nf30htv7m+cB9++vjcf74audORDX9uJ+XZTFeWnEilv4Xiv9aZA/gBlA8lMU/Wj5eX/oCxVIdXvRVjwQAAAAAAAAAAIB/40G8TrjqOQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwOztwLAAAAAAgzN86jY4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4KsAAAD//+MW03s=")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)

8.005967003s ago: executing program 7 (id=724):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
umount2(&(0x7f00000010c0)='./file0/file0\x00', 0x8)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)

7.72295336s ago: executing program 7 (id=725):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$cont(0x18, r0, 0x9947, 0x2)

4.691570776s ago: executing program 8 (id=708):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETS2(r3, 0x402c542b, &(0x7f0000000080)={0xffbe3523, 0x100006, 0xed34, 0x400ff7, 0xb4, "20cde7b23a5cf0b4a5a300000400", 0x1e, 0xdb25})
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r4, &(0x7f0000000400), 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
recvmmsg(r4, &(0x7f0000000d80), 0x4000000000001e9, 0x10162, 0x0)

4.682066617s ago: executing program 0 (id=732):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
ptrace(0x10, 0x0)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
waitid(0x2, r0, 0x0, 0x8, 0x0)
write$UHID_INPUT(r4, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
ptrace$getregset(0x4205, 0x0, 0x2, &(0x7f0000000380)={&(0x7f0000000000)=""/120, 0x78})

3.60710577s ago: executing program 8 (id=726):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000090, &(0x7f0000000300)={[{@dioread_nolock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@dioread_lock}]}, 0x45, 0x7b1, &(0x7f0000000380)="$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")
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000140)={'#! ', './file0'}, 0xb)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x8d}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x134)
read$FUSE(r1, &(0x7f0000001600)={0x2020}, 0xfffffffffffffd78)
mount$fuseblk(0x0, 0x0, 0x0, 0x1403, 0x0)

2.989971226s ago: executing program 8 (id=727):
syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

2.468971336s ago: executing program 0 (id=728):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x200c9a, &(0x7f0000000280)=ANY=[], 0x1, 0x68b, &(0x7f0000000a40)="$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")
truncate(&(0x7f0000000280)='./file1\x00', 0x40003)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r0, 0x0, 0x0, 0x4000000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x0, 0x0, 0x1)

2.264202458s ago: executing program 8 (id=729):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, 0x0, 0x20040000)
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee7, 0x8031, 0xffffffffffffffff, 0x84c18000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="5d5b00000000000024001a8020000a80140007000000000000d2eb0000000000000000010500080001000000140035007767"], 0x58}}, 0x0)

1.71806301s ago: executing program 0 (id=730):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x1, 0x5002)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x66b7, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x77, 0x0, 0x0, 0x0, 0x3, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x5, 0x0, 0xf439})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
waitid(0x2, r0, 0x0, 0x8, 0x0)

391.234037ms ago: executing program 0 (id=731):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080600000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x3, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000045000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

200.177089ms ago: executing program 0 (id=734):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETS2(r3, 0x402c542b, &(0x7f0000000080)={0xffbe3523, 0x100006, 0xed34, 0x400ff7, 0xb4, "20cde7b23a5cf0b4a5a300000400", 0x1e, 0xdb25})
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r4, &(0x7f0000000400), 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
recvmmsg(r4, &(0x7f0000000d80), 0x4000000000001e9, 0x10162, 0x0)

0s ago: executing program 8 (id=735):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080)={[{@auto_da_alloc}, {@minixdf}]}, 0x1, 0x569, &(0x7f0000000a00)="$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")
setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000200), &(0x7f00000002c0)="30573472b621739b91c336124406e8a5c812ca867e3bf9b8fa367b80ab", 0x1d, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000440)=ANY=[], 0x361, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000340)='./file1\x00', &(0x7f0000000400), 0x0, 0x0, 0x2)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000440)=ANY=[], 0xfe37, 0x0)

kernel console output (not intermixed with test programs):

(bridge_slave_1) entered forwarding state
[   74.132381][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.139620][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.169757][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.176951][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.293177][ T5774] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.365456][ T5773] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   74.476286][ T5774] veth0_vlan: entered promiscuous mode
[   74.497067][ T5769] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.528580][ T5774] veth1_vlan: entered promiscuous mode
[   74.582551][   T51] Bluetooth: hci0: command tx timeout
[   74.618159][ T5774] veth0_macvtap: entered promiscuous mode
[   74.635783][ T5769] veth0_vlan: entered promiscuous mode
[   74.651376][ T5769] veth1_vlan: entered promiscuous mode
[   74.662721][ T5774] veth1_macvtap: entered promiscuous mode
[   74.717557][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.740075][   T51] Bluetooth: hci2: command tx timeout
[   74.745546][   T51] Bluetooth: hci1: command tx timeout
[   74.762515][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.803741][ T5774] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.815824][ T5774] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.824655][   T51] Bluetooth: hci3: command tx timeout
[   74.832956][ T5774] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.841893][ T5774] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.855389][ T5769] veth0_macvtap: entered promiscuous mode
[   74.872135][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.895162][ T5769] veth1_macvtap: entered promiscuous mode
[   74.942829][ T5773] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.972114][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.992703][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.004380][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.064109][ T5769] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.075886][ T5769] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.087091][ T5769] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.100269][ T5769] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.109968][ T2956] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.111827][ T5769] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.127508][ T5769] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.136242][ T5769] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.136642][ T2956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.216714][ T2896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.220221][ T5768] veth0_vlan: entered promiscuous mode
[   75.231759][ T2896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.292288][ T5768] veth1_vlan: entered promiscuous mode
[   75.320410][ T5773] veth0_vlan: entered promiscuous mode
[   75.389748][ T5773] veth1_vlan: entered promiscuous mode
[   75.413825][ T2956] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.437903][ T2956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.465898][ T5768] veth0_macvtap: entered promiscuous mode
[   75.501194][ T5768] veth1_macvtap: entered promiscuous mode
[   75.542705][ T2956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.558516][ T2956] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.575637][ T5773] veth0_macvtap: entered promiscuous mode
[   75.594411][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.607275][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.620377][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.631152][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.657143][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.675125][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.697223][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.708282][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.722180][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.736301][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.765088][ T5773] veth1_macvtap: entered promiscuous mode
[   75.780703][ T5768] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.795130][ T5768] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.809366][ T5768] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.826551][ T5768] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.855451][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.866841][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.878496][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.894490][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.894805][ T5857] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   75.904909][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.961522][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.979553][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.990686][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.002160][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.012916][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.024451][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.037015][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.048469][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.060714][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.084713][ T5773] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.109426][ T5773] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.124208][ T5773] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.133018][ T5773] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.263801][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.286165][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.304717][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.322901][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.345750][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.361882][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.406329][ T2965] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.417287][ T2965] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.665393][   T51] Bluetooth: hci0: command tx timeout
[   76.818279][ T5778] Bluetooth: hci2: command tx timeout
[   76.823778][   T51] Bluetooth: hci1: command tx timeout
[   76.897652][   T51] Bluetooth: hci3: command tx timeout
[   76.935752][ T5872] syz.1.3[5872]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   77.262779][ T5875] wg1: entered promiscuous mode
[   77.268331][ T5875] wg1: entered allmulticast mode
[   78.501620][ T5892] loop3: detected capacity change from 0 to 512
[   78.590171][ T5892] EXT4-fs error (device loop3): ext4_orphan_get:1398: inode #15: comm syz.3.8: inode has both inline data and extents flags
[   78.680562][ T5892] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.8: couldn't read orphan inode 15 (err -117)
[   78.703801][ T5892] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.737475][   T51] Bluetooth: hci0: command tx timeout
[   78.917428][   T51] Bluetooth: hci1: command tx timeout
[   78.922922][   T51] Bluetooth: hci2: command tx timeout
[   78.978698][   T51] Bluetooth: hci3: command tx timeout
[   79.325093][ T5907] EXT4-fs (loop3): shut down requested (1)
[   79.652980][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.397863][ T5918] Zero length message leads to an empty skb
[   82.118122][ T5939] loop1: detected capacity change from 0 to 512
[   82.180154][ T5940] loop0: detected capacity change from 0 to 2048
[   82.207791][ T5939] EXT4-fs error (device loop1): ext4_orphan_get:1398: inode #15: comm syz.1.23: inode has both inline data and extents flags
[   82.283475][ T5940] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.369183][ T5939] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.23: couldn't read orphan inode 15 (err -117)
[   82.456411][ T5939] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.624552][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.657297][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.826221][ T5958] wg1: entered promiscuous mode
[   83.831317][ T5958] wg1: entered allmulticast mode
[   84.034874][ T5962] loop0: detected capacity change from 0 to 512
[   84.081617][ T5962] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.27: inode has both inline data and extents flags
[   84.095196][ T5962] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.27: couldn't read orphan inode 15 (err -117)
[   84.120362][ T5962] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.401567][ T5969] EXT4-fs (loop0): shut down requested (1)
[   84.833924][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.739922][ T5887] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   85.954348][ T5887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   85.977728][ T5887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   86.007398][ T5887] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   86.027720][ T5887] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   86.050751][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.093003][ T5887] usb 2-1: config 0 descriptor??
[   86.593754][ T5887] plantronics 0003:047F:FFFF.0001: unbalanced collection at end of report description
[   86.658385][ T5887] plantronics 0003:047F:FFFF.0001: parse failed
[   86.664790][ T5887] plantronics: probe of 0003:047F:FFFF.0001 failed with error -22
[   86.812415][    T8] usb 2-1: USB disconnect, device number 2
[   87.067768][ T1760] cfg80211: failed to load regulatory.db
[   87.141693][ T5999] loop3: detected capacity change from 0 to 1024
[   87.158455][ T5999] =======================================================
[   87.158455][ T5999] WARNING: The mand mount option has been deprecated and
[   87.158455][ T5999]          and is ignored by this kernel. Remove the mand
[   87.158455][ T5999]          option from the mount to silence this warning.
[   87.158455][ T5999] =======================================================
[   87.240295][ T5999] EXT4-fs: inline encryption not supported
[   87.264788][ T5999] ext4: Unknown parameter 'euid<0000000000000'
[   87.403065][ T6001] wg1: entered promiscuous mode
[   87.408103][ T6001] wg1: entered allmulticast mode
[   87.560053][ T5999] loop3: detected capacity change from 0 to 8192
[   89.623707][ T6021] Bluetooth: MGMT ver 1.22
[   90.851863][ T6028] loop2: detected capacity change from 0 to 2048
[   90.893440][ T6028] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   91.425409][ T6036] wg1: entered promiscuous mode
[   91.430476][ T6036] wg1: entered allmulticast mode
[   93.794108][ T6064] loop3: detected capacity change from 0 to 512
[   93.890515][ T6064] EXT4-fs error (device loop3): ext4_orphan_get:1398: inode #15: comm syz.3.63: inode has both inline data and extents flags
[   93.943856][ T6064] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.63: couldn't read orphan inode 15 (err -117)
[   93.984439][ T6064] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000070000 r/w without journal. Quota mode: writeback.
[   94.199914][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000070000.
[   95.548717][ T6079] loop1: detected capacity change from 0 to 1024
[   95.734183][ T6079] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.763251][ T6079] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.782558][ T6079] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.819078][ T6079] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.859765][ T2956] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.892899][ T2956] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.910357][ T6079] hfsplus: request for non-existent node 16777216 in B*Tree
[   95.924856][ T6079] hfsplus: request for non-existent node 16777216 in B*Tree
[   96.002639][ T6094] loop0: detected capacity change from 0 to 1024
[   96.087314][ T6094] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.179830][   T27] audit: type=1800 audit(1770910476.946:2): pid=6094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.74" name="file1" dev="loop0" ino=15 res=0 errno=0
[   96.212240][ T6099] loop2: detected capacity change from 0 to 1024
[   96.248925][ T6094] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4047: comm syz.0.74: Allocating blocks 385-513 which overlap fs metadata
[   96.275491][   T27] audit: type=1800 audit(1770910476.966:3): pid=6094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.74" name="file1" dev="loop0" ino=15 res=0 errno=0
[   96.394918][ T6094] EXT4-fs (loop0): pa ffff88805a874488: logic 16, phys. 129, len 24
[   96.403555][ T6094] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5388: group 0, free 0, pa_free 8
[   96.662707][ T6099] EXT4-fs: Ignoring removed i_version option
[   96.678561][ T6099] EXT4-fs: inline encryption not supported
[   96.696371][ T6099] EXT4-fs (loop2): Test dummy encryption mode enabled
[   96.746142][ T6099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.807211][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.152161][ T6099] fscrypt (loop2): Error allocating 'xts(aes)' transform: -4
[   98.179574][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.614512][ T6139] loop3: detected capacity change from 0 to 1024
[   99.679457][ T6142] loop1: detected capacity change from 0 to 1024
[   99.729652][ T6139] hfsplus: request for non-existent node 16777216 in B*Tree
[   99.737016][ T6139] hfsplus: request for non-existent node 16777216 in B*Tree
[   99.760218][ T6142] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.776158][ T6139] hfsplus: request for non-existent node 16777216 in B*Tree
[   99.785540][ T6139] hfsplus: request for non-existent node 16777216 in B*Tree
[   99.860299][ T6139] hfsplus: request for non-existent node 16777216 in B*Tree
[   99.888185][ T6139] hfsplus: request for non-existent node 16777216 in B*Tree
[   99.996217][   T27] audit: type=1800 audit(1770910480.756:4): pid=6142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.86" name="file1" dev="loop1" ino=15 res=0 errno=0
[  100.035625][   T27] audit: type=1800 audit(1770910480.786:5): pid=6142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.86" name="file1" dev="loop1" ino=15 res=0 errno=0
[  100.067909][ T6142] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4047: comm syz.1.86: Allocating blocks 385-513 which overlap fs metadata
[  100.124681][ T6142] EXT4-fs (loop1): pa ffff88805a874658: logic 16, phys. 129, len 24
[  100.132994][ T6142] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5388: group 0, free 0, pa_free 8
[  100.701459][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.666210][ T6195] loop0: detected capacity change from 0 to 1024
[  103.700505][ T6193] loop3: detected capacity change from 0 to 1024
[  103.808893][ T6193] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.825551][ T6195] hfsplus: request for non-existent node 16777216 in B*Tree
[  103.888167][ T6195] hfsplus: request for non-existent node 16777216 in B*Tree
[  103.895833][ T6195] hfsplus: request for non-existent node 16777216 in B*Tree
[  103.932177][ T6195] hfsplus: request for non-existent node 16777216 in B*Tree
[  103.974582][   T27] audit: type=1800 audit(1770910484.736:6): pid=6193 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.101" name="file1" dev="loop3" ino=15 res=0 errno=0
[  104.010560][ T6195] hfsplus: request for non-existent node 16777216 in B*Tree
[  104.010609][ T6193] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4047: comm syz.3.101: Allocating blocks 385-513 which overlap fs metadata
[  104.038732][   T27] audit: type=1800 audit(1770910484.756:7): pid=6193 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.101" name="file1" dev="loop3" ino=15 res=0 errno=0
[  104.064665][ T6195] hfsplus: request for non-existent node 16777216 in B*Tree
[  104.112656][ T6193] EXT4-fs (loop3): pa ffff88805a874828: logic 16, phys. 129, len 24
[  104.121726][ T6193] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5388: group 0, free 0, pa_free 8
[  104.423178][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.722992][ T6206] warning: `syz.3.103' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  107.101549][ T6234] loop1: detected capacity change from 0 to 512
[  107.112789][ T6234] EXT4-fs: Ignoring removed bh option
[  107.154784][ T6234] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  107.210144][ T6234] EXT4-fs (loop1): 1 truncate cleaned up
[  107.223402][ T6234] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.444863][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.125061][ T6273] loop2: detected capacity change from 0 to 1024
[  112.950393][ T6300] loop0: detected capacity change from 0 to 512
[  113.024963][ T6300] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  113.218362][ T6300] Quota error (device loop0): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  113.260349][ T6300] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  113.327561][ T6300] EXT4-fs error (device loop0): ext4_acquire_dquot:6949: comm syz.0.134: Failed to acquire dquot type 1
[  113.403095][ T6300] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #16: comm syz.0.134: corrupted inode contents
[  113.434604][ T6300] EXT4-fs error (device loop0): ext4_dirty_inode:6124: inode #16: comm syz.0.134: mark_inode_dirty error
[  113.483903][ T6300] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #16: comm syz.0.134: corrupted inode contents
[  113.560837][ T6300] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm syz.0.134: mark_inode_dirty error
[  113.609303][ T6300] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #16: comm syz.0.134: corrupted inode contents
[  113.648665][ T6300] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem
[  113.664020][ T6300] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #16: comm syz.0.134: corrupted inode contents
[  113.686663][ T6300] EXT4-fs error (device loop0): ext4_truncate:4294: inode #16: comm syz.0.134: mark_inode_dirty error
[  113.705958][ T6300] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem
[  113.724572][ T6300] EXT4-fs (loop0): 1 truncate cleaned up
[  113.732943][ T6300] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.753707][ T6300] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.953499][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.389627][ T6344] loop2: detected capacity change from 0 to 512
[  116.615066][ T6344] Quota error (device loop2): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  116.657673][ T6344] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  116.675137][ T6344] EXT4-fs error (device loop2): ext4_acquire_dquot:6949: comm syz.2.149: Failed to acquire dquot type 1
[  116.710889][ T6344] EXT4-fs error (device loop2): ext4_do_update_inode:5248: inode #16: comm syz.2.149: corrupted inode contents
[  116.753534][ T6344] EXT4-fs error (device loop2): ext4_dirty_inode:6124: inode #16: comm syz.2.149: mark_inode_dirty error
[  116.786034][ T6344] EXT4-fs error (device loop2): ext4_do_update_inode:5248: inode #16: comm syz.2.149: corrupted inode contents
[  116.825557][ T6344] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.149: mark_inode_dirty error
[  116.856580][ T6344] EXT4-fs error (device loop2): ext4_do_update_inode:5248: inode #16: comm syz.2.149: corrupted inode contents
[  116.877794][ T6344] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  116.898990][ T6344] EXT4-fs error (device loop2): ext4_do_update_inode:5248: inode #16: comm syz.2.149: corrupted inode contents
[  116.931217][ T6344] EXT4-fs error (device loop2): ext4_truncate:4294: inode #16: comm syz.2.149: mark_inode_dirty error
[  116.962550][ T6344] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  116.992315][ T6344] EXT4-fs (loop2): 1 truncate cleaned up
[  117.018793][ T6344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.061414][ T6344] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.278865][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.415591][ T6358] loop2: detected capacity change from 0 to 128
[  119.855148][ T6379] loop3: detected capacity change from 0 to 128
[  119.894081][ T6379] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  120.665073][ T6383] loop3: detected capacity change from 0 to 512
[  120.670798][ T6387] binder: 6382:6387 ioctl c0306201 200000000080 returned -14
[  120.749118][ T6383] Quota error (device loop3): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  120.795829][ T6383] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  120.807283][ T6383] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.162: Failed to acquire dquot type 1
[  120.832854][ T6383] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #16: comm syz.3.162: corrupted inode contents
[  120.845439][ T6383] EXT4-fs error (device loop3): ext4_dirty_inode:6124: inode #16: comm syz.3.162: mark_inode_dirty error
[  120.860257][ T6383] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #16: comm syz.3.162: corrupted inode contents
[  120.875015][ T6383] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz.3.162: mark_inode_dirty error
[  120.889707][ T6383] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #16: comm syz.3.162: corrupted inode contents
[  120.972717][ T6383] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  121.004660][ T6383] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #16: comm syz.3.162: corrupted inode contents
[  121.047393][ T6383] EXT4-fs error (device loop3): ext4_truncate:4294: inode #16: comm syz.3.162: mark_inode_dirty error
[  121.080945][ T6383] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  121.102990][ T6383] EXT4-fs (loop3): 1 truncate cleaned up
[  121.115805][ T6383] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.128744][ T6383] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.374155][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.992663][ T6419] loop1: detected capacity change from 0 to 512
[  124.102852][ T6419] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.136842][ T6419] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.233619][ T6425] loop3: detected capacity change from 0 to 2048
[  124.269737][ T6425] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  124.299768][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.579349][ T6425] netlink: 'syz.3.174': attribute type 32 has an invalid length.
[  124.877495][ T5782] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  125.096217][ T5782] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  125.195315][ T5782] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  125.361272][ T5782] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  125.484313][ T5782] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  125.606606][ T5782] usb 3-1: SerialNumber: syz
[  126.006325][ T5782] usb 3-1: 0:2 : does not exist
[  126.026031][ T5782] usb 3-1: unit 135 not found!
[  126.041822][ T5782] usb 3-1: unit 232 not found!
[  126.046643][ T5782] usb 3-1: unit 127 not found!
[  126.067509][ T5782] usb 3-1: unit 203 not found!
[  126.072352][ T5782] usb 3-1: unit 54 not found!
[  126.077060][ T5782] usb 3-1: unit 120 not found!
[  126.149369][ T5782] usb 3-1: USB disconnect, device number 2
[  126.978683][ T5887] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  127.351489][ T5887] usb 3-1: Using ep0 maxpacket: 16
[  127.383048][ T5887] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.437559][ T5887] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.504868][ T5887] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  127.617689][ T5887] usb 3-1: config 0 interface 0 has no altsetting 0
[  127.624387][ T5887] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  127.646962][ T5887] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.665135][ T5887] usb 3-1: config 0 descriptor??
[  128.416730][ T5887] hid (null): invalid report_count -1215181872
[  128.851986][ T5852] usb 3-1: USB disconnect, device number 3
[  129.315102][ T6475] loop1: detected capacity change from 0 to 2048
[  129.425969][ T6475] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.642983][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.784628][ T6486] loop0: detected capacity change from 0 to 2048
[  129.890483][ T6486] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.135674][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.797458][ T5887] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  130.997403][ T5887] usb 1-1: Using ep0 maxpacket: 32
[  131.004932][ T5887] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.022799][ T5887] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.045217][ T5887] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  131.065436][ T5887] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  131.086739][ T5887] usb 1-1: Product: syz
[  131.092132][ T5887] usb 1-1: Manufacturer: syz
[  131.144440][ T5887] hub 1-1:4.0: USB hub found
[  131.449037][ T5887] hub 1-1:4.0: config failed, hub has too many ports! (err -19)
[  132.253004][ T5887] usb 1-1: USB disconnect, device number 2
[  132.519587][ T6518] binder: 6517:6518 ioctl 400c620e 0 returned -14
[  132.685798][ T6524] loop3: detected capacity change from 0 to 256
[  132.708194][ T6524] exfat: Bad value for 'uid'
[  133.175010][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  133.181671][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  134.947608][    T8] usb 1-1: new low-speed USB device number 3 using dummy_hcd
[  135.333208][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  135.372962][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 8
[  135.412796][    T8] usb 1-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[  135.444757][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.502378][    T8] usb 1-1: config 0 descriptor??
[  135.520510][ T6553] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  135.980218][    T8] hid-led 0003:1294:1320.0003: hidraw0: USB HID v0.00 Device [HID 1294:1320] on usb-dummy_hcd.0-1/input0
[  136.051384][    T8] hid-led 0003:1294:1320.0003: Riso Kagaku Webmail Notifier initialized
[  136.176495][    T8] usb 1-1: USB disconnect, device number 3
[  136.216124][ T6566] loop3: detected capacity change from 0 to 1024
[  136.219803][ T1760] leds riso_kagaku0:blue: Setting an LED's brightness failed (-38)
[  136.243493][ T6566] EXT4-fs: Ignoring removed nobh option
[  136.275199][ T6566] EXT4-fs: Ignoring removed nomblk_io_submit option
[  136.275510][ T5887] leds riso_kagaku0:green: Setting an LED's brightness failed (-38)
[  136.304617][ T5887] leds riso_kagaku0:red: Setting an LED's brightness failed (-38)
[  136.385106][ T6566] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.592885][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.342360][ T5878] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  138.351002][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.377404][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.398661][ T5878] usb 3-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  138.427428][ T5878] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.448610][ T5878] usb 3-1: config 0 descriptor??
[  138.605503][ T6589] loop1: detected capacity change from 0 to 256
[  138.668261][ T6589] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  138.714489][   T27] audit: type=1800 audit(1770910519.476:8): pid=6589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.227" name="file1" dev="loop1" ino=1048594 res=0 errno=0
[  138.737300][ T6589] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  138.767686][ T6589] FAT-fs (loop1): Filesystem has been set read-only
[  138.789443][ T6589] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  138.811989][ T6589] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  138.875845][ T5878] hid-led 0003:27B8:01ED.0004: unknown main item tag 0x0
[  138.899043][ T5878] hid-led 0003:27B8:01ED.0004: unknown main item tag 0x0
[  138.916473][ T5878] hid-led 0003:27B8:01ED.0004: unknown main item tag 0x0
[  138.933918][ T5878] hid-led 0003:27B8:01ED.0004: unknown main item tag 0x0
[  138.947629][ T5878] hid-led 0003:27B8:01ED.0004: unknown main item tag 0x0
[  139.280575][ T5878] hid-led: probe of 0003:27B8:01ED.0004 failed with error -71
[  139.335055][ T5878] usb 3-1: USB disconnect, device number 4
[  139.606331][ T6600] loop3: detected capacity change from 0 to 256
[  140.023996][ T6605] loop2: detected capacity change from 0 to 512
[  140.065636][ T6605] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  140.119332][ T6605] EXT4-fs (loop2): 1 truncate cleaned up
[  140.143020][ T6605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.345269][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.615284][ T6611] loop2: detected capacity change from 0 to 1024
[  144.235564][ T6643] loop3: detected capacity change from 0 to 256
[  144.334559][ T6643] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  146.206030][ T6655] loop0: detected capacity change from 0 to 1024
[  146.647740][ T6665] loop2: detected capacity change from 0 to 1024
[  146.748963][ T6665] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.922141][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.794510][ T6694] loop3: detected capacity change from 0 to 1024
[  150.060358][ T6713] loop0: detected capacity change from 0 to 512
[  150.148030][ T6713] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.267: inode has both inline data and extents flags
[  150.227065][ T6713] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.267: couldn't read orphan inode 15 (err -117)
[  150.296052][ T6713] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.512425][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.034819][ T6734] loop2: detected capacity change from 0 to 128
[  152.070903][ T6734] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  152.100345][ T6734] ext4 filesystem being mounted at /65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  152.147830][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  152.242989][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  152.414883][ T5769] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  153.751975][ T6753] loop2: detected capacity change from 0 to 512
[  153.789146][ T6753] EXT4-fs error (device loop2): ext4_orphan_get:1398: inode #15: comm syz.2.280: inode has both inline data and extents flags
[  153.803256][ T6753] EXT4-fs error (device loop2): ext4_orphan_get:1403: comm syz.2.280: couldn't read orphan inode 15 (err -117)
[  153.844374][ T6753] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.095182][ T6753] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  154.133419][ T6753] EXT4-fs error (device loop2): ext4_dirty_inode:6124: inode #18: comm syz.2.280: mark_inode_dirty error
[  154.153013][ T6753] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #18: comm syz.2.280: attempt to clear invalid blocks 255 len 1
[  154.175811][ T6753] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  154.191631][ T6753] EXT4-fs error (device loop2): ext4_punch_hole:4134: inode #18: comm syz.2.280: mark_inode_dirty error
[  154.209832][ T6758] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #18: block 255: comm syz.2.280: lblock 0 mapped to illegal pblock 255 (length 1)
[  154.241581][ T6758] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #18: block 38: comm syz.2.280: lblock 4 mapped to illegal pblock 38 (length 3)
[  154.257879][ T6758] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #18: block 250: comm syz.2.280: lblock 8 mapped to illegal pblock 250 (length 3)
[  154.275052][ T6758] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #18: block 38: comm syz.2.280: lblock 4 mapped to illegal pblock 38 (length 3)
[  154.293156][ T6758] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #18: block 38: comm syz.2.280: lblock 4 mapped to illegal pblock 38 (length 3)
[  154.441376][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.038159][ T1857] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.271396][ T1857] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.404832][ T1857] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.564753][ T6780] loop1: detected capacity change from 0 to 512
[  155.599789][ T1857] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.674363][ T6780] EXT4-fs error (device loop1): ext4_orphan_get:1398: inode #15: comm syz.1.290: inode has both inline data and extents flags
[  155.768819][ T6780] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.290: couldn't read orphan inode 15 (err -117)
[  155.864178][ T6780] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.248953][ T6780] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  156.290914][ T6787] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  156.341667][ T6780] EXT4-fs error (device loop1): ext4_dirty_inode:6124: inode #18: comm syz.1.290: mark_inode_dirty error
[  156.356957][ T6780] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #18: comm syz.1.290: attempt to clear invalid blocks 255 len 1
[  156.367092][ T6787] EXT4-fs error (device loop1): ext4_dirty_inode:6124: inode #18: comm syz.1.290: mark_inode_dirty error
[  156.387562][ T6780] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  156.435616][ T6780] EXT4-fs error (device loop1): ext4_punch_hole:4134: inode #18: comm syz.1.290: mark_inode_dirty error
[  156.505974][ T6787] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #18: block 255: comm syz.1.290: lblock 0 mapped to illegal pblock 255 (length 1)
[  156.594894][ T6787] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #18: block 38: comm syz.1.290: lblock 4 mapped to illegal pblock 38 (length 3)
[  156.697271][ T6787] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #18: block 250: comm syz.1.290: lblock 8 mapped to illegal pblock 250 (length 3)
[  156.751173][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  156.760572][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  156.788078][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  156.798835][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  156.806961][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  156.814408][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  156.984242][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.274269][ T6796] chnl_net:caif_netlink_parms(): no params data found
[  158.789486][ T1857] hsr_slave_0: left promiscuous mode
[  158.845583][ T1857] hsr_slave_1: left promiscuous mode
[  158.875723][ T1857] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  158.888807][ T1857] batman_adv: batadv0: Removing interface: batadv_slave_0
[  158.916350][   T51] Bluetooth: hci0: command tx timeout
[  158.939894][ T1857] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.002241][ T5778] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  159.004677][ T1857] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.010931][ T5778] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  159.038321][ T1857] bridge_slave_1: left allmulticast mode
[  159.058081][ T5778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  159.069079][ T1857] bridge_slave_1: left promiscuous mode
[  159.077210][ T5778] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  159.085846][ T5778] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  159.088609][ T1857] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.102399][ T5778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  159.149485][ T1857] bridge_slave_0: left allmulticast mode
[  159.155203][ T1857] bridge_slave_0: left promiscuous mode
[  159.177943][ T1857] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.219140][ T1857] veth1_macvtap: left promiscuous mode
[  159.225152][ T1857] veth0_macvtap: left promiscuous mode
[  159.232175][ T1857] veth1_vlan: left promiscuous mode
[  159.237824][ T1857] veth0_vlan: left promiscuous mode
[  160.406150][ T1857] team0 (unregistering): Port device team_slave_1 removed
[  160.514524][ T1857] team0 (unregistering): Port device team_slave_0 removed
[  160.554412][ T6853] loop3: detected capacity change from 0 to 512
[  160.587199][ T6853] EXT4-fs error (device loop3): ext4_orphan_get:1398: inode #15: comm syz.3.304: inode has both inline data and extents flags
[  160.602341][ T6853] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.304: couldn't read orphan inode 15 (err -117)
[  160.615001][ T1857] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.629840][ T6853] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.755209][ T1857] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.768172][ T6853] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  160.793422][ T6853] EXT4-fs error (device loop3): ext4_truncate:4294: inode #18: comm syz.3.304: mark_inode_dirty error
[  160.846339][ T6861] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  160.893871][ T6861] EXT4-fs error (device loop3): ext4_dirty_inode:6124: inode #18: comm syz.3.304: mark_inode_dirty error
[  160.926026][ T6858] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  160.987569][ T5778] Bluetooth: hci0: command tx timeout
[  161.008539][ T6858] EXT4-fs error (device loop3): ext4_dirty_inode:6124: inode #18: comm syz.3.304: mark_inode_dirty error
[  161.025623][ T6858] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #18: comm syz.3.304: attempt to clear invalid blocks 255 len 1
[  161.048361][ T6858] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  161.113314][ T6858] EXT4-fs error (device loop3): ext4_punch_hole:4134: inode #18: comm syz.3.304: mark_inode_dirty error
[  161.140808][ T5778] Bluetooth: hci3: command tx timeout
[  161.245787][ T5774] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #2: block 36: comm syz-executor: lblock 0 mapped to illegal pblock 36 (length 1)
[  161.351771][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.541319][ T1857] bond0 (unregistering): Released all slaves
[  161.701260][ T6796] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.708859][ T6796] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.716058][ T6796] bridge_slave_0: entered allmulticast mode
[  161.723940][ T6796] bridge_slave_0: entered promiscuous mode
[  161.748452][ T6796] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.773358][ T6796] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.785279][ T6796] bridge_slave_1: entered allmulticast mode
[  161.795388][ T6796] bridge_slave_1: entered promiscuous mode
[  161.969343][ T6796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  161.995333][ T6796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  162.165358][ T6796] team0: Port device team_slave_0 added
[  162.190979][ T6796] team0: Port device team_slave_1 added
[  162.297259][ T6796] batman_adv: batadv0: Adding interface: batadv_slave_0
[  162.316828][ T6796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.383451][ T6796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  162.478593][ T6796] batman_adv: batadv0: Adding interface: batadv_slave_1
[  162.486275][ T6796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.523485][ T6796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  162.691539][ T6796] hsr_slave_0: entered promiscuous mode
[  162.738057][ T6796] hsr_slave_1: entered promiscuous mode
[  162.749807][ T6796] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  162.767436][ T6796] Cannot create hsr debugfs directory
[  163.057884][ T5778] Bluetooth: hci0: command tx timeout
[  163.206994][ T1857] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.228380][ T5778] Bluetooth: hci3: command tx timeout
[  163.246739][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  163.256315][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  163.264334][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  163.273470][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  163.283082][   T51] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  163.290987][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  163.338222][ T6829] chnl_net:caif_netlink_parms(): no params data found
[  163.383924][ T1857] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.468617][ T1857] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.597085][ T1857] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.782574][ T6829] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.800297][ T6829] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.814836][ T6829] bridge_slave_0: entered allmulticast mode
[  163.825279][ T6829] bridge_slave_0: entered promiscuous mode
[  163.908338][ T6829] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.927636][ T6829] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.943955][ T6829] bridge_slave_1: entered allmulticast mode
[  163.967767][ T6829] bridge_slave_1: entered promiscuous mode
[  164.142432][ T6829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  164.288223][ T1857] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.332471][ T6829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  164.432525][ T1857] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.514175][ T6796] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  164.596231][ T1857] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.636223][ T6829] team0: Port device team_slave_0 added
[  164.651871][ T6829] team0: Port device team_slave_1 added
[  164.658781][ T6796] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  164.741707][ T1857] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.759335][ T6796] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  164.772712][ T6796] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  164.845346][ T6829] batman_adv: batadv0: Adding interface: batadv_slave_0
[  164.855028][ T6829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.881505][ T6829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  164.916806][ T6829] batman_adv: batadv0: Adding interface: batadv_slave_1
[  164.924454][ T6829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.952247][ T6829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  165.118215][ T6829] hsr_slave_0: entered promiscuous mode
[  165.125612][ T6829] hsr_slave_1: entered promiscuous mode
[  165.133643][ T6829] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  165.141486][   T51] Bluetooth: hci0: command tx timeout
[  165.147276][ T6829] Cannot create hsr debugfs directory
[  165.210128][ T6884] chnl_net:caif_netlink_parms(): no params data found
[  165.297762][   T51] Bluetooth: hci3: command tx timeout
[  165.377539][   T51] Bluetooth: hci2: command tx timeout
[  165.470240][ T6884] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.477681][ T6884] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.484840][ T6884] bridge_slave_0: entered allmulticast mode
[  165.492646][ T6884] bridge_slave_0: entered promiscuous mode
[  165.505566][ T6884] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.513954][ T6884] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.521436][ T6884] bridge_slave_1: entered allmulticast mode
[  165.529181][ T6884] bridge_slave_1: entered promiscuous mode
[  165.619055][ T6884] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  165.631973][ T6884] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.669243][ T6796] 8021q: adding VLAN 0 to HW filter on device bond0
[  165.847096][ T6884] team0: Port device team_slave_0 added
[  165.867187][ T6884] team0: Port device team_slave_1 added
[  166.009949][ T6884] batman_adv: batadv0: Adding interface: batadv_slave_0
[  166.016963][ T6884] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  166.052020][ T6884] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  166.096568][ T6796] 8021q: adding VLAN 0 to HW filter on device team0
[  166.160069][ T6884] batman_adv: batadv0: Adding interface: batadv_slave_1
[  166.167078][ T6884] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  166.205679][ T6884] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  166.276467][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.283656][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.402557][ T6829] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  166.457115][ T6884] hsr_slave_0: entered promiscuous mode
[  166.471169][ T6884] hsr_slave_1: entered promiscuous mode
[  166.478260][ T6884] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  166.485841][ T6884] Cannot create hsr debugfs directory
[  166.521155][ T6829] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  166.533288][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.540507][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.561355][ T6829] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  166.572394][ T6829] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  167.066872][ T1857] hsr_slave_0: left promiscuous mode
[  167.075774][ T1857] hsr_slave_1: left promiscuous mode
[  167.088534][ T1857] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  167.096796][ T1857] batman_adv: batadv0: Removing interface: batadv_slave_0
[  167.114382][ T1857] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  167.123972][ T1857] batman_adv: batadv0: Removing interface: batadv_slave_1
[  167.138359][ T1857] bridge_slave_1: left allmulticast mode
[  167.144064][ T1857] bridge_slave_1: left promiscuous mode
[  167.152196][ T1857] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.172876][ T1857] bridge_slave_0: left allmulticast mode
[  167.182587][ T1857] bridge_slave_0: left promiscuous mode
[  167.193875][ T1857] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.216784][ T1857] hsr_slave_0: left promiscuous mode
[  167.224052][ T1857] hsr_slave_1: left promiscuous mode
[  167.231628][ T1857] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  167.239918][ T1857] batman_adv: batadv0: Removing interface: batadv_slave_0
[  167.249964][ T1857] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  167.263090][ T1857] batman_adv: batadv0: Removing interface: batadv_slave_1
[  167.276105][ T1857] bridge_slave_1: left allmulticast mode
[  167.287189][ T1857] bridge_slave_1: left promiscuous mode
[  167.296445][ T1857] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.316507][ T1857] bridge_slave_0: left allmulticast mode
[  167.324762][ T1857] bridge_slave_0: left promiscuous mode
[  167.336991][ T1857] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.378237][   T51] Bluetooth: hci3: command tx timeout
[  167.415878][ T1857] veth1_macvtap: left promiscuous mode
[  167.422253][ T1857] veth0_macvtap: left promiscuous mode
[  167.428869][ T1857] veth1_vlan: left promiscuous mode
[  167.434236][ T1857] veth0_vlan: left promiscuous mode
[  167.442265][ T1857] veth1_macvtap: left promiscuous mode
[  167.448011][ T1857] veth0_macvtap: left promiscuous mode
[  167.453670][ T1857] veth1_vlan: left promiscuous mode
[  167.459103][   T51] Bluetooth: hci2: command tx timeout
[  167.464728][ T1857] veth0_vlan: left promiscuous mode
[  168.184225][ T1857] team0 (unregistering): Port device team_slave_1 removed
[  168.230584][ T1857] team0 (unregistering): Port device team_slave_0 removed
[  168.271590][ T1857] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  168.315568][ T1857] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  168.646348][ T1857] bond0 (unregistering): Released all slaves
[  169.176646][ T1857] team0 (unregistering): Port device team_slave_1 removed
[  169.227059][ T1857] team0 (unregistering): Port device team_slave_0 removed
[  169.272625][ T1857] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.316163][ T1857] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.537827][   T51] Bluetooth: hci2: command tx timeout
[  169.616046][ T1857] bond0 (unregistering): Released all slaves
[  169.823064][ T6884] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  169.854008][ T6884] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  169.905463][ T6884] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  169.936582][ T6829] 8021q: adding VLAN 0 to HW filter on device bond0
[  169.944371][ T6884] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  170.053543][ T6796] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.094122][ T6829] 8021q: adding VLAN 0 to HW filter on device team0
[  170.124634][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.131906][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.202028][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.209254][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.459387][ T6829] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  170.573365][ T6884] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.660494][ T6884] 8021q: adding VLAN 0 to HW filter on device team0
[  170.714328][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.721564][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.742811][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.750033][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.984101][ T6796] veth0_vlan: entered promiscuous mode
[  171.042042][ T6829] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.066666][ T6796] veth1_vlan: entered promiscuous mode
[  171.169538][ T6796] veth0_macvtap: entered promiscuous mode
[  171.205491][ T6796] veth1_macvtap: entered promiscuous mode
[  171.262457][ T6796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.279167][ T6796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.295756][ T6796] batman_adv: batadv0: Interface activated: batadv_slave_0
[  171.330575][ T6796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.350272][ T6796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.367506][ T6796] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.405743][ T6884] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.443345][ T6796] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.464225][ T6796] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.487369][ T6796] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.496446][ T6796] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.619090][   T51] Bluetooth: hci2: command tx timeout
[  171.789382][ T1857] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.808893][ T1857] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.852105][ T6829] veth0_vlan: entered promiscuous mode
[  171.875658][ T1857] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.894268][ T1857] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.903820][ T6829] veth1_vlan: entered promiscuous mode
[  171.992308][ T6829] veth0_macvtap: entered promiscuous mode
[  172.037275][ T6829] veth1_macvtap: entered promiscuous mode
[  172.096308][ T6829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.128090][ T6829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.142202][ T6829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.159450][ T6829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.183066][ T6829] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.220188][ T6829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.236837][ T6829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.252380][ T6829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.269830][ T6829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.284658][ T6829] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.426730][ T6829] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  172.457827][ T6829] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  172.486901][ T6829] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  172.505987][ T6829] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  172.575738][ T6884] veth0_vlan: entered promiscuous mode
[  172.653550][ T6884] veth1_vlan: entered promiscuous mode
[  172.718154][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.726672][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.745415][ T6884] veth0_macvtap: entered promiscuous mode
[  172.773392][ T6884] veth1_macvtap: entered promiscuous mode
[  172.831814][ T6884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.844331][ T6884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.856234][ T6884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.867210][ T6884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.880349][ T6884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.891317][ T6884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.903980][ T6884] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.915532][ T2896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.936831][ T6884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.941312][ T2896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.953144][ T6884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.965948][ T6884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.977014][ T6884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.994856][ T6884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  173.005942][ T6884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.022843][ T6884] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.035268][ T6884] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.044544][ T6884] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.055229][ T6884] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.065736][ T6884] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.264922][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.287863][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.409159][ T1857] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.427391][ T1857] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.653044][ T7049] loop4: detected capacity change from 0 to 512
[  173.757252][ T7049] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.314: inode has both inline data and extents flags
[  173.843215][ T7049] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.314: couldn't read orphan inode 15 (err -117)
[  173.869150][ T7049] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.194892][ T6796] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.296476][ T7083] loop0: detected capacity change from 0 to 256
[  175.360286][ T7083] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  175.388391][ T7085] netlink: 64 bytes leftover after parsing attributes in process `syz.6.323'.
[  175.397346][ T7083] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  175.477539][ T7083] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  176.278423][ T7101] loop0: detected capacity change from 0 to 164
[  176.396387][ T7101] iso9660: Corrupted directory entry in block 2 of inode 1792
[  176.827764][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  177.472190][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  180.109455][ T7176] loop6: detected capacity change from 0 to 512
[  180.182848][ T7176] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  180.293775][ T7176] EXT4-fs error (device loop6): ext4_orphan_get:1398: inode #15: comm syz.6.343: inode has both inline data and extents flags
[  180.380188][ T7176] EXT4-fs error (device loop6): ext4_orphan_get:1403: comm syz.6.343: couldn't read orphan inode 15 (err -117)
[  180.459172][ T7176] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.547308][ T7176] syz.6.343 (pid 7176) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  180.682375][ T7186] loop5: detected capacity change from 0 to 256
[  180.753968][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.315453][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  181.336566][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  181.411665][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  181.450238][ T7205] loop6: detected capacity change from 0 to 1024
[  183.652635][ T7233] loop4: detected capacity change from 0 to 512
[  183.682700][ T7233] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  183.737550][ T7233] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  183.802794][ T7233] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  183.842356][ T7233] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01d, mo2=0006]
[  183.928546][ T7233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.991768][ T7238] loop5: detected capacity change from 0 to 1024
[  184.021503][ T7238] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  184.069308][ T7238] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.127902][ T6796] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.257911][ T6829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  184.565073][ T7253] netlink: 5 bytes leftover after parsing attributes in process `syz.4.360'.
[  184.603332][ T7253] 0ªî{X¹¦: renamed from gretap0 (while UP)
[  184.647590][ T7253] 0ªî{X¹¦: entered allmulticast mode
[  184.660363][ T7253] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  184.849246][ T7259] Bluetooth: MGMT ver 1.22
[  187.375118][ T7301] netlink: 666 bytes leftover after parsing attributes in process `syz.0.369'.
[  189.676812][ T7334] loop5: detected capacity change from 0 to 256
[  195.222551][ T7389] wg1: entered promiscuous mode
[  195.230130][ T7389] wg1: entered allmulticast mode
[  195.935266][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  195.946230][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  197.436622][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  197.444995][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  197.511429][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  198.002976][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  203.548503][ T7511] loop5: detected capacity change from 0 to 764
[  203.727654][ T7511] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet.
[  206.283004][ T7554] nfs: Unknown parameter 'f'
[  208.957207][ T7592] capability: warning: `syz.0.423' uses 32-bit capabilities (legacy support in use)
[  210.168931][ T5878] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  210.907656][ T5878] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  211.334899][ T5878] usb 5-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  211.349734][ T5878] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.386894][ T5878] usb 5-1: config 0 descriptor??
[  211.408887][    C1] hrtimer: interrupt took 49875 ns
[  211.831916][ T7639] loop0: detected capacity change from 0 to 512
[  211.848693][ T7639] ext4: Unknown parameter 'noacl'
[  211.881535][ T5878] lg-g15 0003:046D:C222.0005: hidraw0: USB HID v10.00 Device [HID 046d:c222] on usb-dummy_hcd.4-1/input0
[  212.112858][ T1760] usb 5-1: USB disconnect, device number 2
[  212.234368][ T7646] capability: warning: `syz.5.437' uses deprecated v2 capabilities in a way that may be insecure
[  212.348103][ T7643] fido_id[7643]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  213.002065][ T1760] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  213.226480][ T1760] usb 6-1: Using ep0 maxpacket: 16
[  213.270073][ T1760] usb 6-1: config 0 interface 0 has no altsetting 0
[  213.333429][ T1760] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  213.345080][ T1760] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.362378][ T1760] usb 6-1: config 0 descriptor??
[  215.777668][ T1760] usb 6-1: USB disconnect, device number 2
[  215.962489][ T7688] loop4: detected capacity change from 0 to 1024
[  215.992467][ T7688] EXT4-fs: Ignoring removed orlov option
[  216.070279][ T7688] EXT4-fs: inline encryption not supported
[  216.177605][ T7688] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.289390][ T6796] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.316029][ T5834] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  216.481903][ T7704] loop4: detected capacity change from 0 to 2048
[  216.522561][ T5834] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  216.544794][ T7704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  216.563562][ T5834] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  216.612351][ T5834] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.678081][ T5834] usb 7-1: config 0 descriptor??
[  216.690869][ T7704] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.447: Unrecognised inode hash code 20
[  216.718402][ T7693] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  216.734182][ T7704] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.447: Corrupt directory, running e2fsck is recommended
[  216.773125][ T7704] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.447: Unrecognised inode hash code 20
[  216.806102][ T7704] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.447: Corrupt directory, running e2fsck is recommended
[  216.825256][ T7711] loop0: detected capacity change from 0 to 256
[  216.872034][ T7704] EXT4-fs error (device loop4): ext4_add_entry:2474: inode #2: comm syz.4.447: Directory has corrupted htree index.
[  216.941217][ T7704] EXT4-fs error (device loop4): __ext4_get_inode_loc:4489: comm syz.4.447: Invalid inode table block 4 in block_group 0
[  216.976206][ T7711] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x389acbd6, utbl_chksum : 0xe619d30d)
[  217.001002][ T7704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  217.025625][ T7704] EXT4-fs error (device loop4): ext4_add_nondir:2855: inode #18: comm syz.4.447: mark_inode_dirty error
[  217.038598][ T7704] EXT4-fs error (device loop4): __ext4_get_inode_loc:4489: comm syz.4.447: Invalid inode table block 4 in block_group 0
[  217.076984][ T7704] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  217.138560][ T7704] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #18: comm syz.4.447: mark_inode_dirty error
[  217.229763][ T5834] elan 0003:04F3:0755.0007: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.6-1/input0
[  217.288185][ T7704] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  217.958397][ T6796] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.417289][ T5835] usb 7-1: USB disconnect, device number 2
[  221.166060][ T7767] loop6: detected capacity change from 0 to 1024
[  221.403683][ T7767] EXT4-fs: Ignoring removed orlov option
[  221.411661][ T7767] EXT4-fs: inline encryption not supported
[  223.592411][ T7767] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.766912][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.188106][ T7794] netlink: 56 bytes leftover after parsing attributes in process `syz.5.457'.
[  224.228246][ T7795] loop6: detected capacity change from 0 to 2048
[  224.271687][ T7795] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.338879][ T7795] EXT4-fs warning (device loop6): dx_probe:833: inode #2: comm syz.6.458: Unrecognised inode hash code 20
[  224.361981][ T7795] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.458: Corrupt directory, running e2fsck is recommended
[  224.391130][ T7795] EXT4-fs warning (device loop6): dx_probe:833: inode #2: comm syz.6.458: Unrecognised inode hash code 20
[  224.435041][ T7795] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.458: Corrupt directory, running e2fsck is recommended
[  224.486219][ T7795] EXT4-fs error (device loop6): ext4_add_entry:2474: inode #2: comm syz.6.458: Directory has corrupted htree index.
[  224.600996][ T7795] EXT4-fs error (device loop6): __ext4_get_inode_loc:4489: comm syz.6.458: Invalid inode table block 4 in block_group 0
[  224.628743][ T7795] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  224.651284][ T7795] EXT4-fs error (device loop6): ext4_add_nondir:2855: inode #18: comm syz.6.458: mark_inode_dirty error
[  224.774654][ T7795] EXT4-fs error (device loop6): __ext4_get_inode_loc:4489: comm syz.6.458: Invalid inode table block 4 in block_group 0
[  224.796679][ T7795] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  224.829980][ T7795] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #18: comm syz.6.458: mark_inode_dirty error
[  224.852438][ T7795] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  225.605735][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.488386][ T7855] loop0: detected capacity change from 0 to 1024
[  228.534408][ T7855] EXT4-fs: Ignoring removed orlov option
[  228.560647][ T7855] EXT4-fs: inline encryption not supported
[  228.786947][ T7855] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.519591][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.846547][ T7874] loop0: detected capacity change from 0 to 2048
[  230.006706][ T7874] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.150555][ T7881] netlink: 56 bytes leftover after parsing attributes in process `syz.4.474'.
[  230.206715][ T7874] EXT4-fs warning (device loop0): dx_probe:833: inode #2: comm syz.0.473: Unrecognised inode hash code 20
[  230.257873][ T7874] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.473: Corrupt directory, running e2fsck is recommended
[  230.342427][ T7874] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #2: block 16: comm syz.0.473: lblock 0 mapped to illegal pblock 16 (length 1)
[  230.995337][ T7893] loop5: detected capacity change from 0 to 128
[  231.046365][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.320066][ T7913] loop5: detected capacity change from 0 to 256
[  233.377194][ T7913] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  233.421029][ T7913] FAT-fs (loop5): Filesystem has been set read-only
[  233.453130][ T7913] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  233.468385][ T7913] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  233.486458][   T27] audit: type=1800 audit(1770910610.629:9): pid=7913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.478" name="file1" dev="loop5" ino=1048610 res=0 errno=0
[  233.488958][ T7913] syz.5.478 (7913) used greatest stack depth: 20552 bytes left
[  235.244582][ T7937] loop5: detected capacity change from 0 to 1024
[  235.700356][ T7951] loop5: detected capacity change from 0 to 2048
[  235.787945][ T7951] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.965773][ T7951] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.485: Unrecognised inode hash code 20
[  235.986500][ T7951] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.485: Corrupt directory, running e2fsck is recommended
[  236.001298][ T7951] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.485: Unrecognised inode hash code 20
[  236.001328][ T7951] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.485: Corrupt directory, running e2fsck is recommended
[  236.076846][ T7959] loop0: detected capacity change from 0 to 1024
[  236.184069][ T6514] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  237.288737][ T6829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.665882][ T7981] netlink: 56 bytes leftover after parsing attributes in process `syz.5.490'.
[  241.677264][ T8005] af_packet: tpacket_rcv: packet too big, clamped from 112 to 4294967272. macoff=96
[  241.944419][ T8013] loop0: detected capacity change from 0 to 512
[  241.977259][ T8017] loop4: detected capacity change from 0 to 128
[  241.990072][ T8013] EXT4-fs: Ignoring removed i_version option
[  242.005661][ T8013] EXT4-fs: Ignoring removed bh option
[  242.065416][ T8017] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  242.119613][ T8017] ext4 filesystem being mounted at /55/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  242.150098][ T8013] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.236561][ T8013] ext4 filesystem being mounted at /131/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  242.894918][ T6796] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  242.931317][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.263723][ T8030] loop0: detected capacity change from 0 to 2048
[  243.407371][ T8030] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.606258][ T8030] EXT4-fs warning (device loop0): dx_probe:833: inode #2: comm syz.0.498: Unrecognised inode hash code 20
[  243.901989][ T8030] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.498: Corrupt directory, running e2fsck is recommended
[  243.917693][ T8030] EXT4-fs warning (device loop0): dx_probe:833: inode #2: comm syz.0.498: Unrecognised inode hash code 20
[  243.929918][ T8030] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.498: Corrupt directory, running e2fsck is recommended
[  243.972710][ T8030] EXT4-fs error (device loop0): ext4_add_entry:2474: inode #2: comm syz.0.498: Directory has corrupted htree index.
[  244.051877][ T8046] loop6: detected capacity change from 0 to 1024
[  244.150392][ T8046] EXT4-fs: Ignoring removed bh option
[  244.265840][ T8046] EXT4-fs: Ignoring removed nobh option
[  244.268843][ T8030] EXT4-fs error (device loop0): __ext4_get_inode_loc:4489: comm syz.0.498: Invalid inode table block 4 in block_group 0
[  244.290155][ T8046] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  244.290353][ T8030] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  244.319031][ T8030] EXT4-fs error (device loop0): ext4_add_nondir:2855: inode #18: comm syz.0.498: mark_inode_dirty error
[  244.351182][ T8030] EXT4-fs error (device loop0): __ext4_get_inode_loc:4489: comm syz.0.498: Invalid inode table block 4 in block_group 0
[  244.394970][ T8046] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  244.425179][ T8030] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  244.547829][ T8030] EXT4-fs error (device loop0): ext4_evict_inode:252: inode #18: comm syz.0.498: mark_inode_dirty error
[  244.583474][ T8030] EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  244.766805][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.413011][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.470601][ T8103] netlink: 56 bytes leftover after parsing attributes in process `syz.0.508'.
[  247.859033][ T8107] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  249.499615][ T1760] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  249.996679][ T1760] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  250.034078][ T1760] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  250.072471][ T1760] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  250.161509][ T1760] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  250.173202][ T1760] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.198341][ T1760] usb 5-1: config 0 descriptor??
[  250.660552][ T1760] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  250.769751][ T1760] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  250.895526][ T1760] usb 5-1: USB disconnect, device number 3
[  251.037127][ T8141] loop0: detected capacity change from 0 to 128
[  254.813530][ T8183] netlink: 56 bytes leftover after parsing attributes in process `syz.5.524'.
[  256.708140][ T8202] loop4: detected capacity change from 0 to 128
[  259.976288][    C0] sched: RT throttling activated
[  261.496014][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  261.502423][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  264.019280][ T8277] loop6: detected capacity change from 0 to 128
[  265.693978][ T8294] netlink: 56 bytes leftover after parsing attributes in process `syz.4.543'.
[  271.658808][ T8360] loop5: detected capacity change from 0 to 128
[  274.573424][ T8393] netlink: 20 bytes leftover after parsing attributes in process `syz.4.558'.
[  280.116779][ T8464] loop4: detected capacity change from 0 to 256
[  280.212994][ T8464] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  280.494726][ T8470] process 'syz.0.576' launched './file0' with NULL argv: empty string added
[  280.804385][ T8475] netlink: 20 bytes leftover after parsing attributes in process `syz.4.577'.
[  284.828626][ T8510] loop6: detected capacity change from 0 to 4096
[  285.077079][ T8510] EXT4-fs (loop6): Test dummy encryption mode enabled
[  285.368761][ T8510] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.491461][ T8528] loop4: detected capacity change from 0 to 8
[  286.693673][ T8528] SQUASHFS error: Unable to read directory block [629:26]
[  286.756642][ T8510] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  286.818841][ T8534] loop0: detected capacity change from 0 to 1024
[  287.439716][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.630436][ T8549] loop0: detected capacity change from 0 to 512
[  287.685720][ T8549] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  287.738280][ T8549] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.807444][ T8549] EXT4-fs error (device loop0): ext4_readdir:263: inode #2: block 3: comm syz.0.590: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  287.942733][ T8549] EXT4-fs error (device loop0): ext4_readdir:263: inode #2: block 12: comm syz.0.590: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  288.913246][ T8549] EXT4-fs error (device loop0): ext4_readdir:263: inode #2: block 13: comm syz.0.590: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  289.419356][ T5768] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  290.381609][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.542572][ T8576] loop6: detected capacity change from 0 to 512
[  291.664727][ T8576] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.823894][ T8576] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  292.063604][ T8576] EXT4-fs error (device loop6): ext4_validate_inode_bitmap:106: comm syz.6.596: Corrupt inode bitmap - block_group = 0, inode_bitmap = 20
[  292.079055][ T8585] netlink: 20 bytes leftover after parsing attributes in process `syz.0.595'.
[  292.148930][ T8576] EXT4-fs error (device loop6) in ext4_free_inode:363: Filesystem failed CRC
[  292.319569][ T8589] loop4: detected capacity change from 0 to 1764
[  292.389747][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.742972][ T8598] loop6: detected capacity change from 0 to 2048
[  292.784857][ T8598] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  292.925173][ T7039] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  293.144421][ T7039] usb 5-1: Using ep0 maxpacket: 8
[  293.174360][ T7039] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  293.187947][ T7039] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  293.210194][ T7039] usb 5-1: config 0 interface 0 has no altsetting 0
[  293.345311][ T7039] usb 5-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  293.355717][ T7039] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.366944][ T7039] usb 5-1: config 0 descriptor??
[  294.482497][ T7039] logitech 0003:046D:C294.0009: unbalanced collection at end of report description
[  294.507999][ T7039] logitech 0003:046D:C294.0009: parse failed
[  294.514068][ T8613] syz.5.604(8613): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  294.526811][ T7039] logitech: probe of 0003:046D:C294.0009 failed with error -22
[  294.728053][ T1760] usb 5-1: USB disconnect, device number 4
[  299.285989][ T5834] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  299.639056][ T5834] usb 7-1: Using ep0 maxpacket: 16
[  299.821290][ T5834] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.846113][ T5834] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  300.663106][ T5834] usb 7-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.00
[  300.700161][ T5834] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.732584][ T8683] loop4: detected capacity change from 0 to 1024
[  302.170609][ T5834] usb 7-1: config 0 descriptor??
[  302.236416][ T5834] usb 7-1: can't set config #0, error -71
[  302.269365][ T5834] usb 7-1: USB disconnect, device number 3
[  303.737404][   T42] hfsplus: b-tree write err: -5, ino 4
[  304.275953][ T8703] netlink: 20 bytes leftover after parsing attributes in process `syz.6.619'.
[  304.772417][ T8705] loop0: detected capacity change from 0 to 512
[  304.811126][ T8705] ext4: Unknown parameter 'nouser_xattr'
[  305.135193][ T5772] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  309.548406][ T8757] loop4: detected capacity change from 0 to 512
[  309.621999][ T8757] ext4: Unknown parameter 'nouser_xattr'
[  312.967244][ T8803] netlink: 20 bytes leftover after parsing attributes in process `syz.4.642'.
[  313.116844][ T8806] loop6: detected capacity change from 0 to 512
[  313.132036][ T8806] ext4: Unknown parameter 'nouser_xattr'
[  316.272724][ T8853] loop4: detected capacity change from 0 to 512
[  317.065172][ T8853] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  317.117838][ T8853] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  317.151472][ T8853] System zones: 1-12
[  317.155603][ T8853] EXT4-fs (loop4): orphan cleanup on readonly fs
[  317.235322][ T8853] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.655: bg 0: block 361: padding at end of block bitmap is not set
[  317.311352][ T8853] EXT4-fs (loop4): Remounting filesystem read-only
[  317.366891][ T8853] EXT4-fs (loop4): 1 truncate cleaned up
[  317.429032][ T8853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  317.635432][   T27] audit: type=1326 audit(1770910945.336:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  317.725839][   T27] audit: type=1326 audit(1770910945.336:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  317.784974][   T27] audit: type=1326 audit(1770910945.401:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  317.813088][   T27] audit: type=1326 audit(1770910945.401:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  317.842509][   T27] audit: type=1326 audit(1770910945.401:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  318.066790][   T27] audit: type=1326 audit(1770910945.401:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  318.884064][   T27] audit: type=1326 audit(1770910945.401:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  318.978115][   T27] audit: type=1326 audit(1770910945.439:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  319.059641][   T27] audit: type=1326 audit(1770910945.467:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  319.165531][   T27] audit: type=1326 audit(1770910945.467:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8866 comm="syz.5.657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0dda99bf79 code=0x7ffc0000
[  319.190514][ T6796] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz-executor: error -117 reading directory block
[  320.173611][ T8900] loop0: detected capacity change from 0 to 256
[  320.233068][ T8900] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d)
[  321.616165][ T8910] loop6: detected capacity change from 0 to 1024
[  321.659410][ T8910] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  321.812201][ T8910] EXT4-fs (loop6): group descriptors corrupted!
[  321.979922][ T8870] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  324.048025][ T8934] loop0: detected capacity change from 0 to 1024
[  324.130808][ T8934] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a016c118, mo2=0002]
[  324.139071][ T8934] System zones: 0-1, 3-12
[  324.241428][ T8934] EXT4-fs (loop0): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.624742][ T8946] loop6: detected capacity change from 0 to 256
[  324.819443][ T8946] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d)
[  325.003502][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  325.004611][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  325.023210][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  325.033486][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  325.044504][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  325.052418][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  325.070712][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  325.120078][ T8951] loop5: detected capacity change from 0 to 128
[  325.189313][ T5778] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  325.211576][ T5778] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  325.223752][ T5778] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  325.238515][ T5778] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  325.251173][ T5778] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  325.264420][ T5778] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  325.334431][   T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  325.411447][ T8955] loop0: detected capacity change from 0 to 2048
[  325.552848][ T7039] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  325.682736][ T8955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  325.829473][ T7039] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  325.897625][   T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.012814][ T7039] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  326.288300][ T7039] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  326.386190][ T8954] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.674: bg 0: block 234: padding at end of block bitmap is not set
[  326.450182][ T7039] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  326.502197][ T7039] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.602091][ T7039] usb 6-1: config 0 descriptor??
[  326.622978][   T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.863222][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.975812][   T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.069994][ T7039] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  327.095638][ T7039] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  327.128971][ T7039] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  327.152926][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  327.162527][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  327.189511][ T7039] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  327.243101][ T7039] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x6
[  327.275918][ T7039] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x3
[  327.284891][ T7039] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  327.363562][ T7039] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  327.415238][ T8948] chnl_net:caif_netlink_parms(): no params data found
[  327.468585][ T7039] usb 6-1: USB disconnect, device number 3
[  327.477160][   T51] Bluetooth: hci0: command tx timeout
[  327.568060][ T8981] fido_id[8981]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  327.884302][ T8948] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.891619][ T8948] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.928141][ T8948] bridge_slave_0: entered allmulticast mode
[  327.964616][ T8948] bridge_slave_0: entered promiscuous mode
[  328.065444][ T8948] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.072650][ T8948] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.087124][ T8948] bridge_slave_1: entered allmulticast mode
[  328.094673][ T8948] bridge_slave_1: entered promiscuous mode
[  328.246385][ T8948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  328.280102][ T8948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  328.447373][ T8948] team0: Port device team_slave_0 added
[  328.457417][ T8948] team0: Port device team_slave_1 added
[  328.541391][ T8948] batman_adv: batadv0: Adding interface: batadv_slave_0
[  328.566801][ T8948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  328.637946][ T8948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  329.800231][   T51] Bluetooth: hci0: command tx timeout
[  329.895761][ T8948] batman_adv: batadv0: Adding interface: batadv_slave_1
[  329.902762][ T8948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  330.006540][ T8948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  330.301504][ T9021] loop5: detected capacity change from 0 to 1024
[  330.391943][ T9021] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  330.461292][ T8948] hsr_slave_0: entered promiscuous mode
[  330.505680][ T8948] hsr_slave_1: entered promiscuous mode
[  332.192177][   T51] Bluetooth: hci0: command tx timeout
[  332.278697][   T11] hsr_slave_0: left promiscuous mode
[  332.445953][   T11] hsr_slave_1: left promiscuous mode
[  333.289465][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  333.328136][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  333.357367][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  333.364846][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  333.669662][ T9051] loop5: detected capacity change from 0 to 256
[  334.040248][ T9051] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d)
[  334.547737][   T51] Bluetooth: hci0: command tx timeout
[  334.596549][   T11] bridge_slave_1: left allmulticast mode
[  334.599673][ T9048] loop6: detected capacity change from 0 to 2048
[  334.636259][   T11] bridge_slave_1: left promiscuous mode
[  334.687403][ T9048] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  334.697788][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.726625][   T11] bridge_slave_0: left allmulticast mode
[  334.732348][   T11] bridge_slave_0: left promiscuous mode
[  334.747944][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.887754][ T9047] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.687: bg 0: block 234: padding at end of block bitmap is not set
[  334.905010][   T11] veth1_macvtap: left promiscuous mode
[  334.916427][   T11] veth0_macvtap: left promiscuous mode
[  334.922343][   T11] veth1_vlan: left promiscuous mode
[  334.927848][   T11] veth0_vlan: left promiscuous mode
[  335.107422][ T6884] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.092036][ T9068] loop6: detected capacity change from 0 to 8
[  337.201625][   T11] team0 (unregistering): Port device team_slave_1 removed
[  337.290166][   T11] team0 (unregistering): Port device team_slave_0 removed
[  337.381353][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  337.427779][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  337.773942][   T11] bond0 (unregistering): Released all slaves
[  339.576391][ T8948] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  339.957827][ T8948] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  339.960220][ T8948] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  339.962357][ T8948] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  341.053625][ T8948] 8021q: adding VLAN 0 to HW filter on device bond0
[  341.292514][ T9133] loop5: detected capacity change from 0 to 2048
[  342.063561][ T8948] 8021q: adding VLAN 0 to HW filter on device team0
[  342.094127][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.101365][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  342.178347][ T2896] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.185538][ T2896] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.195719][ T9133] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  343.140400][ T9139] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  343.370499][ T8948] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  343.371652][ T9130] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.698: bg 0: block 234: padding at end of block bitmap is not set
[  343.392046][ T8948] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  343.532876][ T9151] loop0: detected capacity change from 0 to 256
[  343.623456][ T9151] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  343.642465][ T9151] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  343.694064][ T9151] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  343.711912][ T6829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.728859][   T27] kauditd_printk_skb: 37 callbacks suppressed
[  343.728872][   T27] audit: type=1800 audit(1770910969.750:57): pid=9151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.700" name="file1" dev="loop0" ino=1048627 res=0 errno=0
[  344.232343][ T8948] 8021q: adding VLAN 0 to HW filter on device batadv0
[  344.571213][   T23] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  344.727110][   T49] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.791746][   T23] usb 6-1: not running at top speed; connect to a high speed hub
[  344.806110][   T23] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 109, changing to 4
[  344.847999][   T23] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  344.883102][   T23] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.923804][   T23] usb 6-1: Product: syz
[  344.928393][   T23] usb 6-1: Manufacturer: syz
[  344.933029][   T23] usb 6-1: SerialNumber: syz
[  344.964755][   T49] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.220704][   T49] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.352653][   T23] usb 6-1: 2:1 : unknown format tag 0x1 is detected.  processed as MPEG.
[  345.361154][   T23] usb 6-1: found format II with max.bitrate = 5, frame size=4096
[  345.386188][ T8948] veth0_vlan: entered promiscuous mode
[  345.392619][   T23] usb 6-1: 2:1 : unknown format tag 0x1 is detected.  processed as MPEG.
[  345.406588][   T23] usb 6-1: found format II with max.bitrate = 5, frame size=4096
[  345.442285][   T23] usb 6-1: 2:1: cannot set freq 12762718 to ep 0x82
[  345.453405][   T49] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.511600][ T8948] veth1_vlan: entered promiscuous mode
[  345.565135][   T23] usb 6-1: USB disconnect, device number 4
[  345.725435][ T5784] udevd[5784]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  345.800116][ T8948] veth0_macvtap: entered promiscuous mode
[  345.831806][ T8948] veth1_macvtap: entered promiscuous mode
[  345.894052][ T8948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.912931][ T8948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.927851][ T8948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.965303][ T8948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  345.987512][ T8948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  345.999778][ T8948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  346.019008][ T8948] batman_adv: batadv0: Interface activated: batadv_slave_0
[  346.051017][ T8948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  346.064907][ T8948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  346.078379][ T8948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  346.094180][ T8948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  346.105427][ T8948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  346.121844][ T8948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  346.138580][ T8948] batman_adv: batadv0: Interface activated: batadv_slave_1
[  346.172374][ T5778] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  346.182116][ T5778] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  346.197147][ T5778] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  346.206512][ T5778] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  346.215106][ T5778] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  346.224453][ T5778] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  346.295959][ T8948] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  346.304856][ T8948] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  346.313592][ T8948] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  346.323619][ T8948] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  346.652720][ T2896] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  346.678761][ T2896] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  346.801249][ T2896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  346.829665][ T2896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  347.307114][ T9193] chnl_net:caif_netlink_parms(): no params data found
[  347.880832][ T9193] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.897917][ T9193] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.911282][ T9193] bridge_slave_0: entered allmulticast mode
[  347.926570][ T9193] bridge_slave_0: entered promiscuous mode
[  348.010112][ T9193] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.024495][ T9193] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.031784][ T9193] bridge_slave_1: entered allmulticast mode
[  348.042587][ T9193] bridge_slave_1: entered promiscuous mode
[  348.200163][ T9193] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  348.231973][ T9193] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  348.448706][ T5778] Bluetooth: hci2: command tx timeout
[  348.573045][   T49] hsr_slave_0: left promiscuous mode
[  348.579329][   T49] hsr_slave_1: left promiscuous mode
[  348.585608][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  348.593073][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  348.601122][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  349.133154][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.195229][ T9235] loop7: detected capacity change from 0 to 256
[  349.241670][ T9235] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d)
[  349.357797][   T49] bridge_slave_1: left allmulticast mode
[  349.990522][   T49] bridge_slave_1: left promiscuous mode
[  350.023882][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  350.081826][   T49] bridge_slave_0: left allmulticast mode
[  350.126652][   T49] bridge_slave_0: left promiscuous mode
[  350.142053][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  350.225763][   T49] veth1_macvtap: left promiscuous mode
[  350.242649][   T49] veth0_macvtap: left promiscuous mode
[  350.249447][   T49] veth1_vlan: left promiscuous mode
[  350.261706][   T49] veth0_vlan: left promiscuous mode
[  350.654163][ T5778] Bluetooth: hci2: command tx timeout
[  352.017295][   T49] team0 (unregistering): Port device team_slave_1 removed
[  352.063588][   T49] team0 (unregistering): Port device team_slave_0 removed
[  352.110695][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  352.159498][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  352.527323][   T49] bond0 (unregistering): Released all slaves
[  352.736007][ T9193] team0: Port device team_slave_0 added
[  352.747959][ T9193] team0: Port device team_slave_1 added
[  352.828939][ T9193] batman_adv: batadv0: Adding interface: batadv_slave_0
[  352.837049][ T9193] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.863895][ T9193] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  352.878004][ T5778] Bluetooth: hci2: command tx timeout
[  352.884135][ T9193] batman_adv: batadv0: Adding interface: batadv_slave_1
[  352.891182][ T9193] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.917614][ T9193] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  353.035689][ T9193] hsr_slave_0: entered promiscuous mode
[  353.052307][ T9193] hsr_slave_1: entered promiscuous mode
[  353.058727][ T9193] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  353.066928][ T9193] Cannot create hsr debugfs directory
[  353.392706][ T9193] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  353.413247][ T9193] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  353.425834][ T9193] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  353.442909][ T9193] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  353.619195][ T9193] 8021q: adding VLAN 0 to HW filter on device bond0
[  353.649243][ T9193] 8021q: adding VLAN 0 to HW filter on device team0
[  353.715637][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  353.722860][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  353.805235][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  353.812467][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  353.866506][ T9282] loop7: detected capacity change from 0 to 2048
[  354.042509][ T9282] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  354.204686][ T9281] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.711: bg 0: block 234: padding at end of block bitmap is not set
[  354.402287][ T8948] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.757023][ T2956] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  354.803679][ T9297] Bluetooth: MGMT ver 1.22
[  354.882593][ T9193] 8021q: adding VLAN 0 to HW filter on device batadv0
[  354.999464][ T2956] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.101694][ T5778] Bluetooth: hci2: command tx timeout
[  355.234781][ T2956] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.574219][ T2956] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.173891][   T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  356.185142][   T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  356.194027][   T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  356.224279][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  356.245609][   T51] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  356.253006][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  356.734154][ T9193] veth0_vlan: entered promiscuous mode
[  356.768493][ T9327] loop7: detected capacity change from 0 to 8192
[  356.864231][ T9193] veth1_vlan: entered promiscuous mode
[  358.165832][ T9193] veth0_macvtap: entered promiscuous mode
[  358.185022][ T9193] veth1_macvtap: entered promiscuous mode
[  358.265673][ T9193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  358.284777][ T9193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  358.295108][ T9193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  358.305767][ T9193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  358.315780][ T9193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  358.326401][ T9193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  358.337983][ T9193] batman_adv: batadv0: Interface activated: batadv_slave_0
[  358.379351][ T9193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  358.393006][ T9193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  358.413362][ T9193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  358.424442][ T9193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  358.437162][ T5778] Bluetooth: hci3: command tx timeout
[  358.455843][ T9193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  358.468145][ T9193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  358.482860][ T9193] batman_adv: batadv0: Interface activated: batadv_slave_1
[  358.536966][ T9193] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  358.567350][ T9193] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  358.595799][ T9193] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  358.618591][ T9193] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  358.734659][ T9321] chnl_net:caif_netlink_parms(): no params data found
[  358.895557][ T2956] hsr_slave_0: left promiscuous mode
[  358.903812][ T2956] hsr_slave_1: left promiscuous mode
[  358.911563][ T2956] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  358.919563][ T2956] batman_adv: batadv0: Removing interface: batadv_slave_0
[  358.927183][ T2956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  358.934929][ T2956] batman_adv: batadv0: Removing interface: batadv_slave_1
[  358.945412][ T2956] bridge_slave_1: left allmulticast mode
[  358.957828][ T2956] bridge_slave_1: left promiscuous mode
[  358.963904][ T2956] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.974033][ T2956] bridge_slave_0: left allmulticast mode
[  358.979709][ T2956] bridge_slave_0: left promiscuous mode
[  358.985692][ T2956] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.009162][ T2956] veth1_macvtap: left promiscuous mode
[  359.015237][ T2956] veth0_macvtap: left promiscuous mode
[  359.020783][ T2956] veth1_vlan: left promiscuous mode
[  359.026211][ T2956] veth0_vlan: left promiscuous mode
[  359.616717][ T2956] team0 (unregistering): Port device team_slave_1 removed
[  359.664285][ T2956] team0 (unregistering): Port device team_slave_0 removed
[  359.706888][ T2956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  359.765614][ T2956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  360.120250][ T2956] bond0 (unregistering): Released all slaves
[  360.300368][ T9321] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.309000][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.311588][ T9321] bridge0: port 1(bridge_slave_0) entered disabled state
[  360.316835][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.328136][ T9321] bridge_slave_0: entered allmulticast mode
[  360.339342][ T9321] bridge_slave_0: entered promiscuous mode
[  360.348657][ T9321] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.356255][ T9321] bridge0: port 2(bridge_slave_1) entered disabled state
[  360.365623][ T9321] bridge_slave_1: entered allmulticast mode
[  360.378510][ T9321] bridge_slave_1: entered promiscuous mode
[  360.501186][ T9321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  360.520913][ T9321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  360.549183][  T142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.567658][  T142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.634185][ T9321] team0: Port device team_slave_0 added
[  360.661225][ T5778] Bluetooth: hci3: command tx timeout
[  360.673935][ T9321] team0: Port device team_slave_1 added
[  360.747817][ T9321] batman_adv: batadv0: Adding interface: batadv_slave_0
[  360.754838][ T9321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.864104][ T9321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  360.898293][ T9321] batman_adv: batadv0: Adding interface: batadv_slave_1
[  360.905301][ T9321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  361.025899][ T9321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  361.536262][ T9321] hsr_slave_0: entered promiscuous mode
[  361.575785][ T9321] hsr_slave_1: entered promiscuous mode
[  361.599851][ T9321] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  361.637127][ T9321] Cannot create hsr debugfs directory
[  362.004872][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  362.019746][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  362.028439][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  362.041292][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  362.049811][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  362.057467][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  362.164905][ T9380] loop8: detected capacity change from 0 to 2048
[  362.204716][   T42] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.272908][ T9380] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.447157][ T9379] EXT4-fs error (device loop8): ext4_validate_block_bitmap:439: comm syz.8.726: bg 0: block 234: padding at end of block bitmap is not set
[  362.465755][   T42] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.494508][ T9193] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.641079][   T42] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.824859][   T42] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.886552][ T5778] Bluetooth: hci3: command tx timeout
[  362.927789][ T9321] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  363.022921][ T9321] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  363.066965][ T9321] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  363.093718][ T9321] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  363.187756][ T9401] loop0: detected capacity change from 0 to 1024
[  363.286903][ T9401] hfsplus: request for non-existent node 16777216 in B*Tree
[  363.349781][ T9401] hfsplus: request for non-existent node 16777216 in B*Tree
[  363.536736][ T9401] hfsplus: request for non-existent node 16777216 in B*Tree
[  363.592195][ T9401] hfsplus: request for non-existent node 16777216 in B*Tree
[  363.625835][ T9401] hfsplus: request for non-existent node 16777216 in B*Tree
[  363.634892][ T9401] hfsplus: request for non-existent node 16777216 in B*Tree
[  363.927810][ T9377] chnl_net:caif_netlink_parms(): no params data found
[  364.252773][ T5778] Bluetooth: hci0: command tx timeout
[  364.536036][ T9377] bridge0: port 1(bridge_slave_0) entered blocking state
[  364.554758][ T9377] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.562157][ T9377] bridge_slave_0: entered allmulticast mode
[  364.570278][ T9377] bridge_slave_0: entered promiscuous mode
[  364.614070][ T9377] bridge0: port 2(bridge_slave_1) entered blocking state
[  364.631024][ T9377] bridge0: port 2(bridge_slave_1) entered disabled state
[  364.653196][ T9377] bridge_slave_1: entered allmulticast mode
[  364.674280][ T9377] bridge_slave_1: entered promiscuous mode
[  364.904518][ T9377] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  365.005762][ T9377] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  365.026016][ T9321] 8021q: adding VLAN 0 to HW filter on device bond0
[  365.108980][ T5778] Bluetooth: hci3: command tx timeout
[  365.111412][ T9377] team0: Port device team_slave_0 added
[  365.255879][ T9321] 8021q: adding VLAN 0 to HW filter on device team0
[  365.285576][ T9377] team0: Port device team_slave_1 added
[  365.459343][ T2956] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.466607][ T2956] bridge0: port 1(bridge_slave_0) entered forwarding state
[  365.551921][ T9443] loop8: detected capacity change from 0 to 1024
[  365.823449][ T9443] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.353262][ T9443] ==================================================================
[  366.361402][ T9443] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  366.369165][ T9443] Read of size 18446744073709551588 at addr ffff8880249da040 by task syz.8.735/9443
[  366.378556][ T9443] 
[  366.380905][ T9443] CPU: 1 PID: 9443 Comm: syz.8.735 Not tainted syzkaller #0
[  366.388212][ T9443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  366.398294][ T9443] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  366.401602][ T9443]  <TASK>
[  366.404553][ T9443]  dump_stack_lvl+0x18c/0x250
[  366.409278][ T9443]  ? read_lock_is_recursive+0x20/0x20
[  366.414693][ T9443]  ? show_regs_print_info+0x20/0x20
[  366.419926][ T9443]  ? load_image+0x400/0x400
[  366.424494][ T9443]  ? _raw_spin_lock_irqsave+0xc0/0x100
[  366.429991][ T9443]  ? __virt_addr_valid+0x18c/0x540
[  366.435146][ T9443]  ? __virt_addr_valid+0x469/0x540
[  366.440289][ T9443]  print_report+0xa8/0x210
[  366.444741][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  366.450239][ T9443]  kasan_report+0x117/0x150
[  366.454777][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  366.460270][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  366.465763][ T9443]  kasan_check_range+0x241/0x290
[  366.470730][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  366.476226][ T9443]  __asan_memmove+0x29/0x70
[  366.480768][ T9443]  ext4_xattr_set_entry+0x94b/0x1e90
[  366.486105][ T9443]  ext4_xattr_block_set+0xae8/0x32b0
[  366.491425][ T9443]  ? ext4_destroy_inode+0x200/0x200
[  366.496660][ T9443]  ? proc_nr_inodes+0x230/0x230
[  366.501542][ T9443]  ? do_raw_spin_unlock+0x121/0x230
[  366.506777][ T9443]  ? _raw_spin_unlock+0x28/0x40
[  366.511657][ T9443]  ? ext4_xattr_block_find+0x350/0x350
[  366.517155][ T9443]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  366.522568][ T9443]  ext4_xattr_set_handle+0x1280/0x14c0
[  366.528067][ T9443]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  366.534087][ T9443]  ? __ext4_journal_start_sb+0x259/0x560
[  366.539758][ T9443]  ext4_xattr_set+0x252/0x340
[  366.544481][ T9443]  ? end_current_label_crit_section+0x170/0x170
[  366.550758][ T9443]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  366.556346][ T9443]  ? posix_xattr_acl+0x93/0xb0
[  366.561142][ T9443]  ? ext4_xattr_trusted_get+0x40/0x40
[  366.566554][ T9443]  __vfs_setxattr+0x431/0x470
[  366.571276][ T9443]  __vfs_setxattr_noperm+0x12d/0x5e0
[  366.576597][ T9443]  vfs_setxattr+0x16b/0x2f0
[  366.581142][ T9443]  ? xattr_permission+0x470/0x470
[  366.586201][ T9443]  ? __mnt_want_write+0x223/0x2a0
[  366.591264][ T9443]  ? path_setxattr+0x3a1/0x5d0
[  366.596062][ T9443]  path_setxattr+0x3f3/0x5d0
[  366.600687][ T9443]  ? simple_xattrs_free+0x150/0x150
[  366.605935][ T9443]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  366.611955][ T9443]  ? lock_chain_count+0x20/0x20
[  366.616846][ T9443]  __x64_sys_lsetxattr+0xb8/0xd0
[  366.621830][ T9443]  do_syscall_64+0x55/0xa0
[  366.626281][ T9443]  ? clear_bhb_loop+0x40/0x90
[  366.630981][ T9443]  ? clear_bhb_loop+0x40/0x90
[  366.635692][ T9443]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  366.641618][ T9443] RIP: 0033:0x7f0002b9bf79
[  366.646065][ T9443] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  366.665705][ T9443] RSP: 002b:00007f0003a3f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  366.674155][ T9443] RAX: ffffffffffffffda RBX: 00007f0002e15fa0 RCX: 00007f0002b9bf79
[  366.682155][ T9443] RDX: 0000200000000440 RSI: 0000200000000180 RDI: 00002000000001c0
[  366.690156][ T9443] RBP: 00007f0002c327e0 R08: 0000000000000000 R09: 0000000000000000
[  366.698161][ T9443] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  366.706159][ T9443] R13: 00007f0002e16038 R14: 00007f0002e15fa0 R15: 00007ffdab3ce918
[  366.714172][ T9443]  </TASK>
[  366.717220][ T9443] 
[  366.719560][ T9443] Allocated by task 9443:
[  366.723911][ T9443]  kasan_set_track+0x4e/0x70
[  366.728527][ T9443]  __kasan_kmalloc+0x8f/0xa0
[  366.733130][ T9443]  __kmalloc_node_track_caller+0xb2/0x230
[  366.738875][ T9443]  kmemdup+0x2b/0x70
[  366.742770][ T9443]  ext4_xattr_block_set+0x9ea/0x32b0
[  366.748051][ T9443]  ext4_xattr_set_handle+0x1280/0x14c0
[  366.753515][ T9443]  ext4_xattr_set+0x252/0x340
[  366.758186][ T9443]  __vfs_setxattr+0x431/0x470
[  366.762856][ T9443]  __vfs_setxattr_noperm+0x12d/0x5e0
[  366.768132][ T9443]  vfs_setxattr+0x16b/0x2f0
[  366.772633][ T9443]  path_setxattr+0x3f3/0x5d0
[  366.777225][ T9443]  __x64_sys_lsetxattr+0xb8/0xd0
[  366.782179][ T9443]  do_syscall_64+0x55/0xa0
[  366.786604][ T9443]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  366.792512][ T9443] 
[  366.794824][ T9443] Last potentially related work creation:
[  366.800543][ T9443]  kasan_save_stack+0x3e/0x60
[  366.805210][ T9443]  __kasan_record_aux_stack+0xaf/0xc0
[  366.810575][ T9443]  kvfree_call_rcu+0xee/0x790
[  366.815245][ T9443]  neigh_periodic_work+0x3f7/0xd70
[  366.820358][ T9443]  process_scheduled_works+0xa5d/0x15d0
[  366.825923][ T9443]  worker_thread+0xa55/0xfc0
[  366.830523][ T9443]  kthread+0x2fa/0x390
[  366.834603][ T9443]  ret_from_fork+0x48/0x80
[  366.839015][ T9443]  ret_from_fork_asm+0x11/0x20
[  366.843773][ T9443] 
[  366.846088][ T9443] The buggy address belongs to the object at ffff8880249da000
[  366.846088][ T9443]  which belongs to the cache kmalloc-1k of size 1024
[  366.860136][ T9443] The buggy address is located 64 bytes inside of
[  366.860136][ T9443]  1024-byte region [ffff8880249da000, ffff8880249da400)
[  366.873410][ T9443] 
[  366.875738][ T9443] The buggy address belongs to the physical page:
[  366.882133][ T9443] page:ffffea0000927600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x249d8
[  366.892272][ T9443] head:ffffea0000927600 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  366.901195][ T9443] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  366.909164][ T9443] page_type: 0xffffffff()
[  366.913489][ T9443] raw: 00fff00000000840 ffff888017c41dc0 ffffea0001675a00 dead000000000002
[  366.922070][ T9443] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  366.930637][ T9443] page dumped because: kasan: bad access detected
[  366.937046][ T9443] page_owner tracks the page as allocated
[  366.942764][ T9443] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 2919, tgid 2919 (kworker/u4:8), ts 77699656354, free_ts 77644814035
[  366.963417][ T9443]  post_alloc_hook+0x1c1/0x200
[  366.968189][ T9443]  get_page_from_freelist+0x1951/0x19e0
[  366.973746][ T9443]  __alloc_pages+0x1f0/0x460
[  366.978332][ T9443]  alloc_slab_page+0x5d/0x160
[  366.983004][ T9443]  new_slab+0x87/0x2d0
[  366.987088][ T9443]  ___slab_alloc+0xc5d/0x12f0
[  366.991780][ T9443]  __kmem_cache_alloc_node+0x19e/0x250
[  366.997240][ T9443]  __kmalloc+0xa4/0x230
[  367.001495][ T9443]  ieee802_11_parse_elems_full+0xb9/0x20c0
[  367.007342][ T9443]  ieee80211_inform_bss+0x127/0x1080
[  367.012635][ T9443]  rdev_inform_bss+0x106/0x410
[  367.017436][ T9443]  cfg80211_inform_bss_frame_data+0xb8b/0x13d0
[  367.023601][ T9443]  ieee80211_bss_info_update+0x759/0x9b0
[  367.029250][ T9443]  ieee80211_ibss_rx_queued_mgmt+0x18ae/0x2c80
[  367.035410][ T9443]  ieee80211_iface_work+0x717/0xc70
[  367.040609][ T9443]  cfg80211_wiphy_work+0x225/0x260
[  367.045730][ T9443] page last free stack trace:
[  367.050405][ T9443]  free_unref_page_prepare+0x7b2/0x8c0
[  367.055869][ T9443]  free_unref_page+0x32/0x2e0
[  367.060543][ T9443]  __slab_free+0x35a/0x400
[  367.064957][ T9443]  qlist_free_all+0x75/0xd0
[  367.069478][ T9443]  kasan_quarantine_reduce+0x143/0x160
[  367.074940][ T9443]  __kasan_slab_alloc+0x22/0x80
[  367.079802][ T9443]  slab_post_alloc_hook+0x6e/0x4b0
[  367.084905][ T9443]  kmem_cache_alloc_node+0x14c/0x320
[  367.090184][ T9443]  __alloc_skb+0x103/0x2c0
[  367.094593][ T9443]  mld_newpack+0x154/0xbe0
[  367.099022][ T9443]  add_grhead+0x5a/0x2a0
[  367.103255][ T9443]  add_grec+0x13ad/0x1660
[  367.107590][ T9443]  mld_send_initial_cr+0xed/0x240
[  367.112629][ T9443]  mld_dad_work+0x40/0x270
[  367.117037][ T9443]  process_scheduled_works+0xa5d/0x15d0
[  367.122578][ T9443]  worker_thread+0xa55/0xfc0
[  367.127159][ T9443] 
[  367.129488][ T9443] Memory state around the buggy address:
[  367.135136][ T9443]  ffff8880249d9f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  367.143193][ T9443]  ffff8880249d9f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  367.151257][ T9443] >ffff8880249da000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  367.159329][ T9443]                                            ^
[  367.165470][ T9443]  ffff8880249da080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  367.173523][ T9443]  ffff8880249da100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  367.181573][ T9443] ==================================================================
[  367.207501][ T5778] Bluetooth: hci0: command tx timeout
[  367.215547][ T9443] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  367.222790][ T9443] CPU: 0 PID: 9443 Comm: syz.8.735 Not tainted syzkaller #0
[  367.230101][ T9443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  367.240180][ T9443] Call Trace:
[  367.243480][ T9443]  <TASK>
[  367.246416][ T9443]  dump_stack_lvl+0x18c/0x250
[  367.251108][ T9443]  ? show_regs_print_info+0x20/0x20
[  367.256312][ T9443]  ? load_image+0x400/0x400
[  367.260825][ T9443]  panic+0x2dc/0x730
[  367.264725][ T9443]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  367.270890][ T9443]  ? bpf_jit_dump+0xd0/0xd0
[  367.275398][ T9443]  ? _raw_spin_unlock_irqrestore+0x111/0x120
[  367.281380][ T9443]  ? _raw_spin_unlock+0x40/0x40
[  367.286237][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  367.291705][ T9443]  check_panic_on_warn+0x84/0xa0
[  367.296648][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  367.302114][ T9443]  end_report+0x6f/0x130
[  367.306361][ T9443]  kasan_report+0x128/0x150
[  367.310867][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  367.316334][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  367.321797][ T9443]  kasan_check_range+0x241/0x290
[  367.326740][ T9443]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  367.332212][ T9443]  __asan_memmove+0x29/0x70
[  367.336722][ T9443]  ext4_xattr_set_entry+0x94b/0x1e90
[  367.342027][ T9443]  ext4_xattr_block_set+0xae8/0x32b0
[  367.347330][ T9443]  ? ext4_destroy_inode+0x200/0x200
[  367.352539][ T9443]  ? proc_nr_inodes+0x230/0x230
[  367.357393][ T9443]  ? do_raw_spin_unlock+0x121/0x230
[  367.362599][ T9443]  ? _raw_spin_unlock+0x28/0x40
[  367.367454][ T9443]  ? ext4_xattr_block_find+0x350/0x350
[  367.372921][ T9443]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  367.378304][ T9443]  ext4_xattr_set_handle+0x1280/0x14c0
[  367.383777][ T9443]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  367.389766][ T9443]  ? __ext4_journal_start_sb+0x259/0x560
[  367.395410][ T9443]  ext4_xattr_set+0x252/0x340
[  367.400096][ T9443]  ? end_current_label_crit_section+0x170/0x170
[  367.406348][ T9443]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  367.411902][ T9443]  ? posix_xattr_acl+0x93/0xb0
[  367.416665][ T9443]  ? ext4_xattr_trusted_get+0x40/0x40
[  367.422043][ T9443]  __vfs_setxattr+0x431/0x470
[  367.426731][ T9443]  __vfs_setxattr_noperm+0x12d/0x5e0
[  367.432026][ T9443]  vfs_setxattr+0x16b/0x2f0
[  367.436536][ T9443]  ? xattr_permission+0x470/0x470
[  367.441567][ T9443]  ? __mnt_want_write+0x223/0x2a0
[  367.446600][ T9443]  ? path_setxattr+0x3a1/0x5d0
[  367.451369][ T9443]  path_setxattr+0x3f3/0x5d0
[  367.455966][ T9443]  ? simple_xattrs_free+0x150/0x150
[  367.461182][ T9443]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  367.467168][ T9443]  ? lock_chain_count+0x20/0x20
[  367.472029][ T9443]  __x64_sys_lsetxattr+0xb8/0xd0
[  367.476974][ T9443]  do_syscall_64+0x55/0xa0
[  367.481404][ T9443]  ? clear_bhb_loop+0x40/0x90
[  367.486087][ T9443]  ? clear_bhb_loop+0x40/0x90
[  367.490772][ T9443]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  367.496667][ T9443] RIP: 0033:0x7f0002b9bf79
[  367.501086][ T9443] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  367.520698][ T9443] RSP: 002b:00007f0003a3f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  367.529119][ T9443] RAX: ffffffffffffffda RBX: 00007f0002e15fa0 RCX: 00007f0002b9bf79
[  367.537092][ T9443] RDX: 0000200000000440 RSI: 0000200000000180 RDI: 00002000000001c0
[  367.545067][ T9443] RBP: 00007f0002c327e0 R08: 0000000000000000 R09: 0000000000000000
[  367.553039][ T9443] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  367.561031][ T9443] R13: 00007f0002e16038 R14: 00007f0002e15fa0 R15: 00007ffdab3ce918
[  367.569016][ T9443]  </TASK>
[  367.572161][ T9443] Kernel Offset: disabled
[  367.576499][ T9443] Rebooting in 86400 seconds..