last executing test programs:

27m37.064119681s ago: executing program 3 (id=369):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x10000000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = gettid()
rt_sigqueueinfo(r5, 0x21, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r4}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r6}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x4)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006)
syz_mount_image$f2fs(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYRES8=0x0], 0x1, 0x5514, &(0x7f000000b2c0)="$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")
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')

27m32.956820107s ago: executing program 3 (id=372):
ioctl$BLKPG(0xffffffffffffffff, 0x1269, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0x7, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001a000000bca30000000000002403000020feffff620af0fff8ffffff71a4f2ff000000001f030000000000002e100200000000002604fdffff020000140100001a0000001d130000000000007a0a00fe0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd21"], 0x0}, 0x94)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r1, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xa, "0062ba7d82000000160000000000f738096304"})
r2 = syz_open_pts(r1, 0x900)
r3 = dup3(r2, r1, 0x80000)
read(r3, &(0x7f00000000c0)=""/226, 0xe2)

27m31.776446403s ago: executing program 3 (id=376):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, 0x0, 0x5707b563827c8365, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x74}, @val={0x8, 0x12a}, @void}}}, 0x24}}, 0x0)

27m31.496457591s ago: executing program 3 (id=377):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000240)="67400f07c40249af4b8bb9800000c00f3235010000000f300f20a366450f769e00000100440f20c03588001d00440f22c0460f01c9c4827d24c366bafc0cf0ff07ef87f345a57a43e16806a4", 0x4c}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000300)={[0x9, 0x17, 0x2, 0x7ffffffe, 0x7, 0xf, 0xe5, 0x3ff, 0xfffffffffffffc00, 0x80000001, 0x3, 0x8, 0x0, 0x5, 0x9, 0x84], 0xeeef0000, 0x28010})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

27m30.130699476s ago: executing program 3 (id=381):
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x224008e, &(0x7f0000000080)={[], [{@obj_type={'obj_type', 0x3d, '//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'}}]}, 0x0, 0x449, &(0x7f0000000280)="$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")
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x118d046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)

27m28.903923277s ago: executing program 3 (id=383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000680)='sched_switch\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r0}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0)

27m12.212908084s ago: executing program 32 (id=383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000680)='sched_switch\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r0}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0)

15.862050824s ago: executing program 1 (id=3245):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r0, &(0x7f0000000c00)="f4"}, 0x20)
pivot_root(&(0x7f0000000540)='./file1\x00', &(0x7f00000017c0)='./file1\x00')
keyctl$dh_compute(0x17, &(0x7f0000001200), 0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000001340)={'hmac(streebog512)\x00'}})
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
syz_usb_connect$cdc_ncm(0x7, 0xd2, &(0x7f0000001680)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xc0, 0x2, 0x1, 0x7f, 0x10, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "e82e68"}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0xf474, 0xe, 0x3ff, 0x5}, {0x6, 0x24, 0x1a, 0x0, 0x20}, [@mbim_extended={0x8, 0x24, 0x1c, 0x59b0, 0xe, 0x8}, @network_terminal={0x7, 0x24, 0xa, 0xff, 0x9, 0x8, 0x5}, @mdlm_detail={0x1c, 0x24, 0x13, 0x6, "4a501bbf529c35344fa1b5321a7f2e773973be0f9fb2596e"}, @mdlm={0x15, 0x24, 0x12, 0x6}, @mbim={0xc, 0x24, 0x1b, 0x0, 0x7, 0x6, 0x3, 0x100, 0x8}, @mdlm={0x15, 0x24, 0x12, 0x200}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x19, 0x7, 0x81}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x65, 0x5, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x7, 0x8, 0x8}}}}}}}]}}, &(0x7f0000001780)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x0, 0x49, 0x9, 0xe7, 0x10}, 0x5, &(0x7f0000000240)={0x5, 0xf, 0x5}, 0x3, [{0x30, &(0x7f0000000280)=@string={0x30, 0x3, "459e98bed5789ac37d252cc67edbbc23c749297a5e0df5ce4f39fda26762d06879ae2019216c6a052a370685f140"}}, {0x0, 0x0}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x43e}}]})
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r2 = open(&(0x7f0000000580)='./bus\x00', 0x84242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x4, 0x2, 0x5, 0x7, 0x3, 0x1, {0x400000080001, 0xff, 0x20ff, 0x8, 0xe, 0xd615, 0x9, 0x3, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x5, 0x6}}, {0x0, 0x13}}}, 0xa0)
sendfile(r2, r2, &(0x7f0000000080), 0x7f03)
utimes(&(0x7f0000000400)='.\x00', &(0x7f0000000500)={{0x0, 0x2710}})
r3 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r3, &(0x7f0000001fc0)=""/184, 0xb8)
r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x6, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r4, 0x40383d0c, &(0x7f0000000180)={{0x0, 0x80}, {0xfffffffffffffff7, 0x1}, 0x1bb, 0x1})
ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f0000000680)={[0xfffffbff, 0x80, 0x8001, 0xe3, 0x1, 0x9, 0x6, 0x0, 0x5, 0xe00, 0x874d, 0x2, 0x3d9092bd, 0x8, 0x9, 0x9, 0x8, 0x2, 0x4, 0x7f, 0x4, 0x0, 0x9, 0x8, 0x6, 0x1, 0x0, 0x400, 0x4, 0x885, 0xffffffbc, 0x1, 0x8, 0xffff, 0x8, 0x0, 0x32, 0x0, 0x4, 0x3, 0xba, 0x2, 0x7, 0x6, 0xe7, 0x6, 0x9, 0xb, 0x5, 0x4, 0x3, 0x7b, 0x1ff, 0x4, 0x0, 0x6, 0x361, 0x0, 0x40, 0x4a, 0x3, 0x8, 0x66, 0xff, 0x3, 0x8, 0x7, 0x2, 0x7, 0x4, 0x36, 0xfb2, 0x2, 0x3, 0x4, 0xaa, 0x9480, 0x36b1, 0x1, 0x4, 0xc40f, 0x5, 0x4, 0x0, 0x0, 0x8, 0x80000000, 0x3, 0x40, 0x6, 0x4, 0x6, 0x9, 0x2, 0x1, 0x0, 0x4, 0x7, 0x341a, 0x3, 0x81, 0x6, 0x7, 0x10001, 0xfffffff8, 0x43, 0x0, 0x40, 0x81, 0x2, 0x94, 0x3, 0x1000, 0x1, 0x9, 0xa, 0x5, 0x80000001, 0x2, 0x4, 0x35, 0x0, 0x0, 0x46, 0x45bb, 0x9, 0x1, 0xd, 0x3, 0x3, 0x5, 0x6, 0x9, 0x3726, 0x3, 0x8, 0x1, 0x5623, 0x3503, 0x8000, 0x5, 0x10, 0x6, 0x7, 0x5, 0x4, 0x3, 0x6, 0xffffff20, 0x6, 0x40, 0x1, 0x7ff, 0x1, 0x7, 0x6, 0x4, 0x3, 0x401, 0x3fd, 0x4, 0x0, 0xfff, 0xcf, 0x60d, 0x5, 0xe, 0x70a, 0x4, 0x1, 0x5, 0xe98, 0x5a253222, 0x1, 0x9c, 0xcb, 0x3, 0x1000, 0x200, 0x2, 0x101, 0x7, 0x1, 0x743, 0x5, 0x4, 0x1, 0x5, 0x6, 0x2, 0x9, 0x1, 0x2, 0x80000, 0x6, 0xa48, 0x5575d5eb, 0xe, 0x4, 0x3, 0x7, 0x8000, 0x8, 0x9, 0x5, 0x7fffffff, 0x401, 0x8001, 0x2, 0x9, 0x9, 0xfffffffc, 0x2, 0x8, 0xc05, 0x56, 0x7, 0xfffffffd, 0x40, 0x0, 0x6, 0x1, 0x4, 0x4, 0x1, 0x80000001, 0x5, 0x1c91e0, 0x800, 0x0, 0x7, 0x1, 0x5, 0x5, 0x7, 0x1000, 0x6, 0xfe0000, 0x8, 0x328, 0xa3, 0x800, 0x8, 0x8, 0x9, 0x5, 0x5, 0x8, 0x8, 0xd45, 0x5, 0x0, 0x6, 0x3, 0x2, 0x7, 0xdd9, 0xfffffff8, 0x101, 0xcd, 0x400000, 0x3ff, 0x7, 0x17b8, 0x6, 0x3, 0x1, 0xc, 0xfff, 0x7, 0x7fffffff, 0x9, 0xfffffff7, 0x5, 0xfff, 0x9, 0xd40b, 0xffffffff, 0x2, 0xfffff54a, 0x4, 0x80000000, 0x1, 0xffffb812, 0xda3, 0xab9, 0x3, 0x5, 0x9, 0x600, 0x51be, 0x200, 0x2, 0x1, 0x6, 0xfffffffe, 0x1, 0x6, 0x90, 0x0, 0xc3c, 0x8, 0x0, 0x3, 0xffff, 0x3, 0x15, 0x9, 0x1000, 0x9, 0x0, 0x3, 0x1, 0x101, 0x4, 0x7fff, 0x10, 0x8, 0x10, 0x4, 0x81, 0x2, 0x6, 0xfffffff4, 0x3, 0x8, 0x2, 0xc, 0x6, 0xfffffffb, 0x3, 0xff, 0x1, 0x9, 0xdde0, 0xffff, 0x10001, 0xffff, 0x6, 0x4, 0x2, 0x80000000, 0x3, 0x8001, 0xa, 0xd4, 0x5, 0x2, 0xb, 0xfffffffb, 0xd, 0x4, 0x3a0, 0x5b8, 0x3, 0x8, 0x6, 0x9, 0xff, 0x8000, 0x4, 0xe12, 0x6, 0xffffff01, 0x4, 0xfdbf, 0x3, 0x6, 0x8, 0xfffffffb, 0x10000, 0x892c, 0x31b, 0xfffffff8, 0x7367, 0xfffffffb, 0x6, 0x8000, 0x80, 0x1, 0x8, 0x6, 0x4, 0x80, 0x5, 0x4, 0x0, 0xca, 0x6, 0x4, 0x4, 0x735, 0x10000, 0x6, 0x8, 0xffff0b69, 0x6, 0xb8c4, 0x8000, 0x8, 0x0, 0xe, 0x6, 0x4, 0x9, 0x7fff, 0x42, 0xcf2b, 0xfffffffc, 0x2, 0x0, 0x49fa, 0xb549, 0xffff, 0x2de, 0x1, 0x2a3f, 0x3080, 0x7fffffff, 0x0, 0x2, 0x5b, 0x8, 0x2, 0xd, 0x7fff, 0x41a0000, 0x1ff, 0x2d, 0x8f0b, 0x5, 0x8000, 0x2, 0x7, 0x86, 0x10001, 0x34, 0xf57, 0xfffffff5, 0x6bff, 0x6, 0x6, 0x7, 0xfff, 0xc, 0x48, 0x81, 0x9, 0x3, 0x10000000, 0x3, 0x9, 0x3, 0x7, 0x8, 0xa, 0x4, 0x30000000, 0x5, 0x38, 0x7, 0x1, 0xfffffff9, 0x7, 0x8, 0xd2, 0x3ff, 0xc96, 0x4, 0x4, 0xe0, 0x10, 0x4, 0x101, 0x100, 0x1, 0xff, 0x7f, 0x6, 0x6, 0x16f1c, 0x6d, 0xffff617b, 0x0, 0x8, 0x5, 0x1e, 0xffffffff, 0x2, 0x60, 0xff, 0xfffffffd, 0x0, 0x4, 0xd1, 0xff, 0x9, 0x1, 0xfffff000, 0x3, 0xffffffff, 0xa, 0x0, 0xfffffff9, 0x0, 0x4, 0x9, 0x6, 0x8, 0x6, 0x5, 0x94, 0x100, 0x7fffffff, 0x5, 0x8, 0x2, 0x4, 0x5, 0xfffffff8, 0x8, 0x9, 0x2, 0x8, 0xaf37, 0x1, 0x0, 0x26, 0x5, 0x2, 0x7, 0xff, 0x0, 0x7, 0x37, 0xffffffff, 0x8, 0x5, 0x9, 0x2, 0x2, 0x1, 0xa, 0x9, 0x8, 0x8, 0x62e1, 0x101, 0xfffff733, 0x1000, 0x518a, 0x2804, 0x87b, 0xfffffffc, 0xa8, 0x7fff, 0x400, 0x8, 0x1, 0x9, 0x68170000, 0x9, 0x7, 0x1e, 0x3ff, 0x1, 0x8, 0xfffffff7, 0x200, 0xffff0001, 0x2, 0x74, 0x7, 0xe74a, 0xfffffe01, 0xb074, 0x6a, 0x5, 0x9, 0x400, 0xc, 0x10001, 0x4b46, 0x642f, 0x80000000, 0x8, 0x8000, 0x80000001, 0x80000001, 0x6, 0x510, 0x3, 0x3, 0xffffffff, 0x3, 0x3, 0x5, 0x80, 0x10, 0x4, 0x1, 0x3, 0x9, 0xd44, 0x7, 0x4, 0x0, 0x9, 0x3, 0x2, 0x609, 0x1, 0x9, 0x9, 0xffff9757, 0x8000, 0x7f, 0x9, 0x5, 0x95, 0x80000000, 0x4, 0x3, 0x7fff, 0x9, 0x4, 0xb, 0x2, 0x38e, 0x7, 0x9d, 0x10001, 0xfff, 0x7f, 0x15a38cb0, 0xfffffffa, 0xe8b3, 0x100, 0x47b, 0x0, 0x10, 0xe22, 0x5, 0x7, 0x0, 0x2, 0x80000001, 0x9, 0xfff, 0x8, 0x7, 0x5, 0x0, 0x3ff, 0x7002, 0x6, 0x8, 0x4, 0xed, 0xf4, 0xde38, 0x200, 0x2, 0x7, 0x8340, 0xb, 0x2, 0x5, 0x6, 0x8000, 0x7, 0x1ff, 0x7fffffff, 0x8, 0x0, 0x7fffffff, 0xf, 0x5, 0x7, 0x2, 0x7, 0x7fff, 0x3, 0x7fffffff, 0x1, 0x1, 0x80000000, 0xea, 0x692, 0xc9f, 0x7, 0x9, 0x7ff, 0x1, 0x59e2, 0x3, 0x0, 0x8000, 0x3, 0x6, 0xfffff64b, 0x6, 0xa6, 0x0, 0x9, 0x7, 0x2, 0xffff, 0x2dc1, 0x3, 0x5, 0x5, 0x4, 0x1, 0x7, 0x26, 0x5, 0x1000, 0x10, 0x2, 0xad, 0xb, 0x8, 0xcc, 0x1b9f, 0x3ff, 0x4d17, 0x8, 0x4, 0x6, 0x24, 0xfff, 0x1000, 0x4dd0, 0xff, 0x7fff, 0x7, 0x8, 0x9, 0x5, 0x10000, 0x9, 0xffffffda, 0x7f, 0x2, 0x0, 0x6, 0x1ff, 0x93ae, 0x7fff, 0x4, 0x1, 0xa00, 0x1ff, 0x7, 0x10000, 0x10, 0x8, 0x6, 0x6, 0x6, 0x9, 0x3, 0x3, 0x40, 0x7, 0x40, 0x2, 0x200, 0xfffffff9, 0x80000000, 0x6, 0xfffffff8, 0x6, 0x1, 0x1, 0x1c63, 0x9, 0xfaf, 0x8, 0x3, 0x9, 0x4, 0x3, 0x8, 0x3, 0x7, 0xfffffffb, 0xff, 0xb096, 0x4, 0xcb, 0x401, 0x8c6, 0x10000, 0x920, 0x0, 0xffffffa2, 0x3, 0x8, 0x6, 0x18, 0x7, 0x7, 0x4, 0x7, 0x664, 0x8, 0xcba, 0x2, 0x401, 0x2, 0x3, 0x3331316e, 0x7, 0xf, 0x2, 0x4, 0x6, 0x3, 0x4, 0x2, 0x4, 0x2, 0x7, 0x7, 0x6c19, 0x2, 0x6, 0x1, 0x4, 0x1, 0x8000, 0x5, 0x1, 0x311, 0x4, 0x7ff, 0xff, 0x7, 0xdb, 0x7f, 0x9, 0x1, 0x8, 0x4, 0xb6b, 0x9, 0x7, 0x3, 0x9, 0x5, 0x7, 0x0, 0x10000, 0x1, 0x7, 0x4, 0x5, 0xc, 0x0, 0x9, 0xfffffff7, 0x3, 0x1, 0x5b, 0x5, 0x3, 0x6, 0xd, 0x8000, 0x0, 0x2, 0x0, 0x40, 0xffffe42f, 0x3, 0x0, 0x8, 0x9, 0xa1e, 0x401, 0x3, 0x51, 0x2, 0x1000, 0x2, 0x753c, 0x1e, 0x7, 0x6, 0x94, 0x4, 0x2, 0x10001, 0x40, 0x5d3, 0x28b2, 0xf, 0x3, 0x0, 0x2ee, 0x1, 0x9, 0xf, 0x5, 0x84b, 0x10001, 0x2, 0x2, 0x1, 0x9, 0xfffffda9, 0x2fe, 0x4, 0x4, 0x5, 0x545, 0x6, 0x7, 0x0, 0x650, 0x3, 0x9, 0xb9, 0x5, 0x79, 0x2, 0x9, 0x101, 0x1, 0x38, 0xef0, 0x2cb, 0xfa06, 0x200, 0x7, 0x80000000, 0xffff3818, 0xd0, 0x5, 0x9, 0x7f, 0xff, 0x4, 0x1, 0x7, 0xf736, 0x8, 0x23c6, 0x7, 0x401, 0x100, 0x5, 0x2, 0xfffffff8, 0x5, 0x2, 0xbf1, 0x467c8826, 0xffff, 0x4, 0x7ff, 0x6, 0x5, 0x6, 0x1000, 0x7ff, 0x1, 0x9, 0x0, 0x3a9, 0x7, 0xb, 0xc, 0x9, 0x1, 0x10, 0x0, 0x2, 0x8, 0xa4, 0x7, 0x0, 0x3, 0x9, 0x10000000, 0x7, 0x6, 0xf, 0x7, 0x5, 0x5, 0xb3aa, 0x2, 0xab9, 0x0, 0x49, 0x9, 0x4, 0x0, 0x4f9, 0x7fff, 0x7, 0x3, 0x9000, 0x6, 0x8, 0x3, 0x10000, 0x7, 0x6, 0x8, 0x793c, 0x4, 0x56a, 0x7, 0x3, 0x886, 0x5, 0x8, 0x0, 0x7fffffff, 0xe34]})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1e, 0x0, 0x0)

12.629150913s ago: executing program 0 (id=3249):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000034700)=""/102400, 0x19000)
socket$inet6(0xa, 0x3, 0xff)
bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @private=0xa010101, 0x1}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c000000080012400000000005000500"], 0x5c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000013c0)=@raw={'raw\x00', 0x8, 0x3, 0x1370, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x12a0, 0xffffffff, 0xffffffff, 0x12a0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [0x0, 0x62], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {0xff}, {0xff}, 0x0, 0xfd, 0x0, 0x13}, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x87, 0x7, 0x1, 0x5, 0x6, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @empty, @local, [0xffffff00, 0xffffff00, 0xff000000, 0xffffff00], [0xff000000, 0xff, 0xff000000, 0xff000000], [0xffffffff, 0xffffff00, 0xff000000], 0x700, 0x2440}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x7fff, 0x30, 0x1}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [0x0, 0x0, 0xff000000], [], 'wg1\x00', 'ip6gretap0\x00', {}, {}, 0x3b, 0x0, 0x0, 0x3}, 0x0, 0x1100, 0x1140, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x2, './cgroup.cpu/syz0\x00', 0x2, {0x8}}}, @inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x54, 0xffff42f2, 0x5, 0x5ee, 0x8, 0x1c, 0x8001, 0x7]}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x13d0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fc, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000000)={[{0x4, 0x200, 0x8, 0x4f, 0x81, 0x7, 0xc0, 0x1, 0xff, 0x6, 0xc, 0x4, 0x9}, {0x8, 0xaff2, 0x0, 0x8, 0x4, 0x1, 0x8, 0x3, 0x0, 0x53, 0x1, 0x6, 0x10005}, {0x0, 0x7, 0x10, 0x10, 0x25, 0x2, 0x0, 0xfb, 0x4, 0x15, 0x0, 0x3, 0x40000000000002}], 0x9})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x0, 0x10004, 0xfffffffffffffffd, 0x4002004c4, 0x1000, 0x0, 0xfff, 0x10, 0x0, 0x0, 0x1, 0x8, 0x800000001], 0x0, 0x2011c0})
syz_open_dev$tty1(0xc, 0x4, 0x3)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6}]}, 0x10)
close(r1)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

11.966555339s ago: executing program 1 (id=3250):
syz_mount_image$f2fs(&(0x7f00000004c0), &(0x7f0000000040)='./bus\x00', 0x2008410, &(0x7f0000000500)=ANY=[@ANYBLOB="66617374626f6f742c71756f7461000000000000003b814e50a959736d65720f73ecea54b5e5be45ace9a88f723cb005aeff24212c651baef614d442ae89412ad3dcd0b7586d02002a6d6d65cacd4fc5002207ce994dda65c4b1d23a9bd5ba0f4ce5c2b5a5718c6aa918080002223d2753a5cac974110144cd0a1e368652324a41b31e1eb3b32dccbdf8f68bd96a45a75427a5f789d267fd92f6a5540200b81d5b9fa9b40fe4d7fbd50a6afc3a989c6d60045663c59cbdc4c700000000bc7f6b22df0191acf5912afdcc1c061835177068c40f757dd123d2600b1c544f1525aa8d00000000000000000000002e8b5c733d362417c17f527c0bfebec112d57fc69fabb9b31ef97b2147931ff60cdf666c25244218b1f1a6010000000100000020563b835d0e8e9a09070ef1691fcb2f37bda5d4e3d9d7a2d0ac82b45a53001057f321acc45d5e065a461de90100000077d200000000000040b78f0dd3836f5ab2f6a1a5b798bb7752f192c6b48e568973a59cd9c74bd9a14721856c5499cd8f93f8beaa9cf76718ce7244c8426803000000005c000208886b313bd01a22d576e414011a4f0a897515329f86d4585fa0ea17068f8af349696da4a2b3e24310ca52ec51bc23b57897cb55a2d513e6a00765ee3f58b471c54dd57f0af584afe4a21f92b515d7f2fa6fbb273ca0f751e684584320534667aea39ad7222c8ef531f514939177a47395e94c1723abb3fd44fd64fde4b45cc2f55f4ae05ff48648a4c998257856bcdcf2fa02010000001f54fb936570450e91c8d55abad76a7b7a000016f81ec9da9ccc1191c211632266d907e4d9b23496ae19bac24dc23c43f514f1b4af19988bbe61ee29a368a999435d6872d01b79c7821e875859dfbf3c57e4f1fb0be46cb5f7a0fa13516c0926d19dd2d5862085e1e4cb8279be17cba17ee4d06ad97b4ca282e73ea142b01b4a742fa11c0927ba811dd60903d575db449d775021b542db617086b3ed42e6e60fe043cff79b0c067c584bbf82657974c3736912b4b522052b9467d0da116ccc1652d861a420f09aaf67d3e9f6160100000001000000ae6335ad9896abd3cc00413638cb9bc62ab8054325d72e9144cf4f88702f586507e3147198e0bc4060a7c8f4dce73b653177ecf8228e6e6fae02510000000000000000000000000000f43739fdd2d24e50e0233acfe1c8639070fe00f40b0d01f8a0a35fcfe3ea10faf9c24b8488ed4ed83fb06a9a7c57442ede9e1fc2853b8f4d2241cff61d0125b7750e3fdae6a4ab9c776a191ed8098a780ea2bbaa64978cd3a6458fcc6b949bcbca0dceb7361f66e46731eba4f3aed335e7c8c541e82453218a19d39489e1525466ac93759787e767f601931d94c9c426489b741a6bc8abf475e4bf859e1ce7f7227069e9f51e25fa3d1b18dc565180a1af464a1dd697db85e2b27b90f6bd7cf1b6bc0bcd8ba552ced3d3cfbf9c9bc04f65b6f83cb40173b4bdc393d47e5da95b63a40ac18daf11e8d0706b47795fbe2b56d0ea7ffc5a59ede88621a08b25ca6ebe041317b62373a60951af33eb7954a9731aaa125add0913ed2435a207439e9122512d77096747a4b404459cebc8faff8f7a31758e630c75a1ff90402754d339dc21cf6b8e04e1aedf14df0b4aaf0e03194df3eb41ba066bc343b323a3162d7e7ba687633c2faa8f28b42364b72e3a457476fd6b2a54e670ba798172c44c4390f73fdab743a4cac88b2bd0545b8483f2e2f9846b138a4d8a7332978da70e9050417087c5ae034a735e8b448dd9701404", @ANYRES16], 0x1, 0x553b, &(0x7f000000ac00)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@user_xattr}, {@resgid}, {@barrier_val={'barrier', 0x3d, 0xb}}]}, 0x1, 0x4a3, &(0x7f0000000580)="$eJzs3c1rXOUaAPBnZpo0SXNvP+7l0vbCbaEXej9oJh9IE3XjSl0UxIIbhRqTaayZZEJmUpvQRaq7LlyIoiAu3PsXuLEriyCudS8upKI1ggrCyDkzk+Zr4qBpBnJ+Pzid95z3dJ73zfC8nHnPOXMCyKyzyT+5iMGI+DwijjZWN+9wtvGydv/mVLLkol6//F0u3S9Zb+3a+n9HImI1Ivoi4tknI17KbY9bXV6ZnSyXS4vN9WJtbqFYXV65cG1ucqY0U5ofGb84MTE+PDY6sWd9vf3GK7cvffR074c/vX7v7puffJw0a7BZt7Efe6nR9Z44vmHboYh4/GEE64JCsz/93W4If0jy+f0tIs6l+X80CumnCWRBvV6v/1o/3K56tQ4cWPn0GDiXH4qIRjmfHxpqHMP/PQby5Uq19v+rlaX56cax8rHoyV+9Vi4NN78rHIueXLI+kpYfrI9uWR+LSI+B3yr0p+tDU5Xy9P4OdcAWR7bk/4+FRv4DGeErP2SX/Ifskv+QXfIfskv+Q3bJf8gu+Q/ZJf8hu+Q/ZJf8h+yS/5BJz1y6lCz11v3v09eXl2Yr1y9Ml6qzQ3NLU0NTlcWFoZlKZSa9Z2fu996vXKksjDwSSzeKtVK1Vqwur1yZqyzN166k9/VfKfXsS6+AThw/c+fLXESsPtqfLoneZp1chYOtXs9Ft+9BBrqj0O0BCOgaU3+QXb7jAzv8RO8mfe0qFva+LcD+yHe7AUDXnD/l/B9klfl/yC7z/5BdjvEB8/+QPeb/IbsG2zz/6y8bnt01HBF/jYgvCj2HW8/6Ag6C/De55vH/+aP/Htxa25v7OT1F0BsRr753+Z0bk7Xa4kiy/fv17bV3m9tHu9F+oFOtPG3lMQCQXWv3b061lv2M++0TjYsQtsc/1Jyb7EvPUQ6s5TZdq5Dbo2sXVm9FxMmd4ueazztvnPkYWCtsi3+i+ZprvEXa3kPpc9P3J/6pDfH/tSH+6T/9V4FsuJOMP8M75V8+zelYz7/N48/gHl070X78y6+Pf4U249+ZDmO8/P5rX7eNfyvi9I7xW/H60lhb4ydtO99h/HsvPPePdnX1Dxrvs1P8lqRUrM0tFKvLKxfS35GbKc2PjF+cmBgfHhudKKZz1MXWTPV2j5387O5u/R9oE3+3/ifb/tth/3/556fPn90l/n/O7fz5n9glfn9E/K/D+D+MfvViu7ok/nSb/ud3iZ9sG+swfvXtpw53uCsAsA+qyyuzk+VyaVFBQUFhvdDtkQl42B4kfbdbAgAAAAAAAAAAAHRqPy4n7nYfAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOgt8CAAD//1kn1ls=")
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(&(0x7f00000008c0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

11.352873839s ago: executing program 0 (id=3253):
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYRES64], 0x24)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x0, 0x67, 0x3, 0x6}, {0x70, 0x3, 0x4, 0x8}]})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prctl$PR_SET_THP_DISABLE(0x44, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_POLL_ADD)
connect$qrtr(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x285}, &(0x7f00000004c0)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0})
io_uring_enter(r1, 0x3498, 0x969, 0x0, 0x0, 0x0)
dup3(r1, r0, 0x80000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r5, &(0x7f0000006140)={0x2020}, 0x2076)

10.239983699s ago: executing program 0 (id=3255):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000001540)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_ADDR_RESOLV_ENABLE={{0x5}, 0xf}}}, 0x7)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$RDS_CANCEL_SENT_TO(0xffffffffffffffff, 0x114, 0x1, &(0x7f0000000100), 0x10)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, 0x10, 0x701, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
recvmmsg(r3, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3}}], 0x7, 0x0, 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@xino_on}, {@uuid_auto}, {@verity_require}, {@xino_off}, {@verity_on}, {@redirect_dir_nofollow}], [{@dont_hash}]})
r4 = open(0x0, 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x0, 0x9, 0x20ff, 0x1, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)

8.00046528s ago: executing program 1 (id=3259):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
mount$tmpfs(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
close(0xffffffffffffffff)
close(0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ftruncate(0xffffffffffffffff, 0x51a9497)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x3ec5c3, 0x0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(0xffffffffffffffff, 0x800442d2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, @remote}]})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000bc0)={0x3e})
io_setup(0x7, &(0x7f0000000000)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
io_pgetevents(r4, 0x94ed, 0x1, &(0x7f0000000040)=[{}], &(0x7f00000000c0)={r5, r6+60000000}, &(0x7f0000000140)={&(0x7f0000000100), 0x8})
syz_io_uring_setup(0x3, &(0x7f0000000580)={0x0, 0x226f, 0x13500, 0x0, 0x22c}, &(0x7f0000000240), &(0x7f0000000300))

7.349661955s ago: executing program 0 (id=3261):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x10000000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = epoll_create1(0x0)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$can_raw(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@can={{0x3, 0x1}, 0x6, 0x0, 0x0, 0x0, "41523f8f79f1c2a0"}, 0x10}, 0x1, 0x0, 0x0, 0x20004080}, 0x4044081)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0xa0000019})
process_mrelease(0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x400000000, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000040)=0x2, 0x12)
ioctl$KVM_GET_STATS_FD_cpu(r1, 0xaece)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
brk(0x200000ffc000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x68, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0x8002}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x1c02}}, @IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x68}}, 0x0)

6.312636737s ago: executing program 2 (id=3265):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e23, @multicast1}}, 0x24)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000000d00), 0xf000, 0x10002, 0x0)
recvmsg$kcm(r1, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x12000)
mknodat(0xffffffffffffff9c, 0x0, 0x1000, 0x400720)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
setgroups(0x0, 0x0)

6.296139088s ago: executing program 0 (id=3266):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100004bec0220a20603008cb4010203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000680)={0x84, &(0x7f0000000240)=ANY=[@ANYBLOB="400c01000000296d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5.747452272s ago: executing program 1 (id=3267):
syz_mount_image$f2fs(&(0x7f00000004c0), &(0x7f0000000040)='./bus\x00', 0x2008410, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x553b, &(0x7f000000ac00)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@user_xattr}, {@resgid}, {@barrier_val={'barrier', 0x3d, 0xb}}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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")
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(&(0x7f00000008c0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

5.587880178s ago: executing program 2 (id=3268):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
syslog(0xa, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x50, r3, 0x1, 0x70bd27, 0x25dfd3fb, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x400c084}, 0x0)

5.374574769s ago: executing program 4 (id=3269):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x12, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file1\x00', 0x1)
getresuid(&(0x7f0000000100), &(0x7f0000000140), &(0x7f00000002c0))
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
socket$inet6(0xa, 0x802, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000012000000240000000800000085000000050000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r6, 0x0, 0x63, &(0x7f0000000040)={'ipvs\x00'}, &(0x7f0000000000)=0x1e)
acct(&(0x7f0000000240)='./file0/file1\x00')
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x80000, 0x104032, 0x2, 0x2, 0xfffffffd, 0xffffdffc, 0x0, 0x0, 0x0, 0x7ffbffff}}, 0x50)

4.319083433s ago: executing program 2 (id=3270):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000001540)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_ADDR_RESOLV_ENABLE={{0x5}, 0xf}}}, 0x7)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$RDS_CANCEL_SENT_TO(0xffffffffffffffff, 0x114, 0x1, &(0x7f0000000100), 0x10)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, 0x10, 0x701, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
recvmmsg(r3, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3}}], 0x7, 0x0, 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000280)={[{@xino_on}, {@uuid_auto}, {@verity_require}, {@xino_off}, {@verity_on}, {@redirect_dir_nofollow}], [{@dont_hash}]})
r4 = open(0x0, 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x0, 0x9, 0x20ff, 0x1, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)

4.246860611s ago: executing program 4 (id=3271):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x0, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = syz_open_dev$radio(&(0x7f0000000040), 0x0, 0x2)
read(r4, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r5, &(0x7f00000034c0)={0x2020}, 0xcac)

3.426438361s ago: executing program 4 (id=3272):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$FBIOGETCMAP(r0, 0x4604, 0x0)

3.323085912s ago: executing program 4 (id=3273):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x10000000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = epoll_create1(0x0)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$can_raw(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@can={{0x3, 0x1}, 0x6, 0x0, 0x0, 0x0, "41523f8f79f1c2a0"}, 0x10}, 0x1, 0x0, 0x0, 0x20004080}, 0x4044081)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0xa0000019})
process_mrelease(0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x400000000, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000040)=0x2, 0x12)
ioctl$KVM_GET_STATS_FD_cpu(r1, 0xaece)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
brk(0x200000ffc000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

3.302692074s ago: executing program 1 (id=3274):
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYRES64], 0x24)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x0, 0x67, 0x3, 0x6}, {0x70, 0x3, 0x4, 0x8}]})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
prctl$PR_SET_THP_DISABLE(0x44, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_POLL_ADD)
connect$qrtr(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x285}, &(0x7f00000004c0)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0})
io_uring_enter(r1, 0x3498, 0x969, 0x0, 0x0, 0x0)
dup3(r1, r0, 0x80000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r5, &(0x7f0000006140)={0x2020}, 0x2076)

2.681646965s ago: executing program 0 (id=3275):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
mount$tmpfs(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
close(0xffffffffffffffff)
close(0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ftruncate(0xffffffffffffffff, 0x51a9497)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x3ec5c3, 0x0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(0xffffffffffffffff, 0x800442d2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, @remote}]})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000bc0)={0x3e})
io_setup(0x7, &(0x7f0000000000)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r5=>0x0, <r6=>0x0})
io_pgetevents(r4, 0x94ed, 0x1, &(0x7f0000000040)=[{}], &(0x7f00000000c0)={r5, r6+60000000}, &(0x7f0000000140)={&(0x7f0000000100), 0x8})
syz_io_uring_setup(0x3, &(0x7f0000000580)={0x0, 0x226f, 0x13500, 0x0, 0x22c}, &(0x7f0000000240), &(0x7f0000000300))

2.579865955s ago: executing program 4 (id=3276):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, 0x0, 0x0)
r1 = fanotify_init(0x40, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000"], 0x0}, 0x94)
bind$alg(0xffffffffffffffff, &(0x7f0000000400)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha512\x00'}, 0xffffffbb)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
fsopen(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16, @ANYRES32, @ANYBLOB="4400028040"], 0x60}, 0x1, 0x0, 0x0, 0x4044}, 0x40000)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8}]}, 0x20}}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001040), 0x2, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000001080)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x8, 0x101, 0x2, 0x2, 0x3, 0x5, "6ecc04ff698aa601"}}, 0x120)
write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000001700)={0xa, {0x3, 0x4, 0x9}}, 0xa)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000003e40))

1.473136514s ago: executing program 2 (id=3277):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
pipe2$9p(0x0, 0x80000)
r0 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r0, &(0x7f0000000300)={0x18, 0x0, 0x0, {0xfffffffffffffffe}}, 0x18)
socket(0x9, 0x4, 0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000000)={'pim6reg1\x00', @link_local})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
ioctl$sock_netdev_private(r2, 0x8914, &(0x7f0000000000))
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
connect$rose(r3, &(0x7f0000000200)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c)
connect$rose(r3, &(0x7f0000000100)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000440)={0x50, 0x0, 0x0, {0x7, 0x29, 0x4, 0x10c024c, 0x7, 0x1, 0x1c5d9605, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)

1.354588596s ago: executing program 4 (id=3278):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
syslog(0xa, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x50, r3, 0x1, 0x70bd27, 0x25dfd3fb, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x400c084}, 0x0)

361.441184ms ago: executing program 1 (id=3279):
openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)

327.497517ms ago: executing program 2 (id=3280):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x0, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$radio(&(0x7f0000000040), 0x0, 0x2)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f00000034c0)={0x2020}, 0xcac)

0s ago: executing program 2 (id=3281):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mount(&(0x7f00000000c0)=@nullb, &(0x7f00000001c0)='.\x00', &(0x7f0000000080)='adfs\x00', 0x218800, 0x0)
io_setup(0x2, 0x0)
socket$inet(0x2, 0x801, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x800)

kernel console output (not intermixed with test programs):

driver returned -16
[ 1274.878869][T14391] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1276.601112][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1276.611608][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1276.630745][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1276.727789][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1276.779293][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1276.822070][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1276.906711][ T5792] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1277.577878][ T5880] usb 1-1: USB disconnect, device number 23
[ 1277.684246][T14436] tipc: Started in network mode
[ 1277.704736][T14436] tipc: Node identity e660ca8594f1, cluster identity 4711
[ 1277.723813][T14436] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1277.952707][T14439] tipc: Resetting bearer <eth:syzkaller0>
[ 1278.019091][T14435] tipc: Disabling bearer <eth:syzkaller0>
[ 1280.958533][T14456] Invalid ELF section header size
[ 1281.858366][T14456] program syz.4.2056 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1284.152434][T14478] syz.1.2050: attempt to access beyond end of device
[ 1284.152434][T14478] nbd1: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1284.188340][T14478] gfs2: error 10 reading superblock
[ 1284.634829][ T5921] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1284.910507][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1285.081306][ T5921] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1285.255950][ T5921] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1285.295907][ T5921] usb 2-1: Product: syz
[ 1285.307779][ T5921] usb 2-1: Manufacturer: syz
[ 1285.312428][ T5921] usb 2-1: SerialNumber: syz
[ 1285.338588][ T5921] usb 2-1: config 0 descriptor??
[ 1285.364052][T14472] loop4: detected capacity change from 0 to 40427
[ 1285.400203][T14472] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1285.420854][T14472] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1285.515921][T14472] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1286.016931][T14482] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1286.053513][T14482] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1286.495779][T14487] loop0: detected capacity change from 0 to 40427
[ 1286.523380][T14487] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1286.531907][T14487] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1286.577288][T14487] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1286.688516][T14487] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1286.712401][T14487] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1287.649164][ T6950] usb 2-1: USB disconnect, device number 24
[ 1288.680370][T14511] syz.1.2067: attempt to access beyond end of device
[ 1288.680370][T14511] nbd1: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1288.703996][T14511] gfs2: error 10 reading superblock
[ 1299.489990][T14591] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2085'.
[ 1300.508664][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.994707][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1304.229645][T14599] loop0: detected capacity change from 0 to 40427
[ 1304.287003][T14599] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1304.301919][T14599] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1304.328094][T14599] F2FS-fs (loop0): Failed to start F2FS issue_checkpoint_thread (-4)
[ 1305.002753][T14608] loop4: detected capacity change from 0 to 40427
[ 1305.083230][T14608] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1305.137554][T14608] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1305.730987][T14608] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1306.346359][ T5880] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 1307.045088][ T5880] usb 3-1: Using ep0 maxpacket: 32
[ 1307.072697][ T5799] Bluetooth: hci3: unexpected event for opcode 0x202d
[ 1307.092750][ T5880] usb 3-1: config 0 has an invalid interface number: 114 but max is 0
[ 1307.126938][ T5880] usb 3-1: config 0 has no interface number 0
[ 1307.133854][ T5880] usb 3-1: config 0 interface 114 has no altsetting 0
[ 1307.183652][ T5880] usb 3-1: New USB device found, idVendor=0421, idProduct=00fc, bcdDevice=7f.8a
[ 1307.195378][ T5880] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1307.203578][ T5880] usb 3-1: Product: syz
[ 1307.211911][ T5880] usb 3-1: Manufacturer: syz
[ 1307.218536][ T5880] usb 3-1: SerialNumber: syz
[ 1307.266063][ T5880] usb 3-1: config 0 descriptor??
[ 1308.110298][ T5880] usb 3-1: bad CDC descriptors
[ 1308.224724][ T5880] usb 3-1: bad CDC descriptors
[ 1308.248811][ T5880] usb 3-1: USB disconnect, device number 25
[ 1310.909361][T14653] loop4: detected capacity change from 0 to 40427
[ 1311.011786][T14653] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1311.029975][T14653] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1311.070352][T14653] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1311.753396][T14653] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1311.779162][T14653] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1311.788688][T14670] Invalid ELF section header size
[ 1312.013241][T14671] program syz.0.2107 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1313.798907][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1313.849411][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1313.857662][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1313.868789][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1313.882224][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1313.890403][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1313.898139][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1314.905467][T14693] syz.0.2110: attempt to access beyond end of device
[ 1314.905467][T14693] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1314.920833][T14693] gfs2: error 10 reading superblock
[ 1315.556722][T14696] Invalid ELF section header size
[ 1316.214609][   T28] audit: type=1804 audit(1760476132.542:698): pid=14699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2113" name="bus" dev="ramfs" ino=43727 res=1 errno=0
[ 1316.236772][T14696] program syz.2.2112 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1316.284962][   T28] audit: type=1804 audit(1760476132.542:699): pid=14699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2113" name="bus" dev="ramfs" ino=43727 res=1 errno=0
[ 1318.871100][T14730] syzkaller0: entered promiscuous mode
[ 1318.885882][T14730] syzkaller0: entered allmulticast mode
[ 1320.711658][T14723] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1321.093400][T14745] Cannot find add_set index 0 as target
[ 1322.175487][T14751] syz.4.2123: attempt to access beyond end of device
[ 1322.175487][T14751] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1322.189256][T14751] gfs2: error 10 reading superblock
[ 1324.981155][T14773] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2129'.
[ 1325.972622][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1327.088941][T14766] loop0: detected capacity change from 0 to 40427
[ 1328.550989][T14796] Cannot find add_set index 0 as target
[ 1332.105573][T14811] syz.2.2138: attempt to access beyond end of device
[ 1332.105573][T14811] nbd2: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1332.119089][T14811] gfs2: error 10 reading superblock
[ 1332.974697][ T8858] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1333.278043][ T8858] usb 3-1: Using ep0 maxpacket: 32
[ 1334.000857][ T8858] usb 3-1: config 0 has an invalid interface number: 114 but max is 0
[ 1334.044566][ T8858] usb 3-1: config 0 has an invalid descriptor of length 36, skipping remainder of the config
[ 1334.062754][T14830] syz.0.2144: attempt to access beyond end of device
[ 1334.062754][T14830] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1334.077019][T14830] gfs2: error 10 reading superblock
[ 1334.103751][ T8858] usb 3-1: config 0 has no interface number 0
[ 1334.118237][ T8858] usb 3-1: config 0 interface 114 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1334.190708][ T8858] usb 3-1: config 0 interface 114 has no altsetting 0
[ 1334.207769][ T8858] usb 3-1: New USB device found, idVendor=0421, idProduct=00fc, bcdDevice=7f.8a
[ 1334.225105][ T8858] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1334.242541][ T8858] usb 3-1: Product: syz
[ 1334.328238][T14821] loop4: detected capacity change from 0 to 40427
[ 1334.356352][T14821] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1334.385209][T14821] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1334.448052][ T8858] usb 3-1: Manufacturer: syz
[ 1334.452723][ T8858] usb 3-1: SerialNumber: syz
[ 1334.486846][T14821] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1334.494699][ T8858] usb 3-1: config 0 descriptor??
[ 1335.328150][ T8858] usb 3-1: bad CDC descriptors
[ 1335.336892][ T8858] usb 3-1: bad CDC descriptors
[ 1335.345892][ T8858] usb 3-1: USB disconnect, device number 26
[ 1335.386350][T14821] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1335.414111][T14821] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1336.541445][T14852] Invalid ELF section header size
[ 1337.165740][T14852] program syz.2.2148 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1337.329950][T14858] syz.0.2149: attempt to access beyond end of device
[ 1337.329950][T14858] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1337.344220][T14858] gfs2: error 10 reading superblock
[ 1337.854926][T14865] Invalid ELF section header size
[ 1338.171316][T14867] program syz.1.2150 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1338.631191][T14872] Invalid ELF section header size
[ 1339.083424][T14874] program syz.0.2153 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1340.249992][ T5880] hid-generic 0101:0002:0002.000C: item fetching failed at offset 3/10
[ 1340.277808][ T5880] hid-generic: probe of 0101:0002:0002.000C failed with error -22
[ 1341.327770][T14901] Invalid ELF section header size
[ 1342.989806][T14901] program syz.2.2158 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1343.814046][T14925] kvm: pic: non byte write
[ 1344.043468][T14927] loop1: detected capacity change from 0 to 512
[ 1344.083601][T14927] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1345.093268][T14940] syz.2.2165: attempt to access beyond end of device
[ 1345.093268][T14940] nbd2: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1345.106623][T14940] gfs2: error 10 reading superblock
[ 1345.145137][   T27] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[ 1346.620616][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1346.673358][   T27] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1346.708074][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1346.747855][   T27] usb 1-1: Product: syz
[ 1346.762840][   T27] usb 1-1: Manufacturer: syz
[ 1346.772865][   T27] usb 1-1: SerialNumber: syz
[ 1346.816231][   T27] usb 1-1: config 0 descriptor??
[ 1347.128031][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1347.234439][T14959] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1348.022434][T14937] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1348.069966][T14937] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1349.311260][   T27] hid-generic 0101:0002:0002.000D: item fetching failed at offset 3/10
[ 1349.330348][   T27] hid-generic: probe of 0101:0002:0002.000D failed with error -22
[ 1350.070022][   T27] usb 1-1: USB disconnect, device number 24
[ 1351.592249][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1356.937245][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1360.217873][T15064] Cannot find add_set index 0 as target
[ 1361.650896][T15070] syz.2.2195: attempt to access beyond end of device
[ 1361.650896][T15070] nbd2: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1361.665572][T15070] gfs2: error 10 reading superblock
[ 1361.951707][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.960456][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.829304][T15083] syz.1.2198: attempt to access beyond end of device
[ 1362.829304][T15083] nbd1: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1362.843191][T15083] gfs2: error 10 reading superblock
[ 1364.878762][T15092] fuse: Bad value for 'fd'
[ 1366.311238][T15104] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1367.298773][T15120] Invalid ELF section header size
[ 1367.472242][T15122] program syz.4.2207 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1368.420115][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1368.866495][T15124] loop0: detected capacity change from 0 to 40427
[ 1369.024065][T15124] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1369.080534][T15124] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1369.162544][T15124] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1370.391927][T15124] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1370.427207][T15124] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1370.499072][T15147] syzkaller0: entered promiscuous mode
[ 1370.506468][T15147] syzkaller0: entered allmulticast mode
[ 1370.525002][T15147] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1371.404101][T15158] syz.0.2214: attempt to access beyond end of device
[ 1371.404101][T15158] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1371.424576][T15158] gfs2: error 10 reading superblock
[ 1373.191225][T15175] syz.1.2221: attempt to access beyond end of device
[ 1373.191225][T15175] nbd1: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1373.204718][T15175] gfs2: error 10 reading superblock
[ 1374.137760][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1379.213414][T15224] Invalid ELF section header size
[ 1380.319457][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1383.198529][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1385.869887][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1393.589813][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1394.994685][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1396.280265][T15343] loop0: detected capacity change from 0 to 4096
[ 1396.325195][T15343] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1396.349772][T15343] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1396.369689][T15343] System zones: 0-5
[ 1396.383183][T15343] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1397.613071][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1398.202106][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1399.180937][T15367] syz.0.2270: attempt to access beyond end of device
[ 1399.180937][T15367] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1399.195655][T15367] gfs2: error 10 reading superblock
[ 1399.776291][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1400.051264][T15375] syz.4.2272: attempt to access beyond end of device
[ 1400.051264][T15375] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1400.064805][T15375] gfs2: error 10 reading superblock
[ 1400.418255][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1406.175838][T15409] fuse: Bad value for 'fd'
[ 1406.344950][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1410.630017][T15444] syzkaller0: entered promiscuous mode
[ 1410.635759][T15444] syzkaller0: entered allmulticast mode
[ 1410.652060][T15444] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1411.847398][T15460] fuse: Invalid rootmode
[ 1412.334491][    C0] hrtimer: interrupt took 63196 ns
[ 1412.684614][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1412.973903][T15468] loop0: detected capacity change from 0 to 512
[ 1413.020184][T15468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1413.035421][T15472] Invalid ELF section header size
[ 1414.277210][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1414.435699][T15461] loop4: detected capacity change from 0 to 40427
[ 1414.444021][T15461] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1414.474879][T15461] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1414.657473][T15461] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1414.691135][T15472] program syz.2.2295 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1414.846660][T15461] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1415.056700][T15461] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1416.570144][T15504] fuse: Invalid rootmode
[ 1419.038626][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1423.388346][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.394833][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.491520][T15550] Invalid ELF section header size
[ 1425.464852][ T5799] Bluetooth: hci0: command 0x0406 tx timeout
[ 1427.076776][T15571] Invalid ELF section header size
[ 1427.685314][T15574] program syz.0.2321 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1428.462518][T15573] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1428.515482][T15573] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1428.528370][T15579] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1428.566981][T15573] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1428.582519][T15579] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1428.611682][T14711] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1428.775408][T15579] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1428.784370][T15579] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1428.792379][T15579] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1428.799763][T15579] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1430.169215][T14711] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1430.809692][T14711] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1430.907062][T15579] Bluetooth: hci0: command tx timeout
[ 1431.881671][T14711] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1432.589873][T15575] chnl_net:caif_netlink_parms(): no params data found
[ 1432.625890][T15613] syzkaller0: entered promiscuous mode
[ 1432.632379][T15613] syzkaller0: entered allmulticast mode
[ 1432.713061][T15613] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1432.998204][T15579] Bluetooth: hci0: command tx timeout
[ 1433.469680][T14711] tipc: Left network mode
[ 1433.576423][T15575] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1433.593852][T15575] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1433.622066][T15575] bridge_slave_0: entered allmulticast mode
[ 1433.724380][T15575] bridge_slave_0: entered promiscuous mode
[ 1434.009278][T15627] syzkaller0: entered promiscuous mode
[ 1434.044700][T15627] syzkaller0: entered allmulticast mode
[ 1434.239295][T15575] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1434.247597][T15575] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1434.281563][T15575] bridge_slave_1: entered allmulticast mode
[ 1434.365637][T15575] bridge_slave_1: entered promiscuous mode
[ 1435.067508][T15579] Bluetooth: hci0: command tx timeout
[ 1435.300975][T15575] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1435.410814][T15575] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1436.145987][T15575] team0: Port device team_slave_0 added
[ 1436.200619][T15575] team0: Port device team_slave_1 added
[ 1437.146899][T15575] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1437.154909][T15579] Bluetooth: hci0: command tx timeout
[ 1437.235404][T15575] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1437.297732][T15575] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1439.508975][T15575] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1439.611437][T15575] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1439.763033][T15575] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1441.221211][T15688] syz.1.2342: attempt to access beyond end of device
[ 1441.221211][T15688] nbd1: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1441.234587][T15688] gfs2: error 10 reading superblock
[ 1441.696489][T15575] hsr_slave_0: entered promiscuous mode
[ 1441.722981][T15575] hsr_slave_1: entered promiscuous mode
[ 1443.643796][T14711] hsr_slave_0: left promiscuous mode
[ 1443.814810][T14711] hsr_slave_1: left promiscuous mode
[ 1443.984691][T14711] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1444.025547][T14711] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1444.056028][T14711] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1444.103920][T14711] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1444.211322][T14711] bridge_slave_1: left allmulticast mode
[ 1444.237722][T14711] bridge_slave_1: left promiscuous mode
[ 1444.263929][T14711] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1444.344128][T14711] bridge_slave_0: left allmulticast mode
[ 1444.395446][T14711] bridge_slave_0: left promiscuous mode
[ 1444.401254][T14711] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1445.285933][T14711] veth1_macvtap: left promiscuous mode
[ 1445.301890][T14711] veth0_macvtap: left promiscuous mode
[ 1445.322318][T14711] veth1_vlan: left promiscuous mode
[ 1445.333807][T14711] veth0_vlan: left promiscuous mode
[ 1448.128093][T14711] team0 (unregistering): Port device team_slave_1 removed
[ 1448.435379][T14711] team0 (unregistering): Port device team_slave_0 removed
[ 1448.496982][T14711] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1448.555875][T14711] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1449.129174][T14711] bond0 (unregistering): Released all slaves
[ 1449.362051][T15743] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1449.373814][T15743] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1449.392893][T15743] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1449.544225][T15748] Invalid ELF section header size
[ 1450.711032][T15748] program syz.0.2354 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1452.963213][T15575] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1453.036252][T15575] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1453.125153][T15575] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1453.173250][T15575] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1453.203797][T15781] syzkaller0: entered promiscuous mode
[ 1453.220237][T15781] syzkaller0: entered allmulticast mode
[ 1453.260802][T15783] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1453.287825][T15781] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1453.452860][T15783] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1453.525274][T15783] tipc: Resetting bearer <eth:syzkaller0>
[ 1453.552752][T15782] tipc: Disabling bearer <eth:syzkaller0>
[ 1453.941202][T15575] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1454.323745][T15575] 8021q: adding VLAN 0 to HW filter on device team0
[ 1454.371075][ T8074] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1454.378296][ T8074] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1454.412419][ T8074] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1454.419671][ T8074] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1454.483409][T15575] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1454.494970][T15575] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1455.465586][T15807] syz.4.2361: attempt to access beyond end of device
[ 1455.465586][T15807] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1455.532074][T15807] gfs2: error 10 reading superblock
[ 1455.535219][T15808] syz.0.2363: attempt to access beyond end of device
[ 1455.535219][T15808] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1455.581809][T15808] gfs2: error 10 reading superblock
[ 1456.600546][T15575] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1457.016698][T15575] veth0_vlan: entered promiscuous mode
[ 1457.326031][T15821] syz.4.2365: attempt to access beyond end of device
[ 1457.326031][T15821] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1457.355596][T15821] gfs2: error 10 reading superblock
[ 1457.431447][T15575] veth1_vlan: entered promiscuous mode
[ 1457.650061][T15575] veth0_macvtap: entered promiscuous mode
[ 1457.699887][T15575] veth1_macvtap: entered promiscuous mode
[ 1458.170196][T15575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1458.207177][T15575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1458.239719][T15575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1458.263036][T15575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1458.442109][T15575] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1458.464309][T15575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1458.479354][T15575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1459.541156][T15575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1459.594994][T15575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1459.626369][T15575] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1459.670499][T15575] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1459.685471][T15575] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1459.694413][T15575] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1459.706149][T15575] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1459.738116][T15846] syzkaller0: entered promiscuous mode
[ 1459.776729][T15846] syzkaller0: entered allmulticast mode
[ 1461.653535][ T8079] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1461.671873][ T8079] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1462.154085][ T2943] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1462.177608][ T2943] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1463.745167][T15883] fuse: Invalid rootmode
[ 1463.914401][T15889] syz.0.2375: attempt to access beyond end of device
[ 1463.914401][T15889] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1463.930056][T15889] gfs2: error 10 reading superblock
[ 1464.079666][T15894] loop4: detected capacity change from 0 to 512
[ 1464.161143][T15894] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1465.371951][ T7539] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1465.877448][ T8074] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1465.981277][T15906] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2380'.
[ 1466.138541][ T5799] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1466.150126][ T5799] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1466.160103][ T5799] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1466.166426][ T8074] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.182981][ T5799] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1466.191296][ T5799] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1466.199178][ T5799] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1466.526726][ T8074] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.777001][ T8074] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1466.832571][T15908] loop4: detected capacity change from 0 to 40427
[ 1466.854712][T15908] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1466.880638][T15908] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1466.967730][T15908] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1467.234982][T15908] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1467.268996][T15908] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1468.274765][ T5799] Bluetooth: hci3: command tx timeout
[ 1468.328436][T15911] chnl_net:caif_netlink_parms(): no params data found
[ 1469.260162][ T8074] tipc: Disabling bearer <udp:syz2>
[ 1469.280772][ T8074] tipc: Left network mode
[ 1470.344662][ T5799] Bluetooth: hci3: command tx timeout
[ 1470.553111][T15911] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1470.562954][T15911] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1470.576847][T15911] bridge_slave_0: entered allmulticast mode
[ 1470.625061][T15911] bridge_slave_0: entered promiscuous mode
[ 1470.795647][T15911] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1470.848315][T15965] fuse: Bad value for 'rootmode'
[ 1470.856132][T15911] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1470.863468][T15911] bridge_slave_1: entered allmulticast mode
[ 1470.892083][T15911] bridge_slave_1: entered promiscuous mode
[ 1471.574142][T15911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1471.619174][T15911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1471.826304][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1471.876347][T15911] team0: Port device team_slave_0 added
[ 1471.911845][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1472.024373][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1472.054721][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1472.074543][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1472.082181][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1472.133336][ T8074] bridge0: port 3(gretap0) entered disabled state
[ 1472.174244][ T7539] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 1472.177137][ T8074] gretap0 (unregistering): left allmulticast mode
[ 1472.202409][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1472.209613][ T8074] gretap0 (unregistering): left promiscuous mode
[ 1472.218690][ T8074] bridge0: port 3(gretap0) entered disabled state
[ 1472.238609][T15911] team0: Port device team_slave_1 added
[ 1472.425499][ T5799] Bluetooth: hci3: command tx timeout
[ 1472.564917][T15911] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1472.590306][T15911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1472.645122][T15911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1472.729043][T15911] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1472.777455][T15911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1472.848914][T15911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1473.073106][T15911] hsr_slave_0: entered promiscuous mode
[ 1473.081527][T15911] hsr_slave_1: entered promiscuous mode
[ 1473.090338][T15911] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1473.098714][T15911] Cannot create hsr debugfs directory
[ 1473.144596][   T23] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1473.344605][   T23] usb 3-1: Using ep0 maxpacket: 32
[ 1473.350048][ T8074] hsr_slave_0: left promiscuous mode
[ 1473.360912][   T23] usb 3-1: config 0 has an invalid interface number: 114 but max is 0
[ 1473.376607][   T23] usb 3-1: config 0 has an invalid descriptor of length 36, skipping remainder of the config
[ 1473.397749][ T8074] hsr_slave_1: left promiscuous mode
[ 1473.410308][   T23] usb 3-1: config 0 has no interface number 0
[ 1473.423301][ T8074] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1473.440175][   T23] usb 3-1: config 0 interface 114 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1473.455021][ T8074] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1473.462678][   T23] usb 3-1: config 0 interface 114 has no altsetting 0
[ 1473.491378][   T23] usb 3-1: New USB device found, idVendor=0421, idProduct=00fc, bcdDevice=7f.8a
[ 1473.500928][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1473.515770][ T8074] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1473.523681][ T8074] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1473.543436][   T23] usb 3-1: Product: syz
[ 1473.560661][ T8074] bridge_slave_1: left allmulticast mode
[ 1473.567001][   T23] usb 3-1: Manufacturer: syz
[ 1473.571709][   T23] usb 3-1: SerialNumber: syz
[ 1473.577235][ T8074] bridge_slave_1: left promiscuous mode
[ 1473.584174][ T8074] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1473.630459][   T23] usb 3-1: config 0 descriptor??
[ 1473.760603][ T8074] bridge_slave_0: left allmulticast mode
[ 1473.834777][ T8074] bridge_slave_0: left promiscuous mode
[ 1473.842921][ T8074] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1474.065562][   T23] usb 3-1: bad CDC descriptors
[ 1474.090166][   T23] usb 3-1: bad CDC descriptors
[ 1474.147937][   T23] usb 3-1: USB disconnect, device number 27
[ 1474.194345][ T8074] veth1_macvtap: left promiscuous mode
[ 1474.223242][ T8074] veth0_macvtap: left promiscuous mode
[ 1474.235681][ T8074] veth1_vlan: left promiscuous mode
[ 1474.241076][ T8074] veth0_vlan: left promiscuous mode
[ 1474.505232][ T5799] Bluetooth: hci3: command tx timeout
[ 1475.155716][T16024] syz.2.2395: attempt to access beyond end of device
[ 1475.155716][T16024] nbd2: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1475.169175][T16024] gfs2: error 10 reading superblock
[ 1475.922927][T16031] syz.2.2397: attempt to access beyond end of device
[ 1475.922927][T16031] nbd2: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1475.943512][T16031] gfs2: error 10 reading superblock
[ 1476.433015][ T8074] team0 (unregistering): Port device team_slave_1 removed
[ 1476.527075][ T8074] team0 (unregistering): Port device team_slave_0 removed
[ 1476.617453][ T8074] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1476.781552][ T8074] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1477.602352][ T8074] bond0 (unregistering): Released all slaves
[ 1478.772461][T16006] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1478.811487][T16006] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1478.889099][T16006] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1479.138796][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1479.168305][T16046] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1479.276530][T16041] syzkaller0: entered promiscuous mode
[ 1479.292832][T16041] syzkaller0: entered allmulticast mode
[ 1479.318389][T16043] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[ 1479.396993][T16040] tipc: Resetting bearer <eth:syzkaller0>
[ 1479.465336][T16040] tipc: Disabling bearer <eth:syzkaller0>
[ 1479.810126][T15911] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1479.851525][T15911] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1479.874613][  T968] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1479.886112][T15911] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1479.907247][T15911] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1480.074581][  T968] usb 5-1: Using ep0 maxpacket: 32
[ 1480.170334][  T968] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1480.223169][  T968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1480.353344][  T968] usb 5-1: Product: syz
[ 1480.421594][  T968] usb 5-1: Manufacturer: syz
[ 1480.488582][  T968] usb 5-1: SerialNumber: syz
[ 1480.818823][  T968] usb 5-1: config 0 descriptor??
[ 1480.922295][T15911] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1480.932482][  T968] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1480.998645][T15911] 8021q: adding VLAN 0 to HW filter on device team0
[ 1481.049303][ T2983] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1481.056535][ T2983] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1481.078208][ T2983] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1481.085574][ T2983] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1483.257784][  T968] gspca_topro: reg_r err -71
[ 1483.262991][  T968] gspca_topro: Sensor soi763a
[ 1483.279044][  T968] usb 5-1: USB disconnect, device number 23
[ 1483.312440][T15911] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1483.787754][T16113] Invalid ELF section header size
[ 1484.037992][T15911] veth0_vlan: entered promiscuous mode
[ 1484.152642][T15911] veth1_vlan: entered promiscuous mode
[ 1484.354334][T15911] veth0_macvtap: entered promiscuous mode
[ 1484.384338][T15911] veth1_macvtap: entered promiscuous mode
[ 1484.484349][T15911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1484.536109][T15911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1484.554747][T15911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1484.566740][T15911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1484.625642][T15911] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1484.668532][T15911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1484.690129][T15911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1484.709801][T15911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1484.722736][T15911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1484.778928][T15911] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1484.830336][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.836950][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.891431][T15911] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1484.901911][T15911] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1484.916216][T15911] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1484.927513][T15911] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1485.257122][ T2943] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1485.677808][ T2943] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1485.835027][ T8079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1485.885091][ T8079] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1488.044679][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1488.981927][T16148] tipc: Started in network mode
[ 1488.998276][T16148] tipc: Node identity 52fc9f5f7101, cluster identity 4711
[ 1489.007962][T16148] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1489.717288][T16154] syzkaller0: entered promiscuous mode
[ 1489.722825][T16154] syzkaller0: entered allmulticast mode
[ 1490.124869][T11484] tipc: Node number set to 603823967
[ 1490.303786][T16145] tipc: Resetting bearer <eth:syzkaller0>
[ 1490.488508][T16145] tipc: Disabling bearer <eth:syzkaller0>
[ 1490.514515][T16165] Invalid ELF section header size
[ 1492.763693][T16186] Invalid ELF section header size
[ 1493.366591][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1493.486722][T16186] program syz.1.2426 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1494.595813][T16204] Invalid ELF section header size
[ 1494.772713][T16206] program syz.1.2430 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1496.283147][T16191] loop0: detected capacity change from 0 to 40427
[ 1496.427124][T16212] Invalid ELF section header size
[ 1497.039825][T16202] loop4: detected capacity change from 0 to 40427
[ 1497.162281][T16202] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1497.221526][T16202] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1497.395531][T16202] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1500.734485][T16247] syz.4.2437: attempt to access beyond end of device
[ 1500.734485][T16247] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1500.750742][T16247] gfs2: error 10 reading superblock
[ 1501.080155][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1501.160715][T16249] syz.0.2440: attempt to access beyond end of device
[ 1501.160715][T16249] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1501.174131][T16249] gfs2: error 10 reading superblock
[ 1504.379526][T16270] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2445'.
[ 1505.377438][T16277] Invalid ELF section header size
[ 1506.876292][T16284] program syz.2.2448 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1509.354316][T11484] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1509.554535][T11484] usb 5-1: Using ep0 maxpacket: 32
[ 1510.412461][T11484] usb 5-1: config 0 has an invalid interface number: 114 but max is 0
[ 1510.434487][T11484] usb 5-1: config 0 has an invalid descriptor of length 36, skipping remainder of the config
[ 1510.456867][T11484] usb 5-1: config 0 has no interface number 0
[ 1510.463108][T11484] usb 5-1: config 0 interface 114 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1510.480185][T11484] usb 5-1: config 0 interface 114 has no altsetting 0
[ 1510.497433][T11484] usb 5-1: New USB device found, idVendor=0421, idProduct=00fc, bcdDevice=7f.8a
[ 1510.507553][T16302] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2451'.
[ 1510.544671][T11484] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1510.574544][T11484] usb 5-1: Product: syz
[ 1510.586250][T11484] usb 5-1: Manufacturer: syz
[ 1510.596883][T11484] usb 5-1: SerialNumber: syz
[ 1510.619224][T11484] usb 5-1: config 0 descriptor??
[ 1511.411647][T11484] usb 5-1: bad CDC descriptors
[ 1511.455439][T11484] usb 5-1: bad CDC descriptors
[ 1511.488547][T11484] usb 5-1: USB disconnect, device number 24
[ 1512.110553][T16325] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2460'.
[ 1512.144533][T16325] netlink: set zone limit has 8 unknown bytes
[ 1512.491597][ T7908] bridge0: port 3(syz_tun) entered disabled state
[ 1512.543331][T16325] syz.1.2460 (16325): drop_caches: 2
[ 1512.732849][T15579] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1512.742491][T15579] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1512.757351][T15579] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1512.766445][T15579] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1512.778116][T15579] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1512.785536][T15579] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1513.494610][ T5880] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1513.697181][ T5880] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1513.724981][ T5880] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1513.744732][ T5880] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1513.753969][ T5880] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1513.775185][ T5880] usb 5-1: config 0 descriptor??
[ 1513.937488][T16327] chnl_net:caif_netlink_parms(): no params data found
[ 1514.040537][ T6500] tipc: Left network mode
[ 1514.083519][T16332] loop2: detected capacity change from 0 to 40427
[ 1514.092062][T16332] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1514.100672][T16332] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1514.131083][T16332] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1514.207745][T16332] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1514.216270][T16332] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1514.256799][ T5880] cp2112 0003:10C4:EA90.000E: unknown main item tag 0x0
[ 1514.287501][ T5880] cp2112 0003:10C4:EA90.000E: unknown main item tag 0x0
[ 1514.563662][ T5880] cp2112 0003:10C4:EA90.000E: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[ 1514.709170][T16327] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1514.726168][T16327] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1514.733626][T16327] bridge_slave_0: entered allmulticast mode
[ 1514.749407][T16327] bridge_slave_0: entered promiscuous mode
[ 1514.991825][ T5799] Bluetooth: hci1: command tx timeout
[ 1515.084761][ T5880] cp2112 0003:10C4:EA90.000E: Part Number: 0x82 Device Version: 0xFE
[ 1515.122341][T16327] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1515.160676][T16327] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1515.198722][T16327] bridge_slave_1: entered allmulticast mode
[ 1515.242070][T16327] bridge_slave_1: entered promiscuous mode
[ 1515.516568][ T5880] cp2112 0003:10C4:EA90.000E: error reading lock byte: -71
[ 1515.536749][ T5880] usb 5-1: USB disconnect, device number 25
[ 1515.678998][T16327] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1515.718417][T16327] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1515.911943][T16327] team0: Port device team_slave_0 added
[ 1515.982714][T16327] team0: Port device team_slave_1 added
[ 1516.205118][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1516.308186][T16327] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1516.464874][T16327] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1516.664872][T16327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1516.854613][T16327] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1516.874708][T16327] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1516.963070][T16327] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1517.073853][ T5799] Bluetooth: hci1: command tx timeout
[ 1517.139679][T16327] hsr_slave_0: entered promiscuous mode
[ 1517.152248][T16327] hsr_slave_1: entered promiscuous mode
[ 1517.159205][T16327] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1517.167195][T16327] Cannot create hsr debugfs directory
[ 1517.181306][T16379] kvm: pic: non byte write
[ 1517.214834][  T968] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1517.431859][  T968] usb 5-1: Using ep0 maxpacket: 32
[ 1517.459456][  T968] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1517.671237][  T968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1517.741069][ T6500] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1517.756503][ T6500] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1517.780040][  T968] usb 5-1: Product: syz
[ 1517.794464][ T6500] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1517.813148][ T6500] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1517.816165][  T968] usb 5-1: Manufacturer: syz
[ 1517.842395][  T968] usb 5-1: SerialNumber: syz
[ 1517.888711][  T968] usb 5-1: config 0 descriptor??
[ 1517.913672][  T968] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1518.566757][ T6500] team0 (unregistering): Port device team_slave_1 removed
[ 1518.628885][ T6500] team0 (unregistering): Port device team_slave_0 removed
[ 1518.685424][ T6500] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1518.744022][ T6500] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1519.145625][ T5799] Bluetooth: hci1: command tx timeout
[ 1519.175208][  T968] gspca_topro: reg_w err -71
[ 1519.283258][  T968] gspca_topro: Sensor soi763a
[ 1519.392163][  T968] usb 5-1: USB disconnect, device number 26
[ 1520.060544][ T6500] bond0 (unregistering): Released all slaves
[ 1520.108027][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1520.123999][T16411] syz.4.2473: attempt to access beyond end of device
[ 1520.123999][T16411] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1520.139984][T16411] gfs2: error 10 reading superblock
[ 1520.600223][T16404] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 1520.633734][T16404] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 1520.656284][T16404] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1521.368951][ T5799] Bluetooth: hci1: command tx timeout
[ 1521.978858][T16434] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[ 1522.011450][T16425] syzkaller0: entered promiscuous mode
[ 1522.021209][T16425] syzkaller0: entered allmulticast mode
[ 1522.111881][T16437] kvm: pic: non byte write
[ 1522.673984][T16327] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1522.686981][T16327] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1522.698501][T16327] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1522.709397][T16327] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1523.944779][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1524.129764][T16327] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1524.143557][T16465] tipc: Started in network mode
[ 1524.149517][T16465] tipc: Node identity 12b61eabc21c, cluster identity 4711
[ 1524.160373][T16465] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1524.192464][T16465] syzkaller0: entered promiscuous mode
[ 1524.208257][T16465] syzkaller0: entered allmulticast mode
[ 1524.258115][T16327] 8021q: adding VLAN 0 to HW filter on device team0
[ 1524.268588][T16473] syz.4.2483: attempt to access beyond end of device
[ 1524.268588][T16473] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1524.293747][T16473] gfs2: error 10 reading superblock
[ 1524.339821][T16465] tipc: Resetting bearer <eth:syzkaller0>
[ 1524.362376][ T2943] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1524.369550][ T2943] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1524.389715][T16464] tipc: Resetting bearer <eth:syzkaller0>
[ 1524.419959][T16464] tipc: Disabling bearer <eth:syzkaller0>
[ 1524.462446][ T8074] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1524.469653][ T8074] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1524.643398][T16479] Invalid ELF section header size
[ 1524.813978][T16480] program syz.2.2485 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1527.780840][T16327] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1528.810862][T16327] veth0_vlan: entered promiscuous mode
[ 1528.843691][T16327] veth1_vlan: entered promiscuous mode
[ 1529.007384][T16327] veth0_macvtap: entered promiscuous mode
[ 1529.058100][T16327] veth1_macvtap: entered promiscuous mode
[ 1529.705312][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1529.856373][T16327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1529.927781][T16327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1530.037685][T16327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1530.117984][T16327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1530.138617][T16327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1530.149458][T16327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1530.224274][T16327] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1530.319913][T16327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1530.391398][T16327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1530.411992][T16327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1530.423630][T16327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1530.437207][T16327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1530.597874][T16327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1530.610796][T16327] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1530.623237][T16327] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1530.632381][T16327] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1530.645223][T16327] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1531.444576][T16327] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1531.865585][ T6500] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1531.923717][ T6500] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1533.884131][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1533.899469][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1533.974944][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1535.133580][T16561] loop1: detected capacity change from 0 to 4096
[ 1535.207363][T16561] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1535.267808][T16561] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1535.294868][T16561] System zones: 0-5
[ 1535.333568][T16561] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1536.339267][T16583] syz.4.2502: attempt to access beyond end of device
[ 1536.339267][T16583] nbd4: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1536.387509][T16583] gfs2: error 10 reading superblock
[ 1540.496382][T16623] Invalid ELF section header size
[ 1540.980729][T16625] program syz.0.2509 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1541.734372][T16635] Invalid ELF section header size
[ 1542.032624][T16636] program syz.4.2511 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1542.649562][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1546.303023][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.314732][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1547.963130][T16684] Cannot find add_set index 0 as target
[ 1548.975634][T16694] loop2: detected capacity change from 0 to 4096
[ 1549.034675][T16694] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1549.158167][T16694] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1549.202159][T16694] System zones: 0-5
[ 1549.239027][T16694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1550.215535][T15575] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1553.704546][T15579] Bluetooth: hci0: command 0x0401 tx timeout
[ 1553.787948][T16744] tmpfs: Bad value for 'nr_blocks'
[ 1555.265691][T16744] binder: 16742:16744 ioctl 40189206 200000000340 returned -22
[ 1555.385680][T16739] loop4: detected capacity change from 0 to 40427
[ 1555.396003][T16739] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1555.413340][T16739] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1555.539624][T16739] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1555.654047][T16753] loop0: detected capacity change from 0 to 4096
[ 1555.668552][T16753] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1555.690821][T16753] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1555.730610][T16753] System zones: 0-5
[ 1556.344806][T16753] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1556.863619][T16327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1556.980270][T16765] syz.2.2535: attempt to access beyond end of device
[ 1556.980270][T16765] nbd2: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1557.007895][T16765] gfs2: error 10 reading superblock
[ 1560.311376][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1560.407878][T16802] loop0: detected capacity change from 0 to 4096
[ 1560.600785][T16802] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1560.800779][T16802] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1560.834765][T16802] System zones: 0-5
[ 1560.849551][T16802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1561.116456][T16327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1561.551392][T16813] Cannot find add_set index 0 as target
[ 1562.410984][T16800] loop4: detected capacity change from 0 to 40427
[ 1562.450931][T16800] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1562.604505][T16800] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1562.658635][T16800] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1562.913415][T16800] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1562.934713][T16800] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1563.414563][ T5921] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1563.665300][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1563.759915][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1563.811353][ T5921] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1563.819128][T16830] kvm: pic: non byte write
[ 1563.887077][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1563.942537][ T5921] usb 2-1: config 0 descriptor??
[ 1564.469334][ T5921] cp2112 0003:10C4:EA90.000F: unknown main item tag 0x0
[ 1564.514501][ T5921] cp2112 0003:10C4:EA90.000F: unknown main item tag 0x0
[ 1564.588536][ T5921] cp2112 0003:10C4:EA90.000F: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0
[ 1564.925589][ T5921] cp2112 0003:10C4:EA90.000F: Part Number: 0x82 Device Version: 0xFE
[ 1565.215246][ T5921] cp2112 0003:10C4:EA90.000F: error requesting SMBus config
[ 1565.655125][ T5921] cp2112: probe of 0003:10C4:EA90.000F failed with error -32
[ 1565.667281][ T5921] usb 2-1: USB disconnect, device number 25
[ 1567.219643][T16852] loop2: detected capacity change from 0 to 40427
[ 1567.280179][T16852] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1567.331082][T16852] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1567.591028][T16852] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1568.503064][T16852] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1568.525756][T16852] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1568.734225][T16858] loop0: detected capacity change from 0 to 40427
[ 1568.760303][T16858] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1568.769543][T16858] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1569.650905][T16858] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1570.430961][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1570.461214][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1570.751508][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1570.947342][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1570.996294][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1571.007035][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1571.016688][T15575] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[ 1580.586874][T16968] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2585'.
[ 1580.614761][T16968] netlink: set zone limit has 8 unknown bytes
[ 1581.126465][T16968] syz.0.2585 (16968): drop_caches: 2
[ 1582.198199][T16975] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1582.232525][T16975] syzkaller0: entered promiscuous mode
[ 1582.254522][T16975] syzkaller0: entered allmulticast mode
[ 1582.312804][T16975] sch_tbf: burst 0 is lower than device syzkaller0 mtu (1514) !
[ 1582.352682][T16975] tipc: Resetting bearer <eth:syzkaller0>
[ 1583.231269][   T27] tipc: Node number set to 3500809899
[ 1583.274505][T16974] tipc: Resetting bearer <eth:syzkaller0>
[ 1583.369989][T16974] tipc: Disabling bearer <eth:syzkaller0>
[ 1588.869869][T17045] fuse: Unknown parameter '0x0000000000000007'
[ 1589.407650][ T5799] Bluetooth: hci3: command 0x0406 tx timeout
[ 1590.961883][T15579] Bluetooth: hci0: command 0x0401 tx timeout
[ 1592.174673][T15579] Bluetooth: hci3: unexpected event for opcode 0x202d
[ 1592.574625][T11484] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[ 1592.818758][T11484] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1592.903295][T11484] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1592.919959][T17078] loop1: detected capacity change from 0 to 512
[ 1592.928952][T11484] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1593.086241][T11484] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1593.113943][T11484] usb 5-1: config 0 descriptor??
[ 1593.135554][T17078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1594.670713][T11484] cp2112 0003:10C4:EA90.0010: unknown main item tag 0x0
[ 1594.894686][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1594.904961][T11484] cp2112 0003:10C4:EA90.0010: unknown main item tag 0x0
[ 1594.916644][T11484] cp2112 0003:10C4:EA90.0010: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[ 1595.020238][T11484] cp2112 0003:10C4:EA90.0010: Part Number: 0x00 Device Version: 0x00
[ 1595.240610][T11484] cp2112 0003:10C4:EA90.0010: error requesting SMBus config
[ 1595.281407][T11484] cp2112: probe of 0003:10C4:EA90.0010 failed with error -32
[ 1596.177297][T11484] usb 5-1: USB disconnect, device number 27
[ 1599.610680][T17127] Invalid ELF section header size
[ 1599.919446][T17129] program syz.2.2625 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1601.132727][T17135] syzkaller0: entered promiscuous mode
[ 1601.138489][T17135] syzkaller0: entered allmulticast mode
[ 1602.659273][T17137] loop4: detected capacity change from 0 to 40427
[ 1602.681130][T17137] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1602.696230][T17137] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1602.809201][T17137] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1603.439828][T17137] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1603.461610][T17163] Invalid ELF section header size
[ 1603.466853][T15579] Bluetooth: hci0: command 0x0401 tx timeout
[ 1603.478508][T17137] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1603.606794][T17161] program syz.2.2634 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1603.784677][  T968] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[ 1604.239137][T17172] kvm: pic: non byte write
[ 1604.271796][  T968] usb 1-1: Using ep0 maxpacket: 32
[ 1604.284092][  T968] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1604.313842][  T968] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1604.331717][  T968] usb 1-1: Product: syz
[ 1604.340642][  T968] usb 1-1: Manufacturer: syz
[ 1604.349411][  T968] usb 1-1: SerialNumber: syz
[ 1604.360074][  T968] usb 1-1: config 0 descriptor??
[ 1604.825709][  T968] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1606.517487][  T968] gspca_topro: reg_w err -71
[ 1606.605853][  T968] gspca_topro: Sensor soi763a
[ 1607.224606][T15579] Bluetooth: hci0: command 0x0401 tx timeout
[ 1607.798395][  T968] usb 1-1: USB disconnect, device number 25
[ 1607.800948][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.810838][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1608.358094][T17208] program syz.4.2638 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1613.514991][T11484] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[ 1613.752018][T17246] kvm: pic: non byte write
[ 1613.765693][T11484] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1613.776039][T11484] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1613.784203][T11484] usb 1-1: Product: syz
[ 1613.789116][T11484] usb 1-1: Manufacturer: syz
[ 1613.793825][T11484] usb 1-1: SerialNumber: syz
[ 1613.807791][T11484] usb 1-1: config 0 descriptor??
[ 1614.029030][T11484] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1614.114624][ T8857] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1614.304580][ T8857] usb 2-1: Using ep0 maxpacket: 32
[ 1614.319655][ T8857] usb 2-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1614.328936][ T8857] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1614.340082][ T8857] usb 2-1: Product: syz
[ 1614.344306][ T8857] usb 2-1: Manufacturer: syz
[ 1614.354336][ T8857] usb 2-1: SerialNumber: syz
[ 1614.363137][T17252] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2653'.
[ 1614.372431][T17252] netlink: set zone limit has 8 unknown bytes
[ 1614.407841][T17252] syz.4.2653 (17252): drop_caches: 2
[ 1614.422804][ T8857] usb 2-1: config 0 descriptor??
[ 1614.455486][ T8857] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1615.545294][T11484] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -71
[ 1615.586753][T11484] usb 1-1: USB disconnect, device number 26
[ 1615.763228][ T8857] gspca_topro: reg_w err -71
[ 1615.804608][ T8857] gspca_topro: Sensor soi763a
[ 1615.881520][ T8857] usb 2-1: USB disconnect, device number 26
[ 1618.542096][T17279] tmpfs: Bad value for 'nr_blocks'
[ 1620.304981][T17280] binder: 17278:17280 ioctl 40189206 200000000340 returned -22
[ 1621.448831][ T8857] usb 5-1: new full-speed USB device number 28 using dummy_hcd
[ 1621.891141][T17300] kvm: pic: non byte write
[ 1621.968922][ T8857] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1621.978234][ T8857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1621.986437][ T8857] usb 5-1: Product: syz
[ 1621.990719][ T8857] usb 5-1: Manufacturer: syz
[ 1621.995507][ T8857] usb 5-1: SerialNumber: syz
[ 1622.004203][ T8857] usb 5-1: config 0 descriptor??
[ 1622.247929][ T8857] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1622.484486][T11484] usb 1-1: new full-speed USB device number 27 using dummy_hcd
[ 1622.718869][T11484] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1622.733403][T11484] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1622.741891][T11484] usb 1-1: Product: syz
[ 1622.746210][T11484] usb 1-1: Manufacturer: syz
[ 1622.750918][T11484] usb 1-1: SerialNumber: syz
[ 1622.805100][T11484] usb 1-1: config 0 descriptor??
[ 1623.269615][T11484] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1624.737526][ T8857] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71
[ 1624.774722][ T8857] usb 5-1: USB disconnect, device number 28
[ 1625.760861][T11484] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -71
[ 1625.792572][T11484] usb 1-1: USB disconnect, device number 27
[ 1626.484591][T17341] loop4: detected capacity change from 0 to 4096
[ 1626.497102][T17341] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1626.510459][T17341] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1626.535999][T17341] System zones: 0-5
[ 1626.551332][T17341] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1626.615434][T17349] kvm: pic: non byte write
[ 1629.114877][T11484] hid-generic 0101:0002:0002.0011: item fetching failed at offset 3/10
[ 1629.125102][T11484] hid-generic: probe of 0101:0002:0002.0011 failed with error -22
[ 1629.357775][ T7539] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1629.994451][ T8858] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[ 1630.174451][ T8858] usb 1-1: Using ep0 maxpacket: 32
[ 1630.202320][ T8858] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1630.957543][ T8858] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1630.989762][ T8858] usb 1-1: Product: syz
[ 1630.993998][ T8858] usb 1-1: Manufacturer: syz
[ 1631.065014][ T8858] usb 1-1: SerialNumber: syz
[ 1631.112445][ T8858] usb 1-1: config 0 descriptor??
[ 1631.186595][ T8858] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1631.778315][T17391] tmpfs: Bad value for 'nr_blocks'
[ 1632.197014][T17394] binder: 17390:17394 ioctl 40189206 200000000340 returned -22
[ 1632.674283][T17396] syzkaller0: entered promiscuous mode
[ 1632.680019][T17396] syzkaller0: entered allmulticast mode
[ 1632.700294][ T8858] gspca_topro: reg_w err -71
[ 1632.731723][T17398] tmpfs: Bad value for 'nr_blocks'
[ 1632.744952][ T8858] gspca_topro: Sensor soi763a
[ 1632.754045][ T8858] usb 1-1: USB disconnect, device number 28
[ 1632.930774][T17399] binder: 17397:17399 ioctl 40189206 200000000340 returned -22
[ 1634.033207][T17407] loop4: detected capacity change from 0 to 4096
[ 1634.224127][T17407] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1634.948659][T17407] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1635.088934][T17407] System zones: 0-5
[ 1635.129230][T17407] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1635.384507][T15579] Bluetooth: hci1: command 0x0406 tx timeout
[ 1637.103641][ T7539] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1639.461624][T17452] fuse: Bad value for 'fd'
[ 1641.655057][  T968] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[ 1641.915869][T17473] loop2: detected capacity change from 0 to 4096
[ 1641.960390][T17473] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1642.016882][T17473] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1642.051905][T17473] System zones: 0-5
[ 1642.071733][  T968] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1642.083851][T17473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1642.152231][  T968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1642.178458][  T968] usb 5-1: Product: syz
[ 1642.458064][  T968] usb 5-1: Manufacturer: syz
[ 1642.462824][  T968] usb 5-1: SerialNumber: syz
[ 1642.641845][T17480] fuse: Bad value for 'fd'
[ 1643.475848][  T968] usb 5-1: config 0 descriptor??
[ 1644.057549][T15575] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1644.332660][  T968] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1647.266249][  T968] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -32
[ 1647.626123][  T968] usb 5-1: USB disconnect, device number 29
[ 1656.787980][T17577] loop0: detected capacity change from 0 to 512
[ 1656.813559][T17577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1657.984586][T16327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1661.383038][T17614] tmpfs: Bad value for 'nr_blocks'
[ 1662.775211][T17620] loop1: detected capacity change from 0 to 512
[ 1662.805698][T17620] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1663.725377][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1663.764851][T17630] kvm: pic: non byte write
[ 1667.707882][T17670] loop1: detected capacity change from 0 to 512
[ 1667.737931][T17670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1668.775733][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1669.165981][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.173009][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1673.903420][T17732] tmpfs: Bad value for 'nr_blocks'
[ 1674.112490][T17733] binder: 17731:17733 ioctl 40189206 200000000340 returned -22
[ 1674.870018][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1676.023283][T17747] tmpfs: Bad value for 'nr_blocks'
[ 1676.214445][T17750] binder: 17746:17750 ioctl 40189206 200000000340 returned -22
[ 1681.361629][T17771] loop0: detected capacity change from 0 to 40427
[ 1681.445677][T17771] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1681.485682][T17771] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1681.531578][T17771] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1681.674181][T17771] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1681.718346][T17771] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1685.894197][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1687.193999][T17838] loop1: detected capacity change from 0 to 512
[ 1687.267548][T17838] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1688.259813][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1693.749190][T17889] loop1: detected capacity change from 0 to 512
[ 1693.830222][T17889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1695.000905][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1695.035589][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1697.578276][T17907] loop1: detected capacity change from 0 to 40427
[ 1697.617776][T17907] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1697.652961][T17907] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1697.766214][T17907] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1697.962009][T17907] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1697.991345][T17907] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1703.233919][T17961] tmpfs: Bad value for 'nr_blocks'
[ 1703.397944][T17963] binder: 17960:17963 ioctl 40189206 200000000340 returned -22
[ 1703.857819][T15579] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1703.868498][T15579] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1703.887940][T15579] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1703.898126][T15579] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1703.905852][T15579] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1703.914035][T15579] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1704.537307][T16686] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1704.972147][T16686] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1706.059435][ T5799] Bluetooth: hci2: command tx timeout
[ 1706.131546][T16686] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1707.281681][T16686] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1707.665909][T17992] tmpfs: Bad value for 'nr_blocks'
[ 1708.115494][ T5799] Bluetooth: hci2: command tx timeout
[ 1708.307065][T17962] chnl_net:caif_netlink_parms(): no params data found
[ 1708.547556][T16686] tipc: Left network mode
[ 1708.674485][T18004] trusted_key: syz.2.2832 sent an empty control message without MSG_MORE.
[ 1709.443581][T17962] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1709.469117][T17962] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1709.551259][T17962] bridge_slave_0: entered allmulticast mode
[ 1710.184737][ T5799] Bluetooth: hci2: command tx timeout
[ 1710.378936][T17962] bridge_slave_0: entered promiscuous mode
[ 1710.389719][T17962] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1710.397052][T17962] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1710.405087][T17962] bridge_slave_1: entered allmulticast mode
[ 1710.417532][T17962] bridge_slave_1: entered promiscuous mode
[ 1711.053860][T17962] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1711.098450][T17962] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1712.101069][T17962] team0: Port device team_slave_0 added
[ 1712.124293][T17962] team0: Port device team_slave_1 added
[ 1712.534593][T18037] Cannot find add_set index 0 as target
[ 1713.442505][ T5799] Bluetooth: hci2: command tx timeout
[ 1713.448143][  T968] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 1713.596740][T17962] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1713.607157][T17962] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1713.659359][T17962] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1713.711438][T16686] erspan0 (unregistering): left allmulticast mode
[ 1713.726279][  T968] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1713.743557][  T968] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1713.803009][  T968] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1713.839339][T17962] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1713.852295][  T968] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1713.870729][T17962] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1713.935805][  T968] usb 1-1: config 0 descriptor??
[ 1713.981526][T17962] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1714.242179][T17962] hsr_slave_0: entered promiscuous mode
[ 1714.251425][T17962] hsr_slave_1: entered promiscuous mode
[ 1714.258660][T17962] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1714.267213][T17962] Cannot create hsr debugfs directory
[ 1714.469794][  T968] usbhid 1-1:0.0: can't add hid device: -32
[ 1715.181967][  T968] usbhid: probe of 1-1:0.0 failed with error -32
[ 1715.257669][  T968] usb 1-1: USB disconnect, device number 29
[ 1718.006140][T16686] hsr_slave_0: left promiscuous mode
[ 1718.141725][T16686] hsr_slave_1: left promiscuous mode
[ 1718.388656][T18083] loop1: detected capacity change from 0 to 512
[ 1718.398972][T16686] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1718.545743][T16686] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1719.121623][T16686] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1719.140695][T18083] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1719.164588][T16686] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1719.173029][T16686] bridge_slave_1: left allmulticast mode
[ 1719.181943][T16686] bridge_slave_1: left promiscuous mode
[ 1719.318016][T16686] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1719.357160][   T28] audit: type=1800 audit(1760476535.672:700): pid=18091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2847" name="bus" dev="overlay" ino=421 res=0 errno=0
[ 1719.523876][T16686] bridge_slave_0: left allmulticast mode
[ 1719.565949][T16686] bridge_slave_0: left promiscuous mode
[ 1719.630313][T16686] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1721.489888][T16686] veth1_macvtap: left promiscuous mode
[ 1721.497809][T16686] veth0_macvtap: left promiscuous mode
[ 1721.505620][T15911] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1721.517779][T16686] veth1_vlan: left promiscuous mode
[ 1721.557266][T16686] veth0_vlan: left promiscuous mode
[ 1721.915236][T11484] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1722.100482][T11484] usb 2-1: device descriptor read/64, error -71
[ 1722.232004][T16686] team0 (unregistering): Port device team_slave_1 removed
[ 1722.283618][T16686] team0 (unregistering): Port device team_slave_0 removed
[ 1722.333834][T16686] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1722.385262][T11484] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1722.393380][T16686] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1722.544588][T11484] usb 2-1: device descriptor read/64, error -71
[ 1722.682069][T11484] usb usb2-port1: attempt power cycle
[ 1723.076329][T16686] bond0 (unregistering): Released all slaves
[ 1723.114534][T11484] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[ 1723.156946][T11484] usb 2-1: device descriptor read/8, error -71
[ 1723.507763][T11484] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[ 1723.565943][T11484] usb 2-1: device descriptor read/8, error -71
[ 1723.714895][T11484] usb usb2-port1: unable to enumerate USB device
[ 1724.901892][T18135] Invalid ELF section header size
[ 1725.389750][T18137] program syz.1.2854 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1725.534496][T17962] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1725.608815][T17962] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1725.649384][T17962] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1725.943191][T17962] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1728.012129][T17962] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1728.086759][T17962] 8021q: adding VLAN 0 to HW filter on device team0
[ 1728.141130][ T2943] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1728.148415][ T2943] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1728.231333][T16686] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1728.238516][T16686] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1729.084818][T17962] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1729.174835][   T23] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[ 1729.336900][   T23] usb 1-1: device descriptor read/64, error -71
[ 1729.624789][   T23] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[ 1729.784645][   T23] usb 1-1: device descriptor read/64, error -71
[ 1729.883954][T17962] veth0_vlan: entered promiscuous mode
[ 1729.917560][   T23] usb usb1-port1: attempt power cycle
[ 1729.925858][T17962] veth1_vlan: entered promiscuous mode
[ 1730.016143][T17962] veth0_macvtap: entered promiscuous mode
[ 1730.049291][T17962] veth1_macvtap: entered promiscuous mode
[ 1730.103710][T17962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1730.134293][T17962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1730.159190][T17962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1730.185296][T17962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1730.199991][T17962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1730.210955][T17962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1730.240269][T17962] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1730.333541][T17962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1730.344505][   T23] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 1730.374794][T17962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1730.375360][   T23] usb 1-1: device descriptor read/8, error -71
[ 1730.389723][T17962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1730.413542][T17962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1730.442582][T17962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1730.467021][T17962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1730.507689][T17962] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1730.590963][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.599479][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1730.600972][T17962] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.616467][T17962] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.626136][T17962] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.635164][T17962] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1730.676540][   T23] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1730.718017][   T23] usb 1-1: device descriptor read/8, error -71
[ 1730.855318][   T23] usb usb1-port1: unable to enumerate USB device
[ 1730.917336][ T6500] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1730.958310][ T6500] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1731.061942][ T6500] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1731.077073][ T6500] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1736.155598][T18257] loop2: detected capacity change from 0 to 40427
[ 1736.337965][T18257] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1736.387531][T18257] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1736.689943][T18257] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1737.244791][T18257] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1737.251891][T18257] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1739.781417][T18321] tmpfs: Bad value for 'nr_blocks'
[ 1740.065764][T18324] binder: 18320:18324 ioctl 40189206 200000000340 returned -22
[ 1741.094558][ T8858] usb 1-1: new full-speed USB device number 34 using dummy_hcd
[ 1741.309684][ T8858] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1741.328612][ T8858] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1741.478921][ T8858] usb 1-1: Product: syz
[ 1741.575585][ T8858] usb 1-1: Manufacturer: syz
[ 1741.580255][ T8858] usb 1-1: SerialNumber: syz
[ 1742.460922][ T8858] usb 1-1: config 0 descriptor??
[ 1742.797337][ T8858] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1744.637422][ T8858] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -71
[ 1744.692763][ T8858] usb 1-1: USB disconnect, device number 34
[ 1745.251325][T18353] loop1: detected capacity change from 0 to 40427
[ 1745.309508][T18353] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1745.355819][T18353] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1745.505346][T18353] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1746.034656][T18394] syz.0.2891: attempt to access beyond end of device
[ 1746.034656][T18394] nbd0: rw=4096, sector=128, nr_sectors = 8 limit=0
[ 1746.051959][T18394] gfs2: error 10 reading superblock
[ 1748.500659][T18412] tmpfs: Bad value for 'nr_blocks'
[ 1748.616185][T18414] binder: 18411:18414 ioctl 40189206 200000000340 returned -22
[ 1752.294653][T16897] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1753.314783][T16897] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1753.684391][T16897] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1753.694220][T16897] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1753.703343][T16897] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1753.805736][T16897] usb 1-1: config 0 descriptor??
[ 1753.850248][T18446] tmpfs: Bad value for 'nr_blocks'
[ 1754.138226][T18447] binder: 18443:18447 ioctl 40189206 200000000340 returned -22
[ 1754.540435][T16897] usbhid 1-1:0.0: can't add hid device: -32
[ 1754.547609][T16897] usbhid: probe of 1-1:0.0 failed with error -32
[ 1754.720261][T16897] usb 1-1: USB disconnect, device number 35
[ 1756.252124][T18463] loop0: detected capacity change from 0 to 4096
[ 1756.279113][T18463] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1756.340907][T18463] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1756.384490][T18463] System zones: 0-5
[ 1756.436719][T18463] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1757.345800][T16327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1760.051948][T18495] Invalid ELF section header size
[ 1760.160708][T18495] program syz.4.2916 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1762.181474][ T5799] Bluetooth: hci3: unexpected event for opcode 0x202d
[ 1763.408753][T18516] tmpfs: Bad value for 'nr_blocks'
[ 1764.030092][T18516] binder: 18515:18516 ioctl 40189206 200000000340 returned -22
[ 1764.272813][ T5921] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1764.535566][ T5921] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1764.739468][ T5921] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1764.935713][ T5921] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1764.944911][ T5921] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1765.019577][ T5921] usb 1-1: config 0 descriptor??
[ 1766.136078][ T5921] usbhid 1-1:0.0: can't add hid device: -32
[ 1766.375720][ T5921] usbhid: probe of 1-1:0.0 failed with error -32
[ 1766.385252][ T5921] usb 1-1: USB disconnect, device number 36
[ 1767.413530][T18549] Can't find ip_set type hash:net,
[ 1768.210722][T18559] loop0: detected capacity change from 0 to 4096
[ 1768.247718][T18559] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1768.758646][T18559] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1769.007521][T18559] System zones: 0-5
[ 1769.096424][T18559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1770.684234][T16327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1770.734425][T11484] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 1770.931391][T18587] loop0: detected capacity change from 0 to 512
[ 1770.965179][T18587] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1771.188955][T11484] usb 3-1: Using ep0 maxpacket: 8
[ 1771.211226][T11484] usb 3-1: config 8 has 0 interfaces, different from the descriptor's value: 1
[ 1771.241490][T11484] usb 3-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice=5f.1d
[ 1771.634051][T11484] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1771.675729][T11484] usb 3-1: Product: syz
[ 1771.700008][T11484] usb 3-1: Manufacturer: syz
[ 1771.740104][T11484] usb 3-1: SerialNumber: syz
[ 1772.012799][T16327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1772.323534][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1772.999431][T11484] usb 3-1: USB disconnect, device number 28
[ 1773.315599][T18600] tipc: Started in network mode
[ 1773.320625][T18600] tipc: Node identity 7e899ad38f09, cluster identity 4711
[ 1773.328405][T18600] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1773.340359][T18600] syzkaller0: entered promiscuous mode
[ 1773.354545][T18600] syzkaller0: entered allmulticast mode
[ 1773.409585][T18600] tipc: Resetting bearer <eth:syzkaller0>
[ 1773.435322][T18599] tipc: Resetting bearer <eth:syzkaller0>
[ 1773.479828][T18599] tipc: Disabling bearer <eth:syzkaller0>
[ 1774.750671][T18612] program syz.2.2943 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1776.693780][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1781.086937][ T8857] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 1781.659731][ T8857] usb 1-1: Using ep0 maxpacket: 16
[ 1781.824527][ T8857] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1781.845957][ T8857] usb 1-1: config 0 has no interfaces?
[ 1781.866365][ T8857] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1781.884602][ T8857] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1781.901971][ T8857] usb 1-1: Product: syz
[ 1781.911000][ T8857] usb 1-1: Manufacturer: syz
[ 1781.920244][ T8857] usb 1-1: SerialNumber: syz
[ 1781.928379][ T8857] usb 1-1: config 0 descriptor??
[ 1782.033276][T18653] loop2: detected capacity change from 0 to 40427
[ 1782.047995][T18653] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1782.082780][T18653] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1782.173338][T18653] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1782.256443][ T8857] usb 1-1: USB disconnect, device number 37
[ 1782.413590][T18653] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1782.468811][T18653] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1786.606864][T18709] Invalid ELF header magic: != ELF
[ 1786.846562][  T968] usb 3-1: new full-speed USB device number 29 using dummy_hcd
[ 1787.185712][T18709] program syz.4.2966 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1787.244090][  T968] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1787.263878][  T968] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1787.289160][  T968] usb 3-1: Product: syz
[ 1787.293397][  T968] usb 3-1: Manufacturer: syz
[ 1787.304926][  T968] usb 3-1: SerialNumber: syz
[ 1787.320933][  T968] usb 3-1: config 0 descriptor??
[ 1788.090134][  T968] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1788.765887][ T8858] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[ 1788.973181][T18712] loop1: detected capacity change from 0 to 40427
[ 1788.999628][T18712] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1789.049348][T18712] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1789.106345][T18712] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1789.115156][ T8858] usb 5-1: Using ep0 maxpacket: 16
[ 1789.129534][ T8858] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1789.144552][ T8858] usb 5-1: config 0 has no interfaces?
[ 1789.193688][ T8858] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1789.213172][ T8858] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1789.247331][ T8858] usb 5-1: Product: syz
[ 1789.253854][ T8858] usb 5-1: Manufacturer: syz
[ 1789.254338][T18712] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1789.272732][ T8858] usb 5-1: SerialNumber: syz
[ 1789.283440][T18712] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1789.304011][ T8858] usb 5-1: config 0 descriptor??
[ 1789.424054][   T28] audit: type=1800 audit(1760476605.782:701): pid=18729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2971" name="bus" dev="overlay" ino=593 res=0 errno=0
[ 1789.556041][  T968] dvb_usb_rtl28xxu: probe of 3-1:0.0 failed with error -71
[ 1791.323905][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1791.421816][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1791.499648][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1791.600645][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1791.735278][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1791.848547][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1791.970726][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1792.029759][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.040105][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.084722][  T968] usb 3-1: USB disconnect, device number 29
[ 1792.236724][ T8858] usb 5-1: can't set config #0, error -71
[ 1792.314360][ T8858] usb 5-1: USB disconnect, device number 30
[ 1797.574686][  T968] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[ 1797.844498][  T968] usb 2-1: Using ep0 maxpacket: 16
[ 1797.927538][  T968] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1797.954224][  T968] usb 2-1: config 0 has no interfaces?
[ 1797.971788][  T968] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1797.987572][  T968] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1797.996153][  T968] usb 2-1: Product: syz
[ 1798.004360][  T968] usb 2-1: Manufacturer: syz
[ 1798.008996][  T968] usb 2-1: SerialNumber: syz
[ 1798.075641][  T968] usb 2-1: config 0 descriptor??
[ 1799.311269][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1799.735650][ T8858] usb 2-1: USB disconnect, device number 31
[ 1803.836646][T18840] Invalid ELF header magic: != ELF
[ 1804.337363][T18843] program syz.4.2995 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1804.673511][T18851] Invalid ELF header magic: != ELF
[ 1804.880739][T18852] program syz.1.2998 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1805.204459][   T27] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 1805.424556][   T27] usb 5-1: Using ep0 maxpacket: 16
[ 1805.447587][   T27] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1805.460362][   T27] usb 5-1: config 0 has no interfaces?
[ 1805.486799][   T27] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1805.524449][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1805.534438][   T27] usb 5-1: Product: syz
[ 1805.545304][   T27] usb 5-1: Manufacturer: syz
[ 1805.554781][   T27] usb 5-1: SerialNumber: syz
[ 1805.613504][   T27] usb 5-1: config 0 descriptor??
[ 1805.900301][  T968] usb 5-1: USB disconnect, device number 31
[ 1806.114482][T18738] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1807.144483][T18738] usb 2-1: Using ep0 maxpacket: 32
[ 1807.175454][T18738] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1807.194874][T18738] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1807.207318][T18738] usb 2-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1807.217005][T18738] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1807.225885][T18738] usb 2-1: Product: syz
[ 1807.230087][T18738] usb 2-1: Manufacturer: syz
[ 1807.235141][T18738] usb 2-1: SerialNumber: syz
[ 1807.242463][T18738] usb 2-1: config 0 descriptor??
[ 1807.334505][  T968] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 1807.743728][  T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1807.793643][  T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1807.841346][  T968] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1807.865246][  T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1807.898563][  T968] usb 3-1: config 0 descriptor??
[ 1808.210119][T18876] loop4: detected capacity change from 0 to 40427
[ 1808.220631][T18876] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1808.233674][T18876] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1808.253751][T18876] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1808.321031][T18876] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1808.328454][T18876] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1808.338375][  T968] cp2112 0003:10C4:EA90.0012: unknown main item tag 0x0
[ 1808.358902][  T968] cp2112 0003:10C4:EA90.0012: unknown main item tag 0x0
[ 1808.379365][  T968] cp2112 0003:10C4:EA90.0012: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.2-1/input0
[ 1808.537837][  T968] cp2112 0003:10C4:EA90.0012: error requesting version
[ 1808.552451][  T968] cp2112: probe of 0003:10C4:EA90.0012 failed with error -32
[ 1808.912688][  T968] usb 2-1: USB disconnect, device number 32
[ 1809.230194][   T28] audit: type=1800 audit(1760476625.592:702): pid=18896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3009" name="bus" dev="overlay" ino=665 res=0 errno=0
[ 1809.464386][  T968] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[ 1810.104627][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1811.016539][ T5921] usb 3-1: USB disconnect, device number 30
[ 1811.629780][  T968] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1812.151268][  T968] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1812.161239][  T968] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1812.170344][  T968] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1812.180841][  T968] usb 2-1: config 0 descriptor??
[ 1812.186506][  T968] usb 2-1: can't set config #0, error -71
[ 1812.193814][  T968] usb 2-1: USB disconnect, device number 33
[ 1812.684563][  T968] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1813.264436][  T968] usb 1-1: Using ep0 maxpacket: 16
[ 1813.275291][  T968] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1813.320123][  T968] usb 1-1: config 0 has no interfaces?
[ 1813.335954][  T968] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1813.374003][  T968] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1813.439927][   T28] audit: type=1800 audit(1760476629.802:703): pid=18916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3010" name="bus" dev="overlay" ino=269 res=0 errno=0
[ 1813.463454][  T968] usb 1-1: Product: syz
[ 1813.514204][  T968] usb 1-1: Manufacturer: syz
[ 1813.597769][  T968] usb 1-1: SerialNumber: syz
[ 1813.748563][  T968] usb 1-1: config 0 descriptor??
[ 1814.992048][  T968] usb 1-1: USB disconnect, device number 38
[ 1820.666327][T18946] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3020'.
[ 1820.675674][T18946] netlink: set zone limit has 8 unknown bytes
[ 1821.022006][T18946] syz.2.3020 (18946): drop_caches: 2
[ 1823.509774][   T28] audit: type=1800 audit(1760476639.872:704): pid=18968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3025" name="bus" dev="overlay" ino=908 res=0 errno=0
[ 1825.360726][ T5921] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1825.614501][ T5921] usb 1-1: Using ep0 maxpacket: 16
[ 1826.126924][ T5921] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1826.207509][ T5921] usb 1-1: config 0 has no interfaces?
[ 1826.302782][ T5921] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1826.360107][ T5921] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1826.400354][ T5921] usb 1-1: Product: syz
[ 1826.431735][T18975] Invalid ELF section header size
[ 1826.476150][ T5921] usb 1-1: Manufacturer: syz
[ 1826.499629][T18979] tmpfs: Bad value for 'nr_blocks'
[ 1826.504477][ T5921] usb 1-1: SerialNumber: syz
[ 1826.567479][ T5921] usb 1-1: config 0 descriptor??
[ 1826.792420][   T27] usb 1-1: USB disconnect, device number 39
[ 1826.964429][  T968] usb 5-1: new full-speed USB device number 32 using dummy_hcd
[ 1827.202319][  T968] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1827.230284][  T968] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1827.240198][  T968] usb 5-1: Product: syz
[ 1827.247837][  T968] usb 5-1: Manufacturer: syz
[ 1827.252665][  T968] usb 5-1: SerialNumber: syz
[ 1827.263282][  T968] usb 5-1: config 0 descriptor??
[ 1827.304706][ T5799] Bluetooth: hci0: command 0x0401 tx timeout
[ 1828.073565][  T968] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1828.190514][T18987] loop2: detected capacity change from 0 to 40427
[ 1828.198982][T18987] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1828.209632][T18987] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1828.239044][T18987] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1828.321913][T18987] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1828.329212][T18987] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1828.394452][T11484] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1828.806532][T18996] loop1: detected capacity change from 0 to 40427
[ 1828.829075][T18996] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1828.887113][T18996] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1829.030946][T18996] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1829.174638][T11484] usb 1-1: Using ep0 maxpacket: 8
[ 1829.187152][T18996] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1829.194249][T18996] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1829.202906][T11484] usb 1-1: config 8 has 0 interfaces, different from the descriptor's value: 1
[ 1829.225965][T11484] usb 1-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice=5f.1d
[ 1829.244358][T11484] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1829.252393][T11484] usb 1-1: Product: syz
[ 1829.259328][T11484] usb 1-1: Manufacturer: syz
[ 1829.264246][T11484] usb 1-1: SerialNumber: syz
[ 1829.622766][  T968] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71
[ 1829.662058][  T968] usb 5-1: USB disconnect, device number 32
[ 1830.192830][T18992] Bluetooth: hci2: command 0x0406 tx timeout
[ 1830.622541][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1830.630524][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1830.639008][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1830.648570][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1830.704708][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1830.712371][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1830.838801][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1831.280255][T11484] usb 1-1: USB disconnect, device number 40
[ 1831.413531][T19018] Invalid ELF section header size
[ 1831.531187][T19019] program syz.2.3036 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1832.247266][T19022] Invalid ELF section header size
[ 1832.754502][ T8857] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 1832.889196][T19031] Cannot find add_set index 0 as target
[ 1833.612220][ T8857] usb 3-1: Using ep0 maxpacket: 32
[ 1833.974885][ T8857] usb 3-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1833.984741][ T8857] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1833.992930][ T8857] usb 3-1: Product: syz
[ 1833.998673][ T8857] usb 3-1: Manufacturer: syz
[ 1834.004187][ T8857] usb 3-1: SerialNumber: syz
[ 1834.011804][ T8857] usb 3-1: config 0 descriptor??
[ 1834.036431][ T8857] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1834.332150][T11484] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1834.514486][T11484] usb 2-1: Using ep0 maxpacket: 16
[ 1834.521616][T11484] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1834.531961][T11484] usb 2-1: config 0 has no interfaces?
[ 1834.541747][T11484] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1834.550952][T11484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1834.559884][T11484] usb 2-1: Product: syz
[ 1834.564115][T11484] usb 2-1: Manufacturer: syz
[ 1834.568800][T11484] usb 2-1: SerialNumber: syz
[ 1834.575885][T11484] usb 2-1: config 0 descriptor??
[ 1834.704388][ T5921] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[ 1834.802258][T11484] usb 2-1: USB disconnect, device number 34
[ 1834.892799][ T5921] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1834.901958][ T5921] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1834.911017][ T5921] usb 5-1: Product: syz
[ 1834.915293][ T5921] usb 5-1: Manufacturer: syz
[ 1834.919924][ T5921] usb 5-1: SerialNumber: syz
[ 1834.928350][ T5921] usb 5-1: config 0 descriptor??
[ 1835.146533][ T5921] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1835.495738][ T8857] gspca_topro: reg_r err -32
[ 1835.522700][ T8857] gspca_topro: Sensor soi763a
[ 1835.817183][ T8857] usb 3-1: USB disconnect, device number 31
[ 1835.837528][   T28] audit: type=1800 audit(1760476651.892:705): pid=19042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3045" name="bus" dev="overlay" ino=949 res=0 errno=0
[ 1837.256406][ T5921] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71
[ 1838.440846][ T5921] usb 5-1: USB disconnect, device number 33
[ 1839.169833][T19056] Invalid ELF section header size
[ 1839.982976][   T28] audit: type=1800 audit(1760476656.342:706): pid=19064 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3052" name="bus" dev="overlay" ino=335 res=0 errno=0
[ 1842.172504][T19070] kvm: pic: non byte write
[ 1843.063443][   T28] audit: type=1800 audit(1760476659.392:707): pid=19077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3055" name="bus" dev="overlay" ino=973 res=0 errno=0
[ 1844.532781][T19081] tmpfs: Bad value for 'nr_blocks'
[ 1844.966802][T19082] binder: 19080:19082 ioctl 40189206 200000000340 returned -22
[ 1847.472182][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1848.060762][T19111] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3062'.
[ 1848.081430][T19111] netlink: set zone limit has 8 unknown bytes
[ 1848.181829][T19111] syz.4.3062 (19111): drop_caches: 2
[ 1851.733850][   T28] audit: type=1800 audit(1760476667.492:708): pid=19136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3069" name="bus" dev="overlay" ino=998 res=0 errno=0
[ 1853.533469][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.545912][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1854.540575][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1855.430347][T19159] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3075'.
[ 1856.304521][   T28] audit: type=1800 audit(1760476672.662:709): pid=19165 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3076" name="bus" dev="overlay" ino=760 res=0 errno=0
[ 1858.786488][T19171] tmpfs: Bad value for 'nr_blocks'
[ 1859.564747][T19178] Invalid ELF section header size
[ 1861.274398][T18738] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[ 1862.285814][T19183] program syz.2.3079 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1862.514447][T18738] usb 5-1: Using ep0 maxpacket: 16
[ 1862.567441][T18738] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1862.585091][T19190] Invalid ELF section header size
[ 1862.671319][T18738] usb 5-1: config 0 has no interfaces?
[ 1862.994391][T18738] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1863.010441][T19193] program syz.1.3084 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1863.077444][T18738] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1863.143665][T18738] usb 5-1: Product: syz
[ 1863.162998][T18738] usb 5-1: Manufacturer: syz
[ 1863.173557][T18738] usb 5-1: SerialNumber: syz
[ 1863.196703][T18738] usb 5-1: config 0 descriptor??
[ 1863.481908][T18738] usb 5-1: USB disconnect, device number 34
[ 1864.404191][T19214] tmpfs: Bad value for 'nr_blocks'
[ 1865.692811][   T27] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 1866.655013][   T27] usb 5-1: Using ep0 maxpacket: 8
[ 1866.897773][   T28] audit: type=1800 audit(1760476683.102:710): pid=19237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3091" name="bus" dev="overlay" ino=1053 res=0 errno=0
[ 1870.229175][   T27] usb 5-1: device descriptor read/all, error -71
[ 1871.514712][   T27] usb 5-1: new full-speed USB device number 36 using dummy_hcd
[ 1871.775539][   T27] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1871.807945][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1871.825238][   T27] usb 5-1: Product: syz
[ 1871.829746][   T27] usb 5-1: Manufacturer: syz
[ 1871.834418][   T27] usb 5-1: SerialNumber: syz
[ 1871.911164][   T27] usb 5-1: config 0 descriptor??
[ 1873.065136][   T27] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1874.365069][T19286] Invalid ELF section header size
[ 1874.458646][T19287] program syz.0.3103 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1875.735973][   T27] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71
[ 1875.794699][   T27] usb 5-1: USB disconnect, device number 36
[ 1886.532220][T19362] loop4: detected capacity change from 0 to 40427
[ 1886.599311][T19362] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1886.609858][T19362] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1886.831004][ T5799] Bluetooth: hci3: unexpected event for opcode 0x202d
[ 1887.358881][T19362] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4)
[ 1888.317155][T11484] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1888.604502][T11484] usb 3-1: Using ep0 maxpacket: 8
[ 1888.622649][T11484] usb 3-1: config 8 has 0 interfaces, different from the descriptor's value: 1
[ 1888.693276][T11484] usb 3-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice=5f.1d
[ 1888.708730][T11484] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1888.716930][T11484] usb 3-1: Product: syz
[ 1888.721124][T11484] usb 3-1: Manufacturer: syz
[ 1888.725783][T11484] usb 3-1: SerialNumber: syz
[ 1889.845869][T11484] usb 3-1: USB disconnect, device number 32
[ 1890.007485][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1893.745976][T19430] loop0: detected capacity change from 0 to 40427
[ 1893.755739][T19430] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1893.763525][T19430] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1893.861722][T19430] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1894.597950][T19430] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1894.605878][T19430] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1897.135102][T19481] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3147'.
[ 1900.411283][   T28] audit: type=1800 audit(1760476716.772:711): pid=19508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3155" name="bus" dev="overlay" ino=904 res=0 errno=0
[ 1904.417724][T19521] tmpfs: Bad value for 'nr_blocks'
[ 1907.329966][T19541] tmpfs: Bad value for 'nr_blocks'
[ 1907.590047][T19542] binder: 19540:19542 ioctl 40189206 200000000340 returned -22
[ 1910.247046][T19575] kvm: pic: non byte write
[ 1910.341482][T19555] loop0: detected capacity change from 0 to 40427
[ 1910.350940][T19555] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1910.363379][T19555] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1910.409907][T19555] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1910.494470][  T968] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1910.509215][T19555] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1910.711309][T19555] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1911.344473][  T968] usb 2-1: Using ep0 maxpacket: 8
[ 1911.373088][  T968] usb 2-1: config 8 has 0 interfaces, different from the descriptor's value: 1
[ 1911.744505][  T968] usb 2-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice=5f.1d
[ 1911.753610][  T968] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1911.847016][T19590] Cannot find add_set index 0 as target
[ 1912.469428][  T968] usb 2-1: Product: syz
[ 1912.473709][  T968] usb 2-1: Manufacturer: syz
[ 1912.478490][  T968] usb 2-1: SerialNumber: syz
[ 1914.919643][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.935955][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1914.956555][  T968] usb 2-1: USB disconnect, device number 35
[ 1917.424816][T19621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3177'.
[ 1918.489962][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1919.039587][T19630] loop1: detected capacity change from 0 to 40427
[ 1919.068683][T19630] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1919.091579][T19630] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1919.099343][T19636] Invalid ELF section header size
[ 1919.228092][T19630] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1920.285380][T19630] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1920.293876][T19630] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1920.384620][T19650] Cannot find add_set index 0 as target
[ 1921.018801][T19636] program syz.0.3187 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1922.272324][T19663] kvm: pic: non byte write
[ 1924.475196][T19680] tmpfs: Bad value for 'nr_blocks'
[ 1924.608580][T19682] binder: 19677:19682 ioctl 40189206 200000000340 returned -22
[ 1925.002116][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1928.662731][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1933.335520][ T5799] Bluetooth: hci3: unexpected event for opcode 0x202d
[ 1934.459623][T19766] loop0: detected capacity change from 0 to 40427
[ 1934.469906][T19766] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1934.498653][T19766] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1934.533189][T19766] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1934.803244][T19766] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1934.810792][T19766] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1936.287303][ T5799] Bluetooth: hci3: unexpected event for opcode 0x202d
[ 1936.786075][T18924] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 1937.054403][T18924] usb 1-1: Using ep0 maxpacket: 8
[ 1937.063024][T18924] usb 1-1: config 8 has 0 interfaces, different from the descriptor's value: 1
[ 1937.096766][T18924] usb 1-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice=5f.1d
[ 1937.108762][T18924] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1937.137425][T18924] usb 1-1: Product: syz
[ 1937.148038][T18924] usb 1-1: Manufacturer: syz
[ 1937.158237][T18924] usb 1-1: SerialNumber: syz
[ 1938.500594][T19802] tmpfs: Bad value for 'nr_blocks'
[ 1942.416890][ T5880] usb 1-1: USB disconnect, device number 41
[ 1942.733593][ T5799] Bluetooth: hci2: unexpected event for opcode 0x202d
[ 1943.314313][ T8857] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1943.698813][T19811] loop2: detected capacity change from 0 to 40427
[ 1943.704757][ T8857] usb 1-1: Using ep0 maxpacket: 32
[ 1943.708736][T19811] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1943.718670][T19811] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1943.731890][ T8857] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1943.759169][ T8857] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1943.803535][ T8857] usb 1-1: Product: syz
[ 1943.815980][T19811] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1943.828145][ T8857] usb 1-1: Manufacturer: syz
[ 1943.832800][ T8857] usb 1-1: SerialNumber: syz
[ 1943.852181][ T8857] usb 1-1: config 0 descriptor??
[ 1943.888532][ T8857] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1943.914595][T18924] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1944.019932][T19811] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1944.056030][T19811] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1945.054401][T18924] usb 2-1: Using ep0 maxpacket: 16
[ 1945.106833][T18924] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1945.130357][T18924] usb 2-1: config 0 has no interfaces?
[ 1945.248337][T18924] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1945.264057][T18924] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1945.287031][T18924] usb 2-1: Product: syz
[ 1945.301935][T18924] usb 2-1: Manufacturer: syz
[ 1945.318839][T18924] usb 2-1: SerialNumber: syz
[ 1945.332494][T18924] usb 2-1: config 0 descriptor??
[ 1945.707489][  T968] usb 2-1: USB disconnect, device number 36
[ 1945.736998][ T8857] gspca_topro: Sensor cx0342
[ 1946.391197][  T968] usb 1-1: USB disconnect, device number 42
[ 1948.260089][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1950.298076][   T28] audit: type=1800 audit(1760476766.662:712): pid=19884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3245" name="bus" dev="overlay" ino=1174 res=0 errno=0
[ 1953.157164][T19892] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3249'.
[ 1955.300658][ T5799] Bluetooth: hci1: unexpected event for opcode 0x202d
[ 1956.332886][T19913] kvm: pic: non byte write
[ 1956.609852][T19900] loop1: detected capacity change from 0 to 40427
[ 1956.764421][T19900] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1956.884749][T19900] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1957.099878][T19900] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1957.325205][T19929] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3258'.
[ 1958.061469][T19943] binder_alloc: 19942: binder_alloc_buf, no vma
[ 1959.844380][ T8857] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1960.024578][ T8857] usb 1-1: Using ep0 maxpacket: 32
[ 1960.044560][ T8857] usb 1-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1960.083328][ T8857] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1960.108403][ T8857] usb 1-1: Product: syz
[ 1960.112658][ T8857] usb 1-1: Manufacturer: syz
[ 1960.141854][ T8857] usb 1-1: SerialNumber: syz
[ 1960.160526][ T8857] usb 1-1: config 0 descriptor??
[ 1960.178662][ T8857] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1960.454051][T19966] loop1: detected capacity change from 0 to 40427
[ 1960.490203][T19966] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1960.664024][T19966] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1960.705237][ T8857] gspca_topro: reg_w err -110
[ 1960.745118][ T8857] gspca_topro: Sensor soi763a
[ 1960.825204][T19966] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1961.147893][T19966] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1961.174405][T19966] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1961.357180][ T5799] Bluetooth: hci0: unexpected event for opcode 0x202d
[ 1962.155268][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.168652][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.177023][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.185430][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.193008][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.201400][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.209406][T15911] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[ 1962.734992][  T968] usb 1-1: USB disconnect, device number 43
[ 1963.537115][  T968] hid-generic 0101:0002:0002.0013: item fetching failed at offset 3/8
[ 1963.559263][  T968] hid-generic: probe of 0101:0002:0002.0013 failed with error -22
[ 1966.104305][    C0] ------------[ cut here ]------------
[ 1966.110458][    C0] ODEBUG: free active (active state 0) object: ffff88805dee8890 object type: timer_list hint: rose_t0timer_expiry+0x0/0x350
[ 1966.123978][    C0] WARNING: CPU: 0 PID: 8056 at lib/debugobjects.c:518 debug_check_no_obj_freed+0x446/0x540
[ 1966.134073][    C0] Modules linked in:
[ 1966.138030][    C0] CPU: 0 PID: 8056 Comm: kworker/u4:16 Not tainted syzkaller #0
[ 1966.145725][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1966.155866][    C0] Workqueue: bat_events batadv_nc_worker
[ 1966.161596][    C0] RIP: 0010:debug_check_no_obj_freed+0x446/0x540
[ 1966.168009][    C0] Code: 4c 8b 4d 00 48 c7 c7 c0 6d fc 8a 48 c7 c6 20 6a fc 8a 48 c7 c2 40 6f fc 8a 8b 0c 24 4d 89 f8 41 55 e8 5e 07 2a fd 48 83 c4 08 <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 d3 b3 24
[ 1966.187693][    C0] RSP: 0018:ffffc90000007a50 EFLAGS: 00010296
[ 1966.193805][    C0] RAX: 7704311b72ea8200 RBX: ffffffff97142ff8 RCX: ffff888028f85a00
[ 1966.201845][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[ 1966.209884][    C0] RBP: ffffffff8aac9f00 R08: ffffc90000007647 R09: 1ffff92000000ec8
[ 1966.217933][    C0] R10: dffffc0000000000 R11: fffff52000000ec9 R12: ffff88805dee8a00
[ 1966.225962][    C0] R13: ffffffff89673230 R14: ffff88805dee8000 R15: ffff88805dee8890
[ 1966.233969][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1966.242958][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1966.249611][    C0] CR2: 000000110c29980d CR3: 0000000058f80000 CR4: 00000000003506f0
[ 1966.257646][    C0] Call Trace:
[ 1966.260947][    C0]  <IRQ>
[ 1966.263833][    C0]  slab_free_freelist_hook+0xd2/0x1b0
[ 1966.269282][    C0]  ? rose_timer_expiry+0x4c6/0x5f0
[ 1966.274453][    C0]  __kmem_cache_free+0xba/0x1f0
[ 1966.279348][    C0]  rose_timer_expiry+0x4c6/0x5f0
[ 1966.284360][    C0]  ? call_timer_fn+0x15a/0x530
[ 1966.289151][    C0]  call_timer_fn+0x16e/0x530
[ 1966.293760][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1966.298861][    C0]  ? call_timer_fn+0xbf/0x530
[ 1966.303571][    C0]  ? __run_timers+0x7d0/0x7d0
[ 1966.308316][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1966.313571][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1966.318845][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1966.323911][    C0]  __run_timers+0x52d/0x7d0
[ 1966.328499][    C0]  ? detach_timer+0x2b0/0x2b0
[ 1966.333206][    C0]  ? lock_chain_count+0x20/0x20
[ 1966.338130][    C0]  run_timer_softirq+0x67/0xf0
[ 1966.342942][    C0]  handle_softirqs+0x280/0x820
[ 1966.347756][    C0]  ? __irq_exit_rcu+0xc7/0x190
[ 1966.352546][    C0]  ? do_softirq+0x180/0x180
[ 1966.357116][    C0]  __irq_exit_rcu+0xc7/0x190
[ 1966.361733][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1966.366308][    C0]  irq_exit_rcu+0x9/0x20
[ 1966.370589][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1966.376318][    C0]  </IRQ>
[ 1966.379278][    C0]  <TASK>
[ 1966.382230][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1966.388272][    C0] RIP: 0010:lock_acquire+0x1f2/0x410
[ 1966.393593][    C0] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 09 00 00 43 c6 44 3c 0b 00
[ 1966.413293][    C0] RSP: 0018:ffffc9000349fa40 EFLAGS: 00000206
[ 1966.419469][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 7704311b72ea8200
[ 1966.427520][    C0] RDX: 0000000000000000 RSI: ffffffff8aaace60 RDI: ffffffff8afc6400
[ 1966.435573][    C0] RBP: ffffc9000349fb48 R08: dffffc0000000000 R09: 1ffffffff21b4ea0
[ 1966.443592][    C0] R10: dffffc0000000000 R11: fffffbfff21b4ea1 R12: 1ffff92000693f54
[ 1966.451648][    C0] R13: ffffffff8cd2ff20 R14: 0000000000000246 R15: dffffc0000000000
[ 1966.459720][    C0]  ? batadv_nc_worker+0xd2/0x610
[ 1966.464750][    C0]  ? read_lock_is_recursive+0x20/0x20
[ 1966.470167][    C0]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1966.476307][    C0]  ? batadv_nc_worker+0xd2/0x610
[ 1966.481385][    C0]  batadv_nc_worker+0xef/0x610
[ 1966.486303][    C0]  ? batadv_nc_worker+0xd2/0x610
[ 1966.491334][    C0]  ? process_scheduled_works+0x957/0x15b0
[ 1966.497268][    C0]  process_scheduled_works+0xa45/0x15b0
[ 1966.502947][    C0]  ? assign_work+0x400/0x400
[ 1966.507726][    C0]  ? assign_work+0x39e/0x400
[ 1966.512423][    C0]  worker_thread+0xa55/0xfc0
[ 1966.517259][    C0]  kthread+0x2fa/0x390
[ 1966.521410][    C0]  ? pr_cont_work+0x560/0x560
[ 1966.526247][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1966.530950][    C0]  ret_from_fork+0x48/0x80
[ 1966.535554][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1966.540270][    C0]  ret_from_fork_asm+0x11/0x20
[ 1966.545255][    C0]  </TASK>
[ 1966.548366][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1966.555677][    C0] CPU: 0 PID: 8056 Comm: kworker/u4:16 Not tainted syzkaller #0
[ 1966.563353][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1966.573440][    C0] Workqueue: bat_events batadv_nc_worker
[ 1966.579111][    C0] Call Trace:
[ 1966.582398][    C0]  <IRQ>
[ 1966.585250][    C0]  dump_stack_lvl+0x16c/0x230
[ 1966.589945][    C0]  ? show_regs_print_info+0x20/0x20
[ 1966.595152][    C0]  ? load_image+0x3b0/0x3b0
[ 1966.599671][    C0]  panic+0x2c0/0x710
[ 1966.603575][    C0]  ? bpf_jit_dump+0xd0/0xd0
[ 1966.608087][    C0]  ? ret_from_fork_asm+0x11/0x20
[ 1966.613033][    C0]  __warn+0x2e0/0x470
[ 1966.617013][    C0]  ? debug_check_no_obj_freed+0x446/0x540
[ 1966.622738][    C0]  ? debug_check_no_obj_freed+0x446/0x540
[ 1966.628461][    C0]  report_bug+0x2be/0x4f0
[ 1966.632801][    C0]  ? debug_check_no_obj_freed+0x446/0x540
[ 1966.638524][    C0]  ? debug_check_no_obj_freed+0x446/0x540
[ 1966.644248][    C0]  ? debug_check_no_obj_freed+0x448/0x540
[ 1966.649971][    C0]  handle_bug+0xcf/0x120
[ 1966.654224][    C0]  exc_invalid_op+0x1a/0x50
[ 1966.658739][    C0]  asm_exc_invalid_op+0x1a/0x20
[ 1966.663601][    C0] RIP: 0010:debug_check_no_obj_freed+0x446/0x540
[ 1966.669934][    C0] Code: 4c 8b 4d 00 48 c7 c7 c0 6d fc 8a 48 c7 c6 20 6a fc 8a 48 c7 c2 40 6f fc 8a 8b 0c 24 4d 89 f8 41 55 e8 5e 07 2a fd 48 83 c4 08 <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 d3 b3 24
[ 1966.689554][    C0] RSP: 0018:ffffc90000007a50 EFLAGS: 00010296
[ 1966.695625][    C0] RAX: 7704311b72ea8200 RBX: ffffffff97142ff8 RCX: ffff888028f85a00
[ 1966.703684][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[ 1966.711653][    C0] RBP: ffffffff8aac9f00 R08: ffffc90000007647 R09: 1ffff92000000ec8
[ 1966.719627][    C0] R10: dffffc0000000000 R11: fffff52000000ec9 R12: ffff88805dee8a00
[ 1966.727601][    C0] R13: ffffffff89673230 R14: ffff88805dee8000 R15: ffff88805dee8890
[ 1966.735581][    C0]  ? rose_transmit_link+0x740/0x740
[ 1966.740806][    C0]  slab_free_freelist_hook+0xd2/0x1b0
[ 1966.746196][    C0]  ? rose_timer_expiry+0x4c6/0x5f0
[ 1966.751316][    C0]  __kmem_cache_free+0xba/0x1f0
[ 1966.756196][    C0]  rose_timer_expiry+0x4c6/0x5f0
[ 1966.761141][    C0]  ? call_timer_fn+0x15a/0x530
[ 1966.765906][    C0]  call_timer_fn+0x16e/0x530
[ 1966.770496][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1966.775534][    C0]  ? call_timer_fn+0xbf/0x530
[ 1966.780210][    C0]  ? __run_timers+0x7d0/0x7d0
[ 1966.784892][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1966.790093][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1966.795302][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1966.800341][    C0]  __run_timers+0x52d/0x7d0
[ 1966.804856][    C0]  ? detach_timer+0x2b0/0x2b0
[ 1966.809534][    C0]  ? lock_chain_count+0x20/0x20
[ 1966.814387][    C0]  run_timer_softirq+0x67/0xf0
[ 1966.819155][    C0]  handle_softirqs+0x280/0x820
[ 1966.823917][    C0]  ? __irq_exit_rcu+0xc7/0x190
[ 1966.828688][    C0]  ? do_softirq+0x180/0x180
[ 1966.833196][    C0]  __irq_exit_rcu+0xc7/0x190
[ 1966.837804][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1966.842320][    C0]  irq_exit_rcu+0x9/0x20
[ 1966.846579][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1966.852219][    C0]  </IRQ>
[ 1966.855150][    C0]  <TASK>
[ 1966.858084][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1966.864077][    C0] RIP: 0010:lock_acquire+0x1f2/0x410
[ 1966.869361][    C0] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 09 00 00 43 c6 44 3c 0b 00
[ 1966.888964][    C0] RSP: 0018:ffffc9000349fa40 EFLAGS: 00000206
[ 1966.895033][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 7704311b72ea8200
[ 1966.903000][    C0] RDX: 0000000000000000 RSI: ffffffff8aaace60 RDI: ffffffff8afc6400
[ 1966.910984][    C0] RBP: ffffc9000349fb48 R08: dffffc0000000000 R09: 1ffffffff21b4ea0
[ 1966.918975][    C0] R10: dffffc0000000000 R11: fffffbfff21b4ea1 R12: 1ffff92000693f54
[ 1966.926963][    C0] R13: ffffffff8cd2ff20 R14: 0000000000000246 R15: dffffc0000000000
[ 1966.934959][    C0]  ? batadv_nc_worker+0xd2/0x610
[ 1966.939928][    C0]  ? read_lock_is_recursive+0x20/0x20
[ 1966.945328][    C0]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1966.951351][    C0]  ? batadv_nc_worker+0xd2/0x610
[ 1966.956336][    C0]  batadv_nc_worker+0xef/0x610
[ 1966.961117][    C0]  ? batadv_nc_worker+0xd2/0x610
[ 1966.966069][    C0]  ? process_scheduled_works+0x957/0x15b0
[ 1966.971827][    C0]  process_scheduled_works+0xa45/0x15b0
[ 1966.977418][    C0]  ? assign_work+0x400/0x400
[ 1966.982022][    C0]  ? assign_work+0x39e/0x400
[ 1966.986640][    C0]  worker_thread+0xa55/0xfc0
[ 1966.991278][    C0]  kthread+0x2fa/0x390
[ 1966.995361][    C0]  ? pr_cont_work+0x560/0x560
[ 1967.000047][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1967.004654][    C0]  ret_from_fork+0x48/0x80
[ 1967.009075][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1967.013659][    C0]  ret_from_fork_asm+0x11/0x20
[ 1967.018437][    C0]  </TASK>
[ 1967.021781][    C0] Kernel Offset: disabled
[ 1967.026219][    C0] Rebooting in 86400 seconds..