last executing test programs:

19.474319082s ago: executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001840)=@newtfilter={0x6a4, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xe}}, [@filter_kind_options=@f_u32={{0x8}, {0x678, 0x2, [@TCA_U32_SEL={0x644, 0x5, {0x5, 0x18, 0x0, 0x4f, 0x3, 0xff, 0x1000, 0x7, [{0x5, 0x8, 0x1ff, 0x400}, {0x63, 0x7, 0x5, 0x3f}, {0x5, 0x6, 0x1, 0xff}, {0x8001, 0x1f, 0x128c45f3, 0x8}, {0xdbc, 0x4, 0x2, 0xffffff34}, {0x3, 0x80000000, 0x7e25be85, 0x9}, {0xfff, 0x101, 0x0, 0x100}, {0x2, 0x5, 0x2, 0x5}, {0x6, 0x4, 0x0, 0xa0}, {0x3f, 0x1, 0x10001, 0x20}, {0x1, 0xd1, 0x400, 0x80000000}, {0x7, 0x7fff, 0x8, 0x9}, {0x6, 0x2, 0x40, 0x7}, {0x3, 0x8c, 0x81}, {0x10001, 0x2, 0x3, 0x9}, {0x3c, 0x1, 0x2, 0x8}, {0x1, 0x0, 0x4, 0xcca6}, {0x2, 0xfff, 0x8, 0x7e0}, {0x6, 0x9a5, 0x2, 0xce0}, {0x20, 0x7fff, 0x3}, {0x5, 0x4, 0x7ff, 0xff}, {0x1ff, 0x3, 0x849, 0x2}, {0x7fffffff, 0xd59, 0xb2af, 0x1f}, {0x5, 0x1ff, 0x9, 0x2}, {0x4, 0x0, 0x7fffffff, 0x8}, {0xff, 0x0, 0x40, 0x8001}, {0x400, 0x0, 0x0, 0x1ff}, {0x101, 0x4, 0x6, 0x9}, {0x0, 0x1ff, 0xfffffff7, 0x8}, {0x0, 0x7, 0x4, 0x1}, {0x7, 0x1, 0x401, 0x7}, {0x3, 0x0, 0x100, 0xea6}, {0x9, 0x8, 0x80000000, 0xc689}, {0x1, 0x2f3, 0x3, 0x9}, {0x3, 0x7f, 0x1, 0x10001}, {0x80000001, 0x10000, 0x8, 0xffff}, {0x8000, 0x7, 0x3, 0x3}, {0x5, 0x8, 0x4, 0x1}, {0x0, 0x1419, 0x3, 0x631b}, {0x3c, 0x4, 0x7fffffff, 0x7f}, {0x40, 0x53, 0x8, 0x5}, {0x6, 0x9, 0x200, 0x4}, {0x40, 0x64f, 0x9, 0x6}, {0x6, 0xffffffff, 0x1, 0x401}, {0x80000000, 0x3, 0x0, 0x7}, {0x180000, 0x400, 0x0, 0x400}, {0x5, 0x1000, 0x7, 0x1}, {0x2, 0x10000, 0x1ff, 0xffffffff}, {0x0, 0x200, 0xbf3, 0x7fffffff}, {0xf0c, 0x8000, 0xf26, 0x36}, {0xa, 0x8003, 0xfffffff7, 0x4}, {0x200, 0x835, 0x5, 0x8}, {0x0, 0x7}, {0xff, 0x400, 0x7, 0x2}, {0x8001, 0x2, 0x5, 0xfff}, {0x4, 0x1, 0x180, 0x6}, {0x7, 0x4, 0x63, 0x8}, {0x7fff, 0x1, 0x9, 0x5}, {0x2, 0x3, 0x57, 0x5}, {0x401, 0x1, 0x2, 0x7}, {0x2, 0x29ea, 0x2, 0x6}, {0x4, 0x8a4, 0x5, 0x2}, {0x101, 0x1, 0xff, 0x7}, {0xffff4130, 0xa50, 0x4, 0x7}, {0x5, 0x28, 0x3ff, 0x37c0}, {0xff, 0x4, 0x0, 0x2}, {0x3528f3b, 0x10001, 0x1, 0xfffffa2a}, {0x86, 0x20, 0xbf1, 0x9}, {0xff, 0x5bb, 0x42, 0x6}, {0x4, 0x6, 0x9, 0x1700000}, {0x10000, 0x1, 0x0, 0x8000}, {0x1f, 0x84a8, 0x101, 0x7}, {0x6, 0x8c, 0x5e32, 0x6}, {0xfffffffe, 0x401, 0xa99b, 0xff}, {0x1, 0x101, 0x8, 0x5}, {0x1, 0x3, 0x4, 0x3f}, {0x7, 0x9, 0xffff, 0x4}, {0x0, 0x80000001, 0x1, 0x4d}, {0x80, 0x8, 0x8, 0x200}, {0xcdf, 0x3, 0xfffffff7}, {0x5, 0x0, 0xb0, 0x8}, {0x0, 0x100, 0x2, 0x20}, {0x1, 0x4, 0x0, 0x7}, {0x6, 0xfffffff8, 0x4, 0x2}, {0x9, 0x80, 0x0, 0x7f}, {0x62, 0xc4000000, 0x7, 0x4}, {0xfff, 0xfffffffc, 0x1, 0x101}, {0x0, 0x7, 0xfffffbff, 0xd72e}, {0x6f, 0x9, 0xfffffffd, 0x7fff}, {0x2, 0x10001, 0x3}, {0x2, 0x10001, 0x4, 0x3}, {0x5, 0xa4e, 0x400, 0x81}, {0x66e, 0x80000000, 0x7, 0x1}, {0x8, 0x81, 0x80000000, 0x2}, {0x5, 0xdf5d, 0x430, 0x8}, {0x50, 0x7, 0x81, 0x9}, {0x0, 0x8e, 0x1, 0xf}, {0x0, 0x9, 0x3, 0x6}, {0x8e, 0x0, 0x2, 0x6}]}}, @TCA_U32_MARK={0x10, 0xa, {0xffffff7b}}, @TCA_U32_LINK={0x8, 0x3, 0xc52}, @TCA_U32_ACT={0x4}, @TCA_U32_INDEV={0x14, 0x8, 'vlan1\x00'}]}}]}, 0x6a4}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

19.232226845s ago: executing program 1:
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000480)={[{@nodiscard}, {}, {@acl}, {@alloc_mode_reuse}, {@inline_xattr}, {@disable_roll_forward}, {@background_gc_on}, {@nouser_xattr}, {@noflush_merge}, {@user_xattr}, {@fsync_mode_strict}, {@adaptive_mode}, {@jqfmt_vfsold}, {@noinline_dentry}]}, 0x1, 0x5505, &(0x7f0000002480)="$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")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
fallocate(r0, 0x0, 0x0, 0x9000f4)

16.797236496s ago: executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
fcntl$setsig(r3, 0xa, 0x21)
fcntl$setlease(r3, 0x400, 0x0)
truncate(&(0x7f0000000080)='./file0\x00', 0x0)
ptrace$ARCH_SHSTK_LOCK(0x1e, r0, 0x3, 0x5003)
r4 = timerfd_create(0x0, 0x0)
timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000000540)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r4, &(0x7f0000000600))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000180)=[0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0], <r6=>0x0, 0xa3, &(0x7f0000000240)=[{}], 0x8, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0xc9, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, &(0x7f0000000480)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x14, '\x00', r5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

15.754800459s ago: executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = syz_io_uring_setup(0x2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000380)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000002240)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000004b8bc97bc03d6e7f0bccdee4f2208bf512a81f59499bde554050e537ea5dace7e1533277059d5e60c0b036178b822eaf4da040f2ab90acbad879a26e388e86becdcf28f9ee5ca76f4300420120240135f86478fa4e3e3b33c675d6f22b27b589022d614a817882408e7e90535354f27978cff916854dd1e0603a22ae9e9b7fa62ee1d3ac63d5d3daf5cccbfda4", @ANYRESOCT=r0, @ANYRES8=r6, @ANYRESOCT=r0, @ANYBLOB, @ANYRES8=r5, @ANYRESOCT], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r8 = getpid()
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r10, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
r11 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r12=>0x0, 0x0)
syz_io_uring_submit(r12, 0x0, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r11, 0x7a98, 0x0, 0x0, 0x0, 0x0)
writev(r6, 0x0, 0x0)
r13 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x11, r13, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000100)={0x2020}, 0x2020)
r14 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000001840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b70300001b0000008500000083000000bf090000000000005509010000000000000000b7080000000000007b9af8ff00000000b509050000000000dbaaf0ff00000000bda804000000000007080000f8ffffffbfa400000000000007000000f0ffffffb70200000800000018220000", @ANYRES32=r14, @ANYBLOB="0000000000000000b7050000080000004600000076000000bf91000000000000b6080000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}})
io_uring_enter(r1, 0x485c, 0x0, 0x1, 0x0, 0x0)

15.651801485s ago: executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r1 = socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0)=@ccm_128={{}, '\x00', "800000000307000000000000003c0aeb", "6b30e9a0", "b05a7d133e17ab00"}, 0x28)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, 0x0, &(0x7f00000008c0))

15.492195792s ago: executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$nl_rdma(0x10, 0x3, 0x14)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="ad43000000f45400000001"], 0x14}}, 0x0)

14.656807509s ago: executing program 4:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_IO_FLUSHER(0x34, 0x2)
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000100))
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000340)={<r2=>0x0, <r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000180)={r2})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000002780)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={r4, 0x3, r1, 0x5})
r5 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prlimit64(r3, 0x5, 0x0, &(0x7f0000000200))
sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0x0)
r9 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfff00002}, {0x16}]}, 0x10)

12.932246726s ago: executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x6)
getpid()
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @remote}, 0x10)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x40, 0x0, &(0x7f0000000100)="05ff03076844268cb89e14f00800fee0ffff00febabec44277fb86dd1402e000030c62079f4b4d2f87e5feca6aab055013f2325f1a3901050b038da1880b2518", 0x0, 0xfe, 0x60000000}, 0x50)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x48, 0xe0}, {0x6}]}, 0x10)
socket$packet(0x11, 0x3, 0x300)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x17}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="6aaed7a5c0852618000000000000000000000000000000620000000000000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0xe8, &(0x7f00000001c0)=""/232}, 0x90)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00'})

8.985227597s ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
fcntl$setsig(r3, 0xa, 0x21)
fcntl$setlease(r3, 0x400, 0x0)
truncate(&(0x7f0000000080)='./file0\x00', 0x0)
ptrace$ARCH_SHSTK_LOCK(0x1e, r0, 0x3, 0x5003)
r4 = timerfd_create(0x0, 0x0)
timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000000540)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r4, &(0x7f0000000600))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000180)=[0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0], <r6=>0x0, 0xa3, &(0x7f0000000240)=[{}], 0x8, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0xc9, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, &(0x7f0000000480)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x14, '\x00', r5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

8.831791172s ago: executing program 1:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/profiling', 0x0, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000880)=""/4096, 0x1000, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

8.586727772s ago: executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000010000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
fallocate(r3, 0x0, 0x0, 0x3)
close(r1)

7.822013183s ago: executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
r1 = socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0)=@ccm_128={{}, '\x00', "800000000307000000000000003c0aeb", "6b30e9a0", "b05a7d133e17ab00"}, 0x28)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, 0x0, &(0x7f00000008c0))

7.576094894s ago: executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
shutdown(r0, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe)
r1 = syz_io_uring_setup(0x2ddd, &(0x7f00000006c0), &(0x7f0000000100), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000080), &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000380))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r1, 0x381b, 0x0, 0x0, 0x0, 0x0)

7.279107082s ago: executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x6, 0x15, &(0x7f0000001480)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f900001ab703000008000000b704000000001500850000003300000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2, &(0x7f0000000440)=ANY=[], 0xff, 0x1509, &(0x7f0000002d40)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
acct(&(0x7f00000001c0)='./file0\x00')
acct(0x0)
ftruncate(r1, 0xc17a)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaa82e3efec4f6186dd6000140000082c0000000000000000000000000000000000ff020000000000000000000000000001800090"], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x2, 0x4000, 0x2000, &(0x7f000000e000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x9, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800b00010065727378616e0001000f000000000000080007007f00000154c4dc617e1440578faf16c2ce8c00fd9c68db86c5cf298129d9a8f37aa6e533f0daa3c12f7cd754be364cfab27c5cb9e8df1824454f1c7691348a72a8e9499ba71d7bb37fec4b48f2e6d3a039c2f26e89ae458ddffb07b3c769ecbe4ca0d67eb193a508c2fc54ddb116e2fbe978064ef38dec13c523629f71b28fd4"], 0x40}}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000700)='net/softnet_stat\x00')
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

6.75282801s ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$unix(0x1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r4=>0x0})
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r5, &(0x7f0000000200)={0x1d, r4}, 0x10)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$sock(r5, &(0x7f0000001940)={&(0x7f00000002c0)=@sco={0x1f, @none}, 0x80, &(0x7f0000000000), 0x5, &(0x7f00000008c0)=[@timestamping={{0x14}}], 0x18}, 0x0)

6.672412352s ago: executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x24}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(0x0)
getuid()
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14}, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xd}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0xf, 0x3}}]}}]}, 0x40}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

6.3691467s ago: executing program 4:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000e100000000000000000c00010000000000950079334131fbd646fa000000000000d177a2eb9a7deae0acc8033c220ca0e620892c60a466ca9e62ea924317b6e2f1b87a30d73d4aaeac11a333"], &(0x7f0000000080)='syzkaller\x00', 0x4}, 0x90)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0))
pwritev(r2, &(0x7f0000000080)=[{&(0x7f00000002c0)='\x00!', 0x2}], 0xa, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0}, 0x90)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8}]}}}]}, 0x3c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
syz_emit_ethernet(0xae, &(0x7f0000000080)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\b\x00', 0x78, 0x3a, 0x0, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x7d0, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback, @local, [@srh={0x0, 0x8, 0x4, 0x4, 0x0, 0x0, 0x0, [@empty, @rand_addr=' \x01\x00', @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}]}}}}}}}, 0x0)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000640)=ANY=[@ANYRESDEC=r2], 0x114}], 0x1}, 0x4002)
syz_init_net_socket$ax25(0x27, 0x0, 0xcb)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0x0, 0x3}, 0x45)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="1a00000007"], 0xd)

5.929261602s ago: executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = syz_io_uring_setup(0x2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000380), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000002240)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000004b8bc97bc03d6e7f0bccdee4f2208bf512a81f59499bde554050e537ea5dace7e1533277059d5e60c0b036178b822eaf4da040f2ab90acbad879a26e388e86becdcf28f9ee5ca76f4300420120240135f86478fa4e3e3b33c675d6f22b27b589022d614a817882408e7e90535354f27978cff916854dd1e0603a22ae9e9b7fa62ee1d3ac63d5d3daf5cccbfda4", @ANYRESOCT=r0, @ANYRES8, @ANYRESOCT=r0, @ANYRESDEC=0x0, @ANYBLOB="358c6a94ffbf986c004eaab43d4d0deef72cc56f731d0da169b6f8d42edccb37aafd4486fe6082895079a30353e2191ec8875e231b2ccebf21067fa86fd2dbea4f4d31fa088619490b5cbee91ba1eb5fdaa9b7273c87068c9954cc6689cb016fea0f98b302622cd8b0bf1a6480781130ce94ea90abe4de48d8ea24bfb5d99fb9eb4d623741e56b5902c28d313982c0c7d7e88caf995d1421536b9b88e26d9f3d6fff00574b8cb212576f7bf162d01fc04461aeba6d2357f0b9fbda99c8f80dadab87b817de79ad217e9833cd7ac97f0303ffe208cae7f70eeef5a41dfcfd4746339865f2623bd6906de57edb8e5d22f96d4d6797", @ANYRES8=r2, @ANYRESOCT], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r7 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r8=>0x0, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r7, 0x7a98, 0x0, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r9 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x11, r9, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb01031800000000000000c4ffffff0000000067fdff"], &(0x7f0000001f80)=""/226, 0x1a, 0xe2, 0x1}, 0x20)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000100)={0x2020}, 0x2020)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0}, 0x48)
io_uring_enter(r1, 0x485c, 0x0, 0x1, 0x0, 0x0)

5.8139441s ago: executing program 3:
syz_open_dev$vim2m(&(0x7f0000000000), 0x7f, 0x2)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
open(&(0x7f0000000700)='./bus\x00', 0x0, 0x60)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x2, 0x200, &(0x7f00000000c0))
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
socket$inet6_tcp(0xa, 0x1, 0x0)
open(0x0, 0x109103, 0x1b2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
mmap$snddsp_control(&(0x7f00005bf000/0x4000)=nil, 0x1000, 0x5, 0x12, 0xffffffffffffffff, 0x83000000)
sched_setaffinity(0x0, 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x8002, &(0x7f0000000000), 0xfc, 0x567, &(0x7f0000000180)="$eJzs3V1rZGcdAPD/mczkZTeaqL2oQutiC7tFN9l0bRtEuiuIXhWU6vUasrMh7CSzZCbtJhTJ4gcQRLTgjV55I/gBBNmPIELB3osVZdGtgr3QHjkvsy+zM5vJZmemTH4/eOY85/X/PMnJeXueyQngxDoTEZcjYioiXoqIhXJ6pUxxUKRsuQ/vvrOepSTS9M1/JJGU07LFkjJlTperzRaDnlp7+9fXGo36Tjm+PBM3llt7++c3t9Y26hv17YsXV15dfW31ldULvTeQJEeqZ1av17/515/9+Nffev33X3n7z1f+fu6H2Rbmy/mdejxtRSlr2c/inmpE7Awj2BhMlfWpRecDAIBPsuwa/7MR8aX8+n8hpvKruf6mH8gf7QocAAAAGJf00nz8N4lIAQAAgIlVyfvAJpWlsi/AfFQqS0tFH95n4lSl0Wy1v3ytubt9tegruxi1yrXNRv1C2ad2MWpJNr5y74lCMf5yPi9LyUN9gH+6MJfPX1pvNq6O44EHAAAAnECnu+7//71Q3P8DAAAAE2Zx3AUAAAAAhs79PwAAAEy+J7j/nx5GOQAAAICh+M4bb2Qp7bz/+upbe7vXm2+dv1pvXV/a2l1fWm/u3FjaaDY3GulMxNZh22s0mze+Gtu7N5fb9VZ7ubW3f2WrubvdvrL50CuwAQAAgBH6zBdvv59ExMHX5vIUnbb9qT4r+K4ATIzKgMul2ccHwy0LMFr9TvPA5Ks+frZuvjDBasUgGXc5gPE57AAw22+JPwyjNAAAwDCc/fzt99Pk0fb/6v1nA8CEGrT9H5g8fdr/04VRFwQYuUPa/4EJVtMDEE68w9v/+yja/y8fHiFND90WAAAwVPN5SipLZVvgfFQ+SguxGLXk2majfiEiPh0Rf1qozWTjK/maiS8NAAAAAAAAAAAAAAAAAAAAAAAAAMCA0jSJ9AlUn2gtAAAAYBwiKn9Lyvd/nV14cb77+cB08lH+KuCP0zR9+xdv/vzmWru9s5JN/2c+fToi2u+W018exxMMAAAAoKPzlv/iPr025tIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMKk+vPvOeieNMu6db0TEYq/41ZjNh7NRi4hT/0qi+sB6SURMPYX4B7ci4tle8ZOsWLFYlqI7fiUi5vJSDD3+c2ma9ox/+tjR4WS7nR1/Lvf6+6vEmXzY+++/WqRLx43f//hXuXf8m7ofP10og2dHnk8NGOML7/12+YHR79/PzhTzq72PP534SZ/j7wu9glUfnfSD7+3v9ytb+quIsz3PP8lDsZbbWzeWW3v75ze31jbqG/XtixdXXl19bfWV1QvL1zYb9fKzZ4yfPPe7j/vFv3Mm4lQZf7pTpvLEslgMvl7Wf627/i9mmdohlY+I/7138+7nimytaxNx51bEuRd6//6fzYc9f/6//E+ay88D2fyz5TkhOSjyEeXuGxHP/+aPz/et/63ZMnf03/+5fhvt8tJ3f/SXARcFAEagtbd/fa3RqO8MPfNumqaDLZxdlQ6+5STioHtWdgHXtXB2MXOcWsxFRJ9Zj8TKMzHolp/puXqW+WDueGUeOPPt00dd69JRFk5njrSzJQcj2SFl+mSm8x1y3EcmAADgabt/9T/ukgAAAAAAAAAAAAAAAAAAAMDJNYr/K9Yd82A8VQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeKz/BwAA///8b9NI")
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102384, 0x18ff0}], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0xc9)
r1 = gettid()
ptrace$getsig(0x4202, r1, 0x1f, &(0x7f0000003180))

5.79336898s ago: executing program 0:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioprio_set$uid(0x0, 0x0, 0x6000)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0)
openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000), 0x22301, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000080)=0x100)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000040))
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '\x00\x00\xfc\xff'}, {0x20, '\":/(\xa7'}], 0xa, "b7ef1c3e568656655c186e4e60a4215394a5e5b7d866178878c05fa87a33827f49f06be514c801ff3d10e24e53081d5b8e7790cd94560779d1952b90e4d3ffc9e829494aa707b13b6cab38f20af5dc90d6ab615fecbdb3e432a6cd672f28a81d7a6ffc21b0bb34b4dc92fc87513ef736366c7ad5"}, 0x8a)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)

5.509678698s ago: executing program 4:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x6)
getpid()
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @remote}, 0x10)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x40, 0x0, &(0x7f0000000100)="05ff03076844268cb89e14f00800fee0ffff00febabec44277fb86dd1402e000030c62079f4b4d2f87e5feca6aab055013f2325f1a3901050b038da1880b2518", 0x0, 0xfe, 0x60000000}, 0x50)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x48, 0xe0}, {0x6}]}, 0x10)
socket$packet(0x11, 0x3, 0x300)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x17}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="6aaed7a5c0852618000000000000000000000000000000620000000000000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0xe8, &(0x7f00000001c0)=""/232}, 0x90)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00'})

4.761870838s ago: executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
fcntl$setsig(r3, 0xa, 0x21)
fcntl$setlease(r3, 0x400, 0x0)
truncate(&(0x7f0000000080)='./file0\x00', 0x0)
ptrace$ARCH_SHSTK_LOCK(0x1e, r0, 0x3, 0x5003)
r4 = timerfd_create(0x0, 0x0)
timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000000540)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r4, &(0x7f0000000600))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000180)=[0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0], <r6=>0x0, 0xa3, &(0x7f0000000240)=[{}], 0x8, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0xc9, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, 0x0, &(0x7f0000000480)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x14, '\x00', r5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

778.041579ms ago: executing program 2:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000001380)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@hyper})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f00000000c0)={{@hyper}, @any, 0x0, 0x0, 0x3})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r0, 0x7a9, &(0x7f00000001c0)={{@hyper}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x400})
socket(0x10, 0x2, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, 0x4, 0x8, 0x0, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}]}, 0x24}}, 0x0)

736.453478ms ago: executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,use', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ccc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6b3f0000f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784753f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a748cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d9f95e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
fallocate(r3, 0x0, 0x0, 0x3)
close(r1)

379.25443ms ago: executing program 4:
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=<r0=>0xffffffffffffffff, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f00706879"], 0x28}}, 0x0)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00012bbc857e5e7000fbdbdf250100000006000800feff000006000800fc00140000000c0009000202aaaaaaaaaaaa"], 0x50}, 0x1, 0x0, 0x0, 0x20004010}, 0x20048000)
syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000000200)={[{@compress}]}, 0x1, 0x50ed, &(0x7f0000005180)="$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")
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000300)=ANY=[@ANYRES8, @ANYRESHEX, @ANYRES8=r0], 0x12, 0x9ef, &(0x7f0000004cc0)="$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")
getdents(r1, 0x0, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000200)={0x15, 0x0, <r6=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, &(0x7f0000000240)={0x28, 0x0, r6, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000100), 0xfecc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000400000001811", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000c30000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, '\x00', 0x0, 0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_ext_remove_space_done\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.controllers\x00', 0x275a, 0x0)
write$cgroup_int(r7, &(0x7f00000000c0)=0x2, 0x12)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r7, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r5, 0x3b85, &(0x7f0000000140)={0x28, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000})

362.279522ms ago: executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x6, 0x15, &(0x7f0000001480)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f900001ab703000008000000b704000000001500850000003300000095"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000002, 0x28011, r1, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2, &(0x7f0000000440)=ANY=[], 0xff, 0x1509, &(0x7f0000002d40)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
acct(&(0x7f00000001c0)='./file0\x00')
acct(0x0)
ftruncate(r1, 0xc17a)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaa82e3efec4f6186dd6000140000082c0000000000000000000000000000000000ff020000000000000000000000000001800090"], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x2, 0x4000, 0x2000, &(0x7f000000e000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, 0x0}], 0x1, 0x9, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800b00010065727378616e0001000f000000000000080007007f00000154c4dc617e1440578faf16c2ce8c00fd9c68db86c5cf298129d9a8f37aa6e533f0daa3c12f7cd754be364cfab27c5cb9e8df1824454f1c7691348a72a8e9499ba71d7bb37fec4b48f2e6d3a039c2f26e89ae458ddffb07b3c769ecbe4ca0d67eb193a508c2fc54ddb116e2fbe978064ef38dec13c523629f71b28fd4"], 0x40}}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000700)='net/softnet_stat\x00')
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

307.259384ms ago: executing program 0:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_IO_FLUSHER(0x34, 0x2)
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000100))
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000340)={<r2=>0x0, <r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000180)={r2})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000002780)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={r4, 0x3, r1, 0x5})
r5 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prlimit64(r3, 0x5, 0x0, &(0x7f0000000200))
sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0x0)
r9 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfff00002}, {0x16}]}, 0x10)

152.220775ms ago: executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x24}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(0x0)
getuid()
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14}, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xd}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0xf, 0x3}}]}}]}, 0x40}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

59.738795ms ago: executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
shutdown(r0, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed}, 0xe)
r1 = syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, 0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000080), &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000380))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r1, 0x381b, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000dc0)='rcu_utilization\x00', r0}, 0x5e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x0, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7f, 0x0)

kernel console output (not intermixed with test programs):

78.745616][ T7513] VFS: Found a Xenix FS (block size = 512) on device loop0
[  278.802911][ T7235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  278.812830][ T7513] sysv_free_block: trying to free block not in datazone
[  278.833868][ T7235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  278.857442][ T7235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  278.877851][ T7513] netlink: 596 bytes leftover after parsing attributes in process `syz-executor.0'.
[  278.886429][ T7235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  278.930616][   T29] audit: type=1804 audit(1719024546.225:19): pid=7513 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/5/file0" dev="loop0" ino=2 res=1 errno=0
[  278.935550][ T7235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.016489][ T7235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.075748][ T7235] batman_adv: batadv0: Interface activated: batadv_slave_0
[  279.190118][ T7330] 8021q: adding VLAN 0 to HW filter on device bond0
[  279.213968][ T7235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.238400][ T7235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.264124][ T7235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.280124][ T7235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.299730][ T7235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.330240][ T7235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.357384][ T7235] batman_adv: batadv0: Interface activated: batadv_slave_1
[  279.414718][ T7235] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  279.425000][ T5241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  279.438078][ T5241] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  279.447814][ T7235] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  279.465532][ T7235] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  279.485467][ T7235] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  279.499376][ T7108] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  279.525363][ T7330] 8021q: adding VLAN 0 to HW filter on device team0
[  281.174843][  T931] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.182391][  T931] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.444903][  T931] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.452148][  T931] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.395679][ T1003] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.506472][ T1003] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.623768][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.716070][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.838119][ T1003] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.527005][ T1003] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.275195][ T7563] loop2: detected capacity change from 0 to 128
[  284.318167][ T7562] vlan2: entered promiscuous mode
[  284.353214][ T7562] syz_tun: entered promiscuous mode
[  284.391624][ T7563] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  284.414859][ T7563] ext4 filesystem being mounted at /root/syzkaller-testdir1566294932/syzkaller.nqdy5f/0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  284.452305][ T7562] syz_tun: left promiscuous mode
[  284.453439][ T7570] loop3: detected capacity change from 0 to 256
[  284.483434][ T7570] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  284.531575][ T7570] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  284.573006][ T7330] 8021q: adding VLAN 0 to HW filter on device batadv0
[  284.621208][ T7570] cgroup: Need name or subsystem set
[  286.977498][ T7330] veth0_vlan: entered promiscuous mode
[  287.032501][ T7235] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  287.050585][ T7330] veth1_vlan: entered promiscuous mode
[  287.215451][ T7330] veth0_macvtap: entered promiscuous mode
[  287.252659][ T7330] veth1_macvtap: entered promiscuous mode
[  287.323233][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.368186][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.433538][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.475026][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.545404][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.590810][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.676217][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.921117][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.118291][ T7330] batman_adv: batadv0: Interface activated: batadv_slave_0
[  288.255398][ T7599] loop4: detected capacity change from 0 to 2048
[  288.270861][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.298644][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.342536][ T7585] kvm: emulating exchange as write
[  288.348527][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.365589][ T7601] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  288.368671][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.418779][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.455510][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.496490][ T7330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  288.508623][ T7330] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  288.522740][ T7330] batman_adv: batadv0: Interface activated: batadv_slave_1
[  288.585641][ T7330] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  288.629824][ T7330] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  288.648857][ T7330] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  288.676530][ T7330] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  290.284604][ T7611] loop4: detected capacity change from 0 to 256
[  290.531826][ T2468] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.861979][ T7611] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  290.921694][ T7611] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  291.010992][ T7611] cgroup: Need name or subsystem set
[  291.157755][ T2468] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.249776][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.285913][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.316304][ T2468] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.419561][ T7624] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  291.487247][ T2468] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.537631][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.539215][ T7609] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'.
[  291.555816][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.609545][ T4480] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  291.621431][ T4480] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  291.632267][ T4480] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  291.644591][ T4480] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  291.659459][ T4480] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  291.667485][ T4480] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  292.014236][ T2468] bridge_slave_1: left allmulticast mode
[  292.022344][ T2468] bridge_slave_1: left promiscuous mode
[  292.030561][ T2468] bridge0: port 2(bridge_slave_1) entered disabled state
[  292.512242][ T2468] bridge_slave_0: left allmulticast mode
[  292.532251][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88806897b800: rx timeout, send abort
[  292.547351][ T2468] bridge_slave_0: left promiscuous mode
[  292.562370][ T2468] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.728019][ T5118] Bluetooth: hci4: command tx timeout
[  293.986693][ T5154] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  294.108959][ T7652] loop1: detected capacity change from 0 to 2048
[  294.197549][ T5154] usb 1-1: Using ep0 maxpacket: 8
[  294.206607][ T7653] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  294.242814][ T5154] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  294.254888][ T2468] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  294.286448][ T5154] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  294.314170][ T5154] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  294.314558][ T2468] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  294.326709][ T5154] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  294.348431][ T5154] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  294.364437][ T5154] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  294.375753][ T5154] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.411099][ T2468] bond0 (unregistering): Released all slaves
[  294.616037][ T7660] Cannot find del_set index 0 as target
[  294.674174][ T5154] usb 1-1: GET_CAPABILITIES returned 0
[  294.681637][ T5154] usbtmc 1-1:16.0: can't read capabilities
[  294.905213][   T25] usb 1-1: USB disconnect, device number 3
[  295.000359][ T2468] hsr_slave_0: left promiscuous mode
[  295.017029][ T2468] hsr_slave_1: left promiscuous mode
[  295.305085][ T2468] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  295.402932][ T2468] batman_adv: batadv0: Removing interface: batadv_slave_0
[  295.578474][ T2468] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  295.585941][ T2468] batman_adv: batadv0: Removing interface: batadv_slave_1
[  295.809584][ T5118] Bluetooth: hci4: command tx timeout
[  295.900099][ T2468] veth1_macvtap: left promiscuous mode
[  295.911773][ T2468] veth0_macvtap: left promiscuous mode
[  295.917856][ T2468] veth1_vlan: left promiscuous mode
[  295.923293][ T2468] veth0_vlan: left promiscuous mode
[  297.619284][ T7685] loop0: detected capacity change from 0 to 128
[  297.667281][ T7685] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  297.690289][ T7685] ext4 filesystem being mounted at /root/syzkaller-testdir3690635273/syzkaller.dC24cb/18/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  297.829748][ T7686] loop1: detected capacity change from 0 to 2048
[  297.877063][ T5118] Bluetooth: hci4: command tx timeout
[  297.955365][ T7695] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  298.351489][ T2468] team0 (unregistering): Port device team_slave_1 removed
[  298.492197][ T2468] team0 (unregistering): Port device team_slave_0 removed
[  299.863621][ T7705] loop3: detected capacity change from 0 to 32768
[  299.873277][ T7108] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  299.881456][ T7705] btrfs: Deprecated parameter 'usebackuproot'
[  299.891347][ T7705] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  299.896358][ T7626] chnl_net:caif_netlink_parms(): no params data found
[  299.942814][ T7705] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7705)
[  299.981486][ T5118] Bluetooth: hci4: command tx timeout
[  300.046468][ T7705] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  300.104814][ T7705] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  300.166608][ T7705] BTRFS info (device loop3): disk space caching is enabled
[  300.426656][ T5105] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  300.626469][ T5105] usb 1-1: Using ep0 maxpacket: 8
[  300.787275][ T5105] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  300.797832][ T5105] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  300.807750][ T5105] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  300.819456][ T5105] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  300.829931][ T5105] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  300.843247][ T5105] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  300.935334][ T5105] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.939108][ T7705] BTRFS info (device loop3 state M): disabling free space tree
[  300.973423][ T7626] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.027481][ T7626] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.056851][ T7705] BTRFS info (device loop3 state M): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  301.073476][ T7626] bridge_slave_0: entered allmulticast mode
[  301.076551][ T7705] BTRFS info (device loop3 state M): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  301.094538][ T7626] bridge_slave_0: entered promiscuous mode
[  301.285784][ T5105] usb 1-1: GET_CAPABILITIES returned 0
[  301.302251][ T7626] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.308874][ T5105] usbtmc 1-1:16.0: can't read capabilities
[  301.318500][ T7626] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.461639][ T7740] usb usb9: usbfs: process 7740 (syz-executor.1) did not claim interface 0 before use
[  301.472110][ T7740] vhci_hcd: invalid port number 129
[  301.477439][ T7740] vhci_hcd: default hub control req: 0200 v0000 i0081 l0
[  301.673497][ T7705] BTRFS info (device loop3 state M): use  compression, level 0
[  301.781445][ T7626] bridge_slave_1: entered allmulticast mode
[  301.899809][ T7626] bridge_slave_1: entered promiscuous mode
[  301.978911][ T7141] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  302.080915][ T5105] usb 1-1: USB disconnect, device number 4
[  302.082531][ T7626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  302.226216][ T7626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  302.475456][ T7626] team0: Port device team_slave_0 added
[  302.535509][ T7626] team0: Port device team_slave_1 added
[  303.591110][ T7626] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.670507][ T7626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.819974][ T7626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.883385][ T7626] batman_adv: batadv0: Adding interface: batadv_slave_1
[  304.348900][ T7626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  304.570365][ T7626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  304.767857][ T7626] hsr_slave_0: entered promiscuous mode
[  304.775619][ T7626] hsr_slave_1: entered promiscuous mode
[  304.792682][ T7626] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  304.801910][ T7626] Cannot create hsr debugfs directory
[  304.914854][ T7744] loop0: detected capacity change from 0 to 32768
[  304.930803][ T7744] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7744)
[  304.955257][ T7770] loop3: detected capacity change from 0 to 128
[  304.965022][ T7744] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  304.988854][ T7744] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  304.998384][ T7744] BTRFS info (device loop0): using free-space-tree
[  305.042169][ T7770] VFS: Found a Xenix FS (block size = 512) on device loop3
[  305.083977][ T7770] sysv_free_block: trying to free block not in datazone
[  305.154843][ T7770] netlink: 596 bytes leftover after parsing attributes in process `syz-executor.3'.
[  309.184926][   T29] audit: type=1804 audit(1719024576.485:20): pid=7770 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1345954100/syzkaller.4erJd5/15/file0" dev="loop3" ino=2 res=1 errno=0
[  309.325640][ T7744] BTRFS error (device loop0): open_ctree failed
[  309.454064][ T7141] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  310.227987][ T7803] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  310.534224][ T7626] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  310.580172][ T7626] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  310.623548][ T7626] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  311.110358][ T7813] usb usb9: usbfs: process 7813 (syz-executor.0) did not claim interface 0 before use
[  311.120275][ T7813] vhci_hcd: invalid port number 129
[  311.125473][ T7813] vhci_hcd: default hub control req: 0200 v0000 i0081 l0
[  311.150095][ T7626] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  315.465416][ T7626] 8021q: adding VLAN 0 to HW filter on device bond0
[  316.090408][ T7626] 8021q: adding VLAN 0 to HW filter on device team0
[  316.149672][ T5105] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.156875][ T5105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.189322][ T5105] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.196519][ T5105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.207958][ T7835] 9pnet_fd: Insufficient options for proto=fd
[  317.218933][ T7626] 8021q: adding VLAN 0 to HW filter on device batadv0
[  317.391568][ T7851] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'.
[  317.917271][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  317.923777][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  317.975652][ T7626] veth0_vlan: entered promiscuous mode
[  317.983252][ T7839] loop4: detected capacity change from 0 to 32768
[  318.039319][ T7839] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7839)
[  318.106162][ T7626] veth1_vlan: entered promiscuous mode
[  318.249205][ T7839] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  318.296901][ T7839] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  318.306054][ T7839] BTRFS info (device loop4): using free-space-tree
[  318.350649][ T7626] veth0_macvtap: entered promiscuous mode
[  318.386235][ T7626] veth1_macvtap: entered promiscuous mode
[  318.420214][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.458213][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.506467][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.518005][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.538909][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.571962][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.602259][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.623472][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.635451][ T7626] batman_adv: batadv0: Interface activated: batadv_slave_0
[  318.647793][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  318.658532][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.668464][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  318.694065][ T7846] loop0: detected capacity change from 0 to 32768
[  318.731876][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.772148][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  318.792785][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.803158][ T7626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  318.822206][ T7626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.982070][ T7878] usb usb9: usbfs: process 7878 (syz-executor.3) did not claim interface 0 before use
[  318.992737][ T7878] vhci_hcd: invalid port number 129
[  318.998399][ T7878] vhci_hcd: default hub control req: 0200 v0000 i0081 l0
[  319.165973][ T7626] batman_adv: batadv0: Interface activated: batadv_slave_1
[  319.519894][ T7192] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  319.560896][ T7857] loop1: detected capacity change from 0 to 32768
[  319.596286][ T7626] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  319.614118][ T7626] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  319.625047][ T7626] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  319.642787][ T7626] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  321.351439][ T7857] workqueue: Failed to create a rescuer kthread for wq "btree_update": -EINTR
[  321.376058][ T7857] bcachefs (a46a46fb-710c-4d8a-8a40-d337fbcdfe7d): shutdown complete
[  321.712121][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  321.763645][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  321.852125][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  321.868608][ T7895] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  321.871640][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  323.894537][ T7895] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  325.100433][ T7912] 9pnet_fd: Insufficient options for proto=fd
[  325.121880][ T7913] Cannot find del_set index 0 as target
[  325.133318][   T29] audit: type=1800 audit(1719024592.445:21): pid=7916 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1960 res=0 errno=0
[  325.175586][ T7919] syz-executor.2: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[  325.230695][ T7919] CPU: 1 PID: 7919 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00164-g66cc544fd75c #0
[  325.241258][ T7919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  325.251376][ T7919] Call Trace:
[  325.254679][ T7919]  <TASK>
[  325.257613][ T7919]  dump_stack_lvl+0x241/0x360
[  325.262343][ T7919]  ? __pfx_dump_stack_lvl+0x10/0x10
[  325.267559][ T7919]  ? __pfx__printk+0x10/0x10
[  325.272156][ T7919]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  325.278572][ T7919]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  325.285077][ T7919]  warn_alloc+0x278/0x410
[  325.289404][ T7919]  ? stack_depot_save_flags+0x6e4/0x830
[  325.294964][ T7919]  ? __vmalloc_node_range_noprof+0x10b/0x1460
[  325.301030][ T7919]  ? __pfx_warn_alloc+0x10/0x10
[  325.305876][ T7919]  ? kasan_save_track+0x3f/0x80
[  325.310723][ T7919]  ? __kasan_kmalloc+0x98/0xb0
[  325.315512][ T7919]  ? xsk_setsockopt+0x598/0x950
[  325.320365][ T7919]  ? do_sock_setsockopt+0x3af/0x720
[  325.325677][ T7919]  ? __sys_setsockopt+0x1ae/0x250
[  325.330698][ T7919]  ? __x64_sys_setsockopt+0xb5/0xd0
[  325.335909][ T7919]  ? do_syscall_64+0xf3/0x230
[  325.340584][ T7919]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.346666][ T7919]  __vmalloc_node_range_noprof+0x130/0x1460
[  325.352585][ T7919]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  325.358950][ T7919]  ? __kasan_kmalloc+0x98/0xb0
[  325.363715][ T7919]  ? xskq_create+0x54/0x170
[  325.368228][ T7919]  vmalloc_user_noprof+0x74/0x80
[  325.373269][ T7919]  ? xskq_create+0xb6/0x170
[  325.377783][ T7919]  xskq_create+0xb6/0x170
[  325.382110][ T7919]  xsk_init_queue+0xa1/0x100
[  325.386699][ T7919]  xsk_setsockopt+0x598/0x950
[  325.391375][ T7919]  ? __pfx_xsk_setsockopt+0x10/0x10
[  325.396573][ T7919]  ? __pfx_lock_acquire+0x10/0x10
[  325.401593][ T7919]  ? __fget_files+0x29/0x470
[  325.406181][ T7919]  ? __pfx_lock_release+0x10/0x10
[  325.411196][ T7919]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  325.416822][ T7919]  ? security_socket_setsockopt+0x87/0xb0
[  325.422540][ T7919]  ? __pfx_xsk_setsockopt+0x10/0x10
[  325.427734][ T7919]  do_sock_setsockopt+0x3af/0x720
[  325.432848][ T7919]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  325.438390][ T7919]  ? __fget_files+0x29/0x470
[  325.442975][ T7919]  ? __fget_files+0x3f6/0x470
[  325.447666][ T7919]  __sys_setsockopt+0x1ae/0x250
[  325.452537][ T7919]  __x64_sys_setsockopt+0xb5/0xd0
[  325.457587][ T7919]  do_syscall_64+0xf3/0x230
[  325.462092][ T7919]  ? clear_bhb_loop+0x35/0x90
[  325.466777][ T7919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.472692][ T7919] RIP: 0033:0x7f948147d0a9
[  325.477122][ T7919] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  325.496739][ T7919] RSP: 002b:00007f94822160c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  325.505149][ T7919] RAX: ffffffffffffffda RBX: 00007f94815b3f80 RCX: 00007f948147d0a9
[  325.513116][ T7919] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000003
[  325.521340][ T7919] RBP: 00007f94814ec074 R08: 0000000000000020 R09: 0000000000000000
[  325.529304][ T7919] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[  325.537268][ T7919] R13: 000000000000000b R14: 00007f94815b3f80 R15: 00007ffd4485d928
[  325.545243][ T7919]  </TASK>
[  325.631982][ T7919] Mem-Info:
[  325.635164][ T7919] active_anon:538 inactive_anon:21090 isolated_anon:0
[  325.635164][ T7919]  active_file:3890 inactive_file:42700 isolated_file:0
[  325.635164][ T7919]  unevictable:1406 dirty:30 writeback:0
[  325.635164][ T7919]  slab_reclaimable:9765 slab_unreclaimable:97452
[  325.635164][ T7919]  mapped:18959 shmem:2237 pagetables:662
[  325.635164][ T7919]  sec_pagetables:0 bounce:0
[  325.635164][ T7919]  kernel_misc_reclaimable:0
[  325.635164][ T7919]  free:1380389 free_pcp:2982 free_cma:0
[  325.691450][ T7919] Node 0 active_anon:2152kB inactive_anon:84360kB active_file:15480kB inactive_file:170800kB unevictable:4088kB isolated(anon):0kB isolated(file):0kB mapped:75836kB dirty:120kB writeback:0kB shmem:7412kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10284kB pagetables:2648kB sec_pagetables:0kB all_unreclaimable? no
[  325.746206][ T7919] Node 1 active_anon:0kB inactive_anon:0kB active_file:80kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  326.051717][ T7919] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  326.176714][ T7919] lowmem_reserve[]: 0 2571 2571 0 0
[  326.202197][ T7919] Node 0 DMA32 free:1557496kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:2148kB inactive_anon:84416kB active_file:15228kB inactive_file:174648kB unevictable:8988kB writepending:3820kB present:3129332kB managed:2659868kB mlocked:7516kB bounce:0kB free_pcp:3240kB local_pcp:1376kB free_cma:0kB
[  326.343309][ T7919] lowmem_reserve[]: 0 0 0 0 0
[  326.393143][ T7919] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:252kB inactive_file:52kB unevictable:0kB writepending:0kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  326.522359][ T7919] lowmem_reserve[]: 0 0 0 0 0
[  326.536643][ T7919] Node 1 Normal free:3939172kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:80kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:8548kB local_pcp:7800kB free_cma:0kB
[  326.573782][ T7919] lowmem_reserve[]: 0 0 0 0 0
[  326.581666][ T7919] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  326.622511][ T7919] Node 0 DMA32: 432*4kB (UME) 422*8kB (UM) 465*16kB (UME) 584*32kB (UME) 249*64kB (UM) 142*128kB (UME) 53*256kB (UM) 19*512kB (UM) 6*1024kB (UME) 2*2048kB (M) 356*4096kB (UM) = 1557056kB
[  326.689677][ T7919] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  326.746668][ T7919] Node 1 Normal: 2*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UM) 2*64kB (U) 1*128kB (U) 2*256kB (UM) 2*512kB (UM) 1*1024kB (U) 2*2048kB (U) 960*4096kB (M) = 3939224kB
[  326.804515][ T7919] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  326.816552][ T7946] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  326.825933][ T7946] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  326.830176][ T7919] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  326.847742][ T7919] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  326.868344][ T7919] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  326.879710][ T7919] 51933 total pagecache pages
[  326.902868][ T7919] 0 pages in swap cache
[  326.911796][ T7919] Free swap  = 124452kB
[  326.924043][ T7919] Total swap = 124996kB
[  326.943129][ T7919] 2097051 pages RAM
[  326.950298][ T7919] 0 pages HighMem/MovableOnly
[  326.957444][ T7919] 400874 pages reserved
[  326.962196][ T7919] 0 pages cma reserved
[  327.054419][ T7948] 9pnet: Could not find request transport: fd0x0000000000000005
[  328.157007][  T931] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  328.346572][  T931] usb 3-1: Using ep0 maxpacket: 32
[  328.360984][  T931] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  328.386723][  T931] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  328.406080][  T931] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  328.424614][  T931] usb 3-1: Product: syz
[  328.436776][  T931] usb 3-1: Manufacturer: syz
[  328.445163][  T931] usb 3-1: SerialNumber: syz
[  328.456022][  T931] usb 3-1: config 0 descriptor??
[  328.465727][ T7957] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  328.607907][ T7973] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.4'.
[  328.666300][ T7975] loop0: detected capacity change from 0 to 2048
[  328.698270][ T5152] usb 3-1: USB disconnect, device number 9
[  328.724072][ T7978] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  328.784815][ T7978] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  328.812515][ T7978] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[  328.848877][ T7978] Remounting filesystem read-only
[  328.854197][ T7975] NILFS (loop0): mounting fs with errors
[  328.918466][ T7978] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  328.950013][ T7978] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[  328.966522][ T7978] Remounting filesystem read-only
[  328.971762][   T62] NILFS (loop0): discard dirty page: offset=0, ino=4
[  328.987308][   T62] NILFS (loop0): discard dirty block: blocknr=40, size=1024
[  328.994824][   T62] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
[  329.026417][   T62] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
[  329.035374][   T62] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
[  329.085811][ T7108] NILFS (loop0): discard dirty page: offset=0, ino=5
[  329.111827][ T7108] NILFS (loop0): discard dirty block: blocknr=41, size=1024
[  329.126424][ T7108] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
[  329.151932][ T7108] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
[  329.176548][ T7108] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024
[  329.334057][ T7977] loop4: detected capacity change from 0 to 32768
[  329.349990][ T7977] bcachefs (/dev/loop4): error reading default superblock: checksum error, type crc32c_nonzero: got 46c1343f should be 29d2fb78
[  329.455152][ T7982] 9pnet: Could not find request transport: fd0x0000000000000005
[  329.704722][ T7977] bcachefs (loop4): mounting version 1.7: mi_btree_bitmap opts=compression=lz4,nojournal_transaction_names
[  329.739162][ T7977] bcachefs (loop4): recovering from clean shutdown, journal seq 7
[  329.924373][ T7995] loop2: detected capacity change from 0 to 32768
[  329.931722][ T7995] btrfs: Deprecated parameter 'usebackuproot'
[  329.937848][ T7995] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  329.980221][ T7995] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (7995)
[  330.000917][ T7995] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  330.011342][ T7995] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  330.047057][ T7977] bcachefs (loop4): alloc_read... done
[  330.056102][ T7977] bcachefs (loop4): stripes_read... done
[  330.076949][ T7980] loop1: detected capacity change from 0 to 32768
[  330.103901][ T7977] bcachefs (loop4): snapshots_read... done
[  330.130136][ T7977] bcachefs (loop4): journal_replay... done
[  330.136064][ T7977] bcachefs (loop4): resume_logged_ops... done
[  330.144092][ T7980] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7980)
[  330.172559][ T7977] bcachefs (loop4): going read-write
[  330.200409][ T7980] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  330.220270][ T7977] bcachefs (loop4): done starting filesystem
[  330.230176][ T7980] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  330.251023][ T7980] BTRFS info (device loop1): using free-space-tree
[  330.272164][ T7995] BTRFS info (device loop2): rebuilding free space tree
[  330.307064][ T7995] BTRFS info (device loop2): disabling free space tree
[  330.314900][ T7995] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  330.324802][ T7995] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  330.457962][ T7995] loop2: detected capacity change from 32768 to 0
[  330.481382][ T7995] bio_check_eod: 4 callbacks suppressed
[  330.481407][ T7995] syz-executor.2: attempt to access beyond end of device
[  330.481407][ T7995] loop2: rw=6145, sector=10520, nr_sectors = 8 limit=0
[  330.504137][ T7995] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0
[  330.515703][ T7995] syz-executor.2: attempt to access beyond end of device
[  330.515703][ T7995] loop2: rw=6145, sector=10512, nr_sectors = 8 limit=0
[  330.529690][ T7995] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 0, flush 0, corrupt 0, gen 0
[  330.547889][ T7995] BTRFS error (device loop2 state AL): Transaction aborted (error -5)
[  330.556807][ T7995] BTRFS: error (device loop2 state AL) in free_log_tree:3247: errno=-5 IO failure
[  330.566058][ T7995] BTRFS info (device loop2 state EAL): forced readonly
[  330.574196][ T7995] BTRFS: error (device loop2 state EAL) in free_log_tree:3247: errno=-5 IO failure
[  330.584783][ T7995] BTRFS warning (device loop2 state EAL): Skipping commit of aborted transaction.
[  330.595259][ T7995] BTRFS: error (device loop2 state EAL) in cleanup_transaction:1999: errno=-5 IO failure
[  330.654842][ T7977] bcachefs (loop4): dirent to missing inode:
[  330.654842][ T7977]   u64s 7 type dirent 4096:1145047328784489552:U32_MAX len 0 ver 0: file0 -> 536870912 type dir
[  330.704381][ T7626] BTRFS info (device loop2 state EAL): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  330.710431][ T7977] bcachefs (loop4): inconsistency detected - emergency read only at journal seq 8
[  330.718306][ T5118] bcachefs (loop4): unable to write journal to sufficient devices
[  330.738992][  T931] bcachefs (loop4): going read-only
[  330.744667][  T931] bcachefs (loop4): finished waiting for writes to stop
[  330.849320][  T931] bcachefs (loop4): flushing journal and stopping allocators, journal seq 8
[  330.876829][  T931] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 8
[  330.899995][ T7192] bcachefs (loop4): shutting down
[  330.926858][  T931] bcachefs (loop4): unshutdown complete, journal seq 8
[  330.935283][  T931] bcachefs (loop4): done going read-only, filesystem not clean
[  331.102569][ T7330] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  331.163413][ T7192] bcachefs (loop4): shutdown complete
[  332.091911][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  332.225776][ T8038] loop2: detected capacity change from 0 to 32768
[  332.271958][ T8038] btrfs: Deprecated parameter 'usebackuproot'
[  332.293229][ T8038] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  332.312624][ T8038] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (8038)
[  332.354960][ T8038] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  332.392683][ T8038] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  332.427229][ T8038] BTRFS info (device loop2): disk space caching is enabled
[  332.503020][ T8058] 9pnet_fd: Insufficient options for proto=fd
[  332.510011][   T29] audit: type=1326 audit(1719024599.835:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  332.538021][   T29] audit: type=1326 audit(1719024599.835:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  332.560781][   T29] audit: type=1326 audit(1719024599.845:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  332.585073][   T29] audit: type=1326 audit(1719024599.845:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  332.612592][   T29] audit: type=1326 audit(1719024599.845:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  332.931603][   T29] audit: type=1326 audit(1719024599.845:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  333.051324][ T8038] BTRFS info (device loop2 state M): disabling free space tree
[  333.179499][ T8038] BTRFS info (device loop2 state M): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  333.257448][ T8038] BTRFS info (device loop2 state M): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  333.276494][ T8038] BTRFS info (device loop2 state M): use  compression, level 0
[  333.286540][   T29] audit: type=1326 audit(1719024599.845:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  333.341084][   T29] audit: type=1326 audit(1719024599.845:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  333.361317][ T8083] ebt_among: dst integrity fail: 101
[  333.393177][ T8085] loop0: detected capacity change from 0 to 512
[  333.406569][   T29] audit: type=1326 audit(1719024599.845:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  333.433465][ T7626] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  333.433600][ T8083] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  333.470199][ T8085] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  333.477609][ T8088] loop3: detected capacity change from 0 to 1024
[  333.494046][ T8085] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  333.504407][   T29] audit: type=1326 audit(1719024599.845:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  333.564763][ T8088] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.578202][ T8085] EXT4-fs (loop0): 1 truncate cleaned up
[  333.585093][ T8085] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.607360][ T8083] dummy0: entered promiscuous mode
[  333.642114][ T8083] dummy0: left promiscuous mode
[  333.711989][ T8085] EXT4-fs error (device loop0): ext4_find_dest_de:2111: inode #2: block 13: comm syz-executor.0: bad entry in directory: rec_len % 4 != 0 - offset=12, inode=2, rec_len=251, size=1024 fake=1
[  333.749534][ T8088] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2856: Unable to expand inode 12. Delete some EAs or run e2fsck.
[  333.964700][ T7108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.020036][ T7141] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.397182][ T8114] 9pnet_fd: Insufficient options for proto=fd
[  334.711210][ T8129] loop4: detected capacity change from 0 to 1024
[  334.759690][ T8129] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  334.891810][ T7192] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.931372][ T8111] loop2: detected capacity change from 0 to 32768
[  334.958989][ T8111] bcachefs (/dev/loop2): error reading default superblock: checksum error, type crc32c_nonzero: got 46c1343f should be 29d2fb78
[  335.190560][ T8111] bcachefs (loop2): mounting version 1.7: mi_btree_bitmap opts=compression=lz4,nojournal_transaction_names
[  335.258265][ T8111] bcachefs (loop2): recovering from clean shutdown, journal seq 7
[  335.298834][ T8119] loop3: detected capacity change from 0 to 32768
[  335.332923][ T8119] btrfs: Deprecated parameter 'usebackuproot'
[  335.473405][ T8119] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  335.488229][ T8111] bcachefs (loop2): alloc_read... done
[  335.513124][ T8111] bcachefs (loop2): stripes_read... done
[  335.519332][ T8119] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (8119)
[  335.539566][ T8111] bcachefs (loop2): snapshots_read... done
[  335.568453][ T8119] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  335.631638][ T8119] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  335.631813][ T8126] loop1: detected capacity change from 0 to 40427
[  335.641817][ T8111] bcachefs (loop2): journal_replay... done
[  335.704296][ T8119] BTRFS info (device loop3): disk space caching is enabled
[  335.712631][ T8111] bcachefs (loop2): resume_logged_ops... done
[  335.727483][ T8126] F2FS-fs (loop1): invalid crc value
[  335.763224][ T8111] bcachefs (loop2): going read-write
[  335.767724][ T8126] F2FS-fs (loop1): Found nat_bits in checkpoint
[  335.772102][ T8147] team0: Port device wlan1 added
[  335.857372][ T8111] bcachefs (loop2): done starting filesystem
[  336.041788][ T8119] BTRFS info (device loop3 state M): disabling free space tree
[  336.074084][ T8119] BTRFS info (device loop3 state M): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  336.085155][ T8149] team0: Port device syz_tun added
[  336.117897][ T8119] BTRFS info (device loop3 state M): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  336.141732][ T8119] BTRFS info (device loop3 state M): use  compression, level 0
[  336.173881][ T8126] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  336.183096][ T8147] syz-executor.0 (8147) used greatest stack depth: 18424 bytes left
[  336.194565][ T7141] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  336.206211][ T8111] bcachefs (loop2): dirent to missing inode:
[  336.206211][ T8111]   u64s 7 type dirent 4096:1145047328784489552:U32_MAX len 0 ver 0: file0 -> 536870912 type dir
[  336.230562][ T5118] bcachefs (loop2): unable to write journal to sufficient devices
[  336.239082][   T25] bcachefs (loop2): going read-only
[  336.247053][ T8111] bcachefs (loop2): inconsistency detected - emergency read only at journal seq 8
[  336.249216][   T25] bcachefs (loop2): finished waiting for writes to stop
[  336.311213][   T25] bcachefs (loop2): flushing journal and stopping allocators, journal seq 8
[  336.322189][   T25] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 8
[  336.334589][   T25] bcachefs (loop2): unshutdown complete, journal seq 8
[  336.343727][   T25] bcachefs (loop2): done going read-only, filesystem not clean
[  336.358451][ T5118] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  336.369846][ T5118] Bluetooth: hci1: Injecting HCI hardware error event
[  336.380340][ T5118] Bluetooth: hci1: hardware error 0x00
[  336.476857][ T7626] bcachefs (loop2): shutting down
[  336.663828][ T7626] bcachefs (loop2): shutdown complete
[  337.328038][ T8188] loop0: detected capacity change from 0 to 8
[  337.519907][ T7330] syz-executor.1: attempt to access beyond end of device
[  337.519907][ T7330] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  337.617576][ T7330] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  338.517236][ T5118] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  338.868962][ T8199] 9pnet_fd: Insufficient options for proto=fd
[  339.751812][ T8205] loop2: detected capacity change from 0 to 32768
[  339.769509][ T8205] btrfs: Deprecated parameter 'usebackuproot'
[  339.780393][ T8205] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  339.804993][ T8205] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (8205)
[  339.830889][ T8205] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  339.894532][ T8205] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  339.917748][ T8205] BTRFS info (device loop2): disk space caching is enabled
[  339.973950][ T8193] loop0: detected capacity change from 0 to 32768
[  340.056833][ T7626] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  341.280891][ T8252] 9pnet_fd: Insufficient options for proto=fd
[  343.125626][ T8272] loop4: detected capacity change from 0 to 32768
[  343.133612][ T8272] btrfs: Deprecated parameter 'usebackuproot'
[  343.142461][ T8272] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  343.158463][ T8272] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (8272)
[  343.190396][ T8272] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  343.212915][ T8272] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  343.228150][ T8272] BTRFS info (device loop4): disk space caching is enabled
[  343.449720][ T7192] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  343.482930][ T8323] 9pnet_fd: Insufficient options for proto=fd
[  343.636506][  T784] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  343.856509][  T784] usb 2-1: Using ep0 maxpacket: 8
[  343.954028][  T784] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  344.855543][  T784] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  344.883241][  T784] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  344.916669][  T784] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  344.953469][  T784] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  344.989571][  T784] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  345.008025][ T8338] loop4: detected capacity change from 0 to 2048
[  345.008066][  T784] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.883550][ T8347] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  346.082663][  T784] usb 2-1: usb_control_msg returned -32
[  346.099785][  T784] usbtmc 2-1:16.0: can't read capabilities
[  346.140164][  T784] usb 2-1: USB disconnect, device number 10
[  347.230445][ T8366] 9pnet_fd: Insufficient options for proto=fd
[  348.295018][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  348.437540][ T8356] loop2: detected capacity change from 0 to 32768
[  348.479273][ T8356] btrfs: Deprecated parameter 'usebackuproot'
[  348.485401][ T8356] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  348.555802][ T8356] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (8356)
[  348.617395][ T8356] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  348.716746][ T8356] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  348.767930][ T8395] loop1: detected capacity change from 0 to 2048
[  348.775570][ T8356] BTRFS info (device loop2): disk space caching is enabled
[  348.809578][ T8406] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  349.298176][ T8356] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  349.298966][ T8356] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  349.347450][ T5152] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  349.400724][ T8356] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  349.419700][ T8356] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  349.599774][ T8356] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  349.616505][ T5152] usb 1-1: Using ep0 maxpacket: 8
[  349.646253][ T5152] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  349.658554][ T5152] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  349.685223][ T8356] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  349.719518][ T8356] BTRFS error (device loop2): open_ctree failed
[  349.723881][ T5152] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  349.748879][ T5152] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  349.763583][ T5152] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  349.808486][ T5152] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  349.818746][ T5152] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.062028][ T5152] usb 1-1: GET_CAPABILITIES returned 0
[  350.068090][ T5152] usbtmc 1-1:16.0: can't read capabilities
[  350.305406][ T5152] usb 1-1: USB disconnect, device number 5
[  351.592889][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  351.866562][   T25] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  352.011304][ T8452] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  352.025417][ T8452] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  352.035781][ T8452] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  352.518020][   T25] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  352.724625][ T8457] loop4: detected capacity change from 0 to 32768
[  352.757745][ T8457] btrfs: Deprecated parameter 'usebackuproot'
[  352.838287][   T25] usb 4-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[  352.855996][   T25] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  352.866558][ T8457] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  352.888965][   T25] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[  352.922054][   T25] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024
[  352.932243][ T8457] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (8457)
[  352.976494][   T25] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  353.016826][ T8457] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  353.017043][   T25] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  353.037743][ T8458] loop0: detected capacity change from 0 to 2048
[  353.043799][ T8457] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  353.054692][   T25] usb 4-1: Product: syz
[  353.061954][   T25] usb 4-1: Manufacturer: syz
[  353.062088][ T8457] BTRFS info (device loop4): disk space caching is enabled
[  353.092968][ T8439] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  353.110050][   T25] cdc_wdm 4-1:1.0: skipping garbage
[  353.130293][   T25] cdc_wdm 4-1:1.0: skipping garbage
[  353.149249][ T8473] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  353.149915][   T25] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  353.969074][   T25] cdc_wdm 4-1:1.0: Unknown control protocol
[  353.976847][   T25] usb 4-1: USB disconnect, device number 3
[  354.951922][ T7192] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  355.453723][ T8501] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'.
[  355.512608][ T8501] nbd: couldn't find a device at index 64
[  355.530135][ T8503] UBIFS error (pid: 8503): cannot open "/dev/sg0", error -22
[  356.230318][ T8506] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  356.230349][ T8506] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  356.230403][ T8506] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  356.230421][ T8506] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  356.378770][ T8523] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  357.507568][ T5152] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  357.847954][ T5152] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  357.869152][ T5152] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  357.880938][ T8542] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'.
[  357.890682][ T5152] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  357.899988][ T8542] nbd: couldn't find a device at index 64
[  357.907961][ T5152] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.945162][ T8535] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  358.041923][ T8515] loop1: detected capacity change from 0 to 32768
[  358.052913][ T8515] btrfs: Deprecated parameter 'usebackuproot'
[  358.062945][ T8515] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  358.075709][ T8515] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8515)
[  358.110159][ T8515] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  358.133486][ T8515] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  358.156516][ T8515] BTRFS info (device loop1): disk space caching is enabled
[  358.179170][ T5152] usb 3-1: USB disconnect, device number 10
[  358.324182][ T7330] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  361.597670][ T8625] loop2: detected capacity change from 0 to 8
[  362.435769][ T8604] loop0: detected capacity change from 0 to 32768
[  362.647741][ T8604] btrfs: Deprecated parameter 'usebackuproot'
[  362.730049][ T8604] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  362.786605][ T8604] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (8604)
[  362.830841][ T8604] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  362.880428][ T8604] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  362.936645][ T8604] BTRFS info (device loop0): disk space caching is enabled
[  363.117330][ T8604] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  363.128533][ T8604] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  363.274677][ T8604] BTRFS error (device loop0): open_ctree failed
[  364.133947][ T8662] loop3: detected capacity change from 0 to 8192
[  365.258941][ T8662] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  365.285885][ T8676] netdevsim netdevsim1: Direct firmware load for ng failed with error -2
[  365.295279][ T8676] netdevsim netdevsim1: Falling back to sysfs fallback for: ng
[  366.888613][ T8692] loop4: detected capacity change from 0 to 512
[  366.911664][ T8692] EXT4-fs (loop4): blocks per group (71) and clusters per group (20800) inconsistent
[  367.045166][ T8695] loop2: detected capacity change from 0 to 512
[  367.071895][ T8698] loop3: detected capacity change from 0 to 8
[  367.089251][ T8695] EXT4-fs (loop2): blocks per group (71) and clusters per group (20800) inconsistent
[  368.015683][   T29] kauditd_printk_skb: 26 callbacks suppressed
[  368.015698][   T29] audit: type=1804 audit(1719024634.775:58): pid=8705 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1242897918/syzkaller.XxCa2f/70/bus" dev="sda1" ino=1968 res=1 errno=0
[  368.289569][ T8691] loop0: detected capacity change from 0 to 32768
[  368.331909][ T8691] btrfs: Deprecated parameter 'usebackuproot'
[  368.364325][ T8691] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  368.403153][ T8691] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (8691)
[  368.446287][ T8691] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  368.483079][ T8691] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  368.492852][ T8691] BTRFS info (device loop0): disk space caching is enabled
[  368.503042][   T29] audit: type=1804 audit(1719024635.825:59): pid=8708 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/30/bus" dev="sda1" ino=1968 res=1 errno=0
[  369.089895][ T7108] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  370.825182][ T8748] netdevsim netdevsim1: Direct firmware load for ng failed with error -2
[  370.846762][ T8748] netdevsim netdevsim1: Falling back to sysfs fallback for: ng
[  370.857473][ T4480] Bluetooth: hci3: command 0x0406 tx timeout
[  372.442641][ T8765] loop0: detected capacity change from 0 to 40427
[  372.487136][ T8767] loop3: detected capacity change from 0 to 32768
[  372.503249][ T8765] F2FS-fs (loop0): invalid crc value
[  372.514776][ T8765] F2FS-fs (loop0): Found nat_bits in checkpoint
[  372.545178][ T8767] gfs2: fsid=syz:syz: Trying to join cluster "lock_dlm", "syz:syz"
[  372.567261][ T8767] dlm: no local IP address has been set
[  372.594021][ T8767] dlm: cannot start dlm midcomms -107
[  372.616551][ T8767] gfs2: fsid=syz:syz: dlm_new_lockspace error -107
[  372.623264][ T8765] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  373.059071][ T7108] syz-executor.0: attempt to access beyond end of device
[  373.059071][ T7108] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  373.076773][ T7108] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  373.216037][ T8802] netdevsim netdevsim4: Direct firmware load for ng failed with error -2
[  373.226628][ T8802] netdevsim netdevsim4: Falling back to sysfs fallback for: ng
[  374.137520][ T8828] ebt_among: dst integrity fail: 101
[  374.158645][   T29] audit: type=1800 audit(1719024641.010:60): pid=8828 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1962 res=0 errno=0
[  374.373602][ T8835] loop3: detected capacity change from 0 to 1024
[  374.412468][ T8835] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.573380][ T7141] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.053871][ T8825] loop4: detected capacity change from 0 to 40427
[  375.073552][ T8825] F2FS-fs (loop4): invalid crc value
[  375.084457][ T8825] F2FS-fs (loop4): Found nat_bits in checkpoint
[  375.173772][ T8825] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  375.206318][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  375.449760][ T8858] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  375.529192][ T8858] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  375.535385][ T7192] syz-executor.4: attempt to access beyond end of device
[  375.535385][ T7192] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  375.576590][ T7192] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  375.702526][ T8863] ebt_among: dst integrity fail: 101
[  375.761745][   T29] audit: type=1800 audit(1719024642.610:61): pid=8863 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1941 res=0 errno=0
[  375.868145][ T8866] loop3: detected capacity change from 0 to 512
[  375.890226][ T8866] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  375.920051][ T8866] EXT4-fs (loop3): orphan cleanup on readonly fs
[  375.956643][ T4480] Bluetooth: hci0: command 0x0406 tx timeout
[  375.974770][ T8866] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor.3: bg 0: block 248: padding at end of block bitmap is not set
[  376.067010][ T8866] Quota error (device loop3): write_blk: dquota write failed
[  376.094618][ T8866] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  376.124477][ T8866] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz-executor.3: Failed to acquire dquot type 1
[  376.133798][ T8871] loop2: detected capacity change from 0 to 1024
[  376.211825][ T8873] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  376.223193][ T8866] EXT4-fs (loop3): 1 truncate cleaned up
[  376.236792][ T8873] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  376.245270][ T8873] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  376.269975][ T8871] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.289912][ T8866] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  376.308587][ T8873] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  376.396534][ T8866] EXT4-fs error (device loop3): __ext4_remount:6503: comm syz-executor.3: Abort forced by user
[  376.417405][ T8866] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  376.423069][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.448508][ T8866] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  376.538393][ T8866] ext4 filesystem being remounted at /root/syzkaller-testdir1345954100/syzkaller.4erJd5/78/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  376.795460][ T8885] loop4: detected capacity change from 0 to 1024
[  377.069310][ T7141] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.297929][ T8893] Cannot find del_set index 0 as target
[  377.318130][ T8885] EXT4-fs: Ignoring removed bh option
[  377.358952][ T8885] EXT4-fs (loop4): Test dummy encryption mode enabled
[  377.369442][ T8885] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  377.405583][ T8885] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.542531][ T7192] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.246988][ T5154] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  378.285644][ T8911] ebt_among: dst integrity fail: 101
[  378.299010][   T29] audit: type=1800 audit(1719024645.150:62): pid=8911 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1966 res=0 errno=0
[  378.395899][ T8913] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  378.405445][ T8913] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  378.436593][ T5154] usb 2-1: Using ep0 maxpacket: 32
[  378.452113][ T5154] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  378.471177][ T5154] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  378.471238][ T8918] team0: Port device syz_tun added
[  378.494287][ T5154] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  378.508243][ T5154] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.582349][ T8919] loop0: detected capacity change from 0 to 2048
[  378.592205][ T5154] usb 2-1: config 0 descriptor??
[  378.605312][ T8920] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  378.616812][ T5154] hub 2-1:0.0: USB hub found
[  378.653672][ T8922] loop4: detected capacity change from 0 to 512
[  378.670768][ T8922] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  378.691821][ T8922] EXT4-fs (loop4): orphan cleanup on readonly fs
[  378.703201][ T8922] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor.4: bg 0: block 248: padding at end of block bitmap is not set
[  378.720638][ T8922] Quota error (device loop4): write_blk: dquota write failed
[  378.728594][ T8922] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  378.742399][ T8922] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz-executor.4: Failed to acquire dquot type 1
[  378.762172][ T8922] EXT4-fs (loop4): 1 truncate cleaned up
[  378.780848][ T8922] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  378.815416][ T8922] EXT4-fs error (device loop4): __ext4_remount:6503: comm syz-executor.4: Abort forced by user
[  378.829620][ T8922] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  378.868902][ T5154] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  378.889819][ T8922] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  378.907031][ T5154] usbhid 2-1:0.0: can't add hid device: -71
[  378.915975][ T5154] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  378.926800][ T8922] ext4 filesystem being remounted at /root/syzkaller-testdir1242897918/syzkaller.XxCa2f/83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  378.981045][ T5154] usb 2-1: USB disconnect, device number 11
[  379.000850][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  379.007550][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  379.024281][ T7192] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.227974][   T29] audit: type=1804 audit(1719024646.070:63): pid=8930 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/46/file0" dev="sda1" ino=1965 res=1 errno=0
[  379.363200][ T8937] Cannot find del_set index 0 as target
[  379.520573][ T8941] veth0_vlan: entered allmulticast mode
[  379.572163][ T8946] syz-executor.0[8946] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  379.572319][ T8946] syz-executor.0[8946] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  379.682085][ T8941] veth0_vlan: left promiscuous mode
[  379.747026][ T8941] veth0_vlan: entered promiscuous mode
[  380.109485][ T8967] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  380.133941][ T8967] hsr0: entered promiscuous mode
[  380.150673][ T8967] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  380.180141][   T29] audit: type=1804 audit(1719024647.030:64): pid=8969 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/89/file0" dev="sda1" ino=1963 res=1 errno=0
[  380.464658][ T8970] loop3: detected capacity change from 0 to 2048
[  380.532194][ T8979] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  380.768418][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  381.908547][ T8958] loop1: detected capacity change from 0 to 40427
[  382.126871][ T8958] F2FS-fs (loop1): invalid crc value
[  382.298915][ T8958] F2FS-fs (loop1): Found nat_bits in checkpoint
[  382.573010][ T8997] veth0_vlan: entered allmulticast mode
[  382.662504][ T9000] syz-executor.3[9000] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  382.662656][ T9000] syz-executor.3[9000] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  382.708494][ T8958] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  383.162816][ T8997] veth0_vlan: left promiscuous mode
[  383.212552][ T7330] syz-executor.1: attempt to access beyond end of device
[  383.212552][ T7330] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  383.285994][ T8997] veth0_vlan: entered promiscuous mode
[  383.418721][ T7330] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  383.643794][ T9013] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'.
[  383.692938][   T29] audit: type=1804 audit(1719024650.540:65): pid=9012 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/95/file0" dev="sda1" ino=1959 res=1 errno=0
[  383.915129][ T9024] loop2: detected capacity change from 0 to 1024
[  383.989428][ T9024] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  384.175991][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.298633][ T9039] veth0_vlan: entered allmulticast mode
[  384.327956][ T9040] syz-executor.1[9040] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.328092][ T9040] syz-executor.1[9040] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.486662][ T9040] veth0_vlan: left promiscuous mode
[  385.170472][ T9040] veth0_vlan: entered promiscuous mode
[  385.782307][ T9033] loop4: detected capacity change from 0 to 40427
[  385.808133][   T29] audit: type=1804 audit(1719024652.660:66): pid=9060 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir3637834427/syzkaller.aLgiB7/77/file0" dev="sda1" ino=1961 res=1 errno=0
[  385.881221][ T9033] F2FS-fs (loop4): invalid crc value
[  385.917345][ T9033] F2FS-fs (loop4): Found nat_bits in checkpoint
[  386.205446][ T9033] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  386.396884][ T7192] syz-executor.4: attempt to access beyond end of device
[  386.396884][ T7192] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  386.438547][ T7192] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  386.608411][ T9074] loop2: detected capacity change from 0 to 1024
[  386.749608][ T9074] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.846941][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.182895][ T9080] bridge_slave_1: left allmulticast mode
[  387.206020][ T9080] bridge_slave_1: left promiscuous mode
[  387.227152][ T9080] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.255622][ T9080] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  387.572241][ T9095] fuse: Bad value for 'group_id'
[  388.029282][ T9094] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  388.052687][   T29] audit: type=1804 audit(1719024654.870:67): pid=9095 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/54/file0" dev="sda1" ino=1956 res=1 errno=0
[  388.084682][ T9094] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  388.115861][ T9094] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  388.152449][ T9094] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  388.398806][ T9110] loop2: detected capacity change from 0 to 1024
[  388.422695][ T9111] netdevsim netdevsim3 : renamed from netdevsim0 (while UP)
[  388.445748][ T9110] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  388.459823][ T9111] A link change request failed with some changes committed already. Interface  may have been left with an inconsistent configuration, please check.
[  388.534230][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.849790][ T9136] fuse: Bad value for 'group_id'
[  388.869821][   T29] audit: type=1804 audit(1719024655.720:68): pid=9136 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir1345954100/syzkaller.4erJd5/94/file0" dev="sda1" ino=1960 res=1 errno=0
[  388.992951][ T9138] ebt_among: dst integrity fail: 101
[  389.015663][   T29] audit: type=1800 audit(1719024655.860:69): pid=9138 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1942 res=0 errno=0
[  389.055448][ T9138] team0: entered promiscuous mode
[  389.078108][ T9138] team_slave_0: entered promiscuous mode
[  389.094038][ T9138] team_slave_1: entered promiscuous mode
[  389.112924][ T9138] mac80211_hwsim hwsim25 wlan1: entered promiscuous mode
[  389.177756][ T9138] syz_tun: entered promiscuous mode
[  389.201247][ T9138] dummy0: entered promiscuous mode
[  389.215842][ T9138] hsr1: Slave A (team0) is not up; please bring it up to get a fully working HSR network
[  389.791947][ T9108] loop4: detected capacity change from 0 to 40427
[  389.861438][ T9108] F2FS-fs (loop4): invalid crc value
[  389.896673][ T9108] F2FS-fs (loop4): Found nat_bits in checkpoint
[  389.995877][ T9108] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  390.098500][ T9149] loop0: detected capacity change from 0 to 1024
[  390.168564][ T9149] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.200437][ T9149] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2786: inode #12: comm syz-executor.0: corrupted in-inode xattr: bad magic number in in-inode xattr
[  390.258121][ T7192] syz-executor.4: attempt to access beyond end of device
[  390.258121][ T7192] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  390.296716][ T7108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.299825][ T7192] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  390.399281][ T9167] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[  390.424290][ T9169] fuse: Bad value for 'group_id'
[  390.467064][   T29] audit: type=1804 audit(1719024657.300:70): pid=9169 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/109/file0" dev="sda1" ino=1958 res=1 errno=0
[  391.137396][ T9178] ebt_among: dst integrity fail: 101
[  391.150783][   T29] audit: type=1800 audit(1719024658.000:71): pid=9178 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1964 res=0 errno=0
[  391.322784][ T5118] Bluetooth: hci2: command 0x0406 tx timeout
[  391.648084][ T9192] loop2: detected capacity change from 0 to 1024
[  391.729796][ T9192] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  391.790888][   T29] audit: type=1804 audit(1719024658.640:72): pid=9200 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/113/file0" dev="sda1" ino=1961 res=1 errno=0
[  391.814602][ T9192] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2786: inode #12: comm syz-executor.2: corrupted in-inode xattr: bad magic number in in-inode xattr
[  391.886219][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.033520][ T9211] ebt_among: dst integrity fail: 101
[  392.056018][   T29] audit: type=1800 audit(1719024658.900:73): pid=9211 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1942 res=0 errno=0
[  392.107613][ T9211] team0: entered promiscuous mode
[  392.123065][ T9211] team_slave_0: entered promiscuous mode
[  392.133455][ T9211] team_slave_1: entered promiscuous mode
[  392.143493][ T9211] syz_tun: entered promiscuous mode
[  392.154070][ T9211] dummy0: entered promiscuous mode
[  392.165159][ T9211] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  392.177443][ T9211] Cannot create hsr debugfs directory
[  393.051657][ T9188] loop3: detected capacity change from 0 to 40427
[  393.078243][ T9222] bond0: (slave bond_slave_0): Releasing backup interface
[  393.088237][ T9188] F2FS-fs (loop3): invalid crc value
[  393.127431][ T9188] F2FS-fs (loop3): Found nat_bits in checkpoint
[  393.164400][   T29] audit: type=1326 audit(1719024660.010:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  393.186355][    C1] vkms_vblank_simulate: vblank timer overrun
[  393.254159][   T29] audit: type=1326 audit(1719024660.010:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  393.289909][   T29] audit: type=1326 audit(1719024660.010:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  393.312681][ T9232] loop1: detected capacity change from 0 to 1024
[  393.331747][   T29] audit: type=1326 audit(1719024660.010:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9227 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb867d0a9 code=0x7ffc0000
[  393.354588][ T9188] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  393.366552][  T784] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  393.373446][   T29] audit: type=1804 audit(1719024660.180:78): pid=9234 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/67/file0" dev="sda1" ino=1941 res=1 errno=0
[  393.403023][ T9232] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.412357][ T9232] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2786: inode #12: comm syz-executor.1: corrupted in-inode xattr: bad magic number in in-inode xattr
[  393.462333][ T7141] syz-executor.3: attempt to access beyond end of device
[  393.462333][ T7141] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  393.509516][ T7141] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  393.517277][ T7330] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.556752][  T784] usb 5-1: Using ep0 maxpacket: 8
[  393.565924][  T784] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  393.573700][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  393.604064][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  393.627164][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  393.657015][  T784] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  393.665641][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  393.715434][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  393.742416][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  393.771414][ T9245] loop2: detected capacity change from 0 to 2048
[  393.793339][  T784] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  393.811736][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  393.819138][ T9251] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  394.399200][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  394.461104][  T784] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  394.547549][  T784] usb 5-1: string descriptor 0 read error: -22
[  394.569945][  T784] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  394.596677][  T784] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.636681][  T784] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  394.932170][    T8] usb 5-1: USB disconnect, device number 4
[  394.993258][ T9264] loop3: detected capacity change from 0 to 512
[  395.014780][ T9264] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  395.046952][ T9264] EXT4-fs (loop3): orphan cleanup on readonly fs
[  395.070467][ T9264] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor.3: bg 0: block 248: padding at end of block bitmap is not set
[  395.127683][ T9264] Quota error (device loop3): write_blk: dquota write failed
[  395.157002][ T9268] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  395.163265][ T9264] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  395.193380][ T9264] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz-executor.3: Failed to acquire dquot type 1
[  395.217974][ T9264] EXT4-fs (loop3): 1 truncate cleaned up
[  395.224839][ T9264] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  395.275519][ T9264] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  395.275519][ T9264] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  395.347020][ T7141] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.491251][ T9280] loop1: detected capacity change from 0 to 1024
[  395.650164][ T9283] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[  396.594298][ T9294] loop1: detected capacity change from 0 to 2048
[  396.771403][ T9295] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  398.158303][ T9282] loop0: detected capacity change from 0 to 512
[  398.189054][ T9282] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  398.284567][ T9282] EXT4-fs error (device loop0): ext4_orphan_get:1420: comm syz-executor.0: bad orphan inode 15
[  398.387390][ T9282] ext4_test_bit(bit=14, block=18) = 1
[  398.397769][ T9282] is_bad_inode(inode)=0
[  398.402062][ T9282] NEXT_ORPHAN(inode)=1023
[  398.407669][ T9282] max_ino=32
[  398.411044][ T9282] i_nlink=0
[  398.427503][ T9282] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2972: inode #15: comm syz-executor.0: corrupted xattr block 19: e_value size too large
[  398.458535][ T9310] loop1: detected capacity change from 0 to 512
[  398.500139][ T9310] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  398.509572][ T9282] EXT4-fs warning (device loop0): ext4_evict_inode:271: xattr delete (err -117)
[  398.521455][ T9310] EXT4-fs (loop1): orphan cleanup on readonly fs
[  398.532282][ T9282] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.558187][ T9282] ext2 filesystem being mounted at /root/syzkaller-testdir3690635273/syzkaller.dC24cb/122/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  398.601704][ T9310] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor.1: bg 0: block 248: padding at end of block bitmap is not set
[  398.633430][ T9310] __quota_error: 1 callbacks suppressed
[  398.633449][ T9310] Quota error (device loop1): write_blk: dquota write failed
[  398.670099][ T9310] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  398.702485][ T9310] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 1
[  398.750546][ T9310] EXT4-fs (loop1): 1 truncate cleaned up
[  398.777324][ T9310] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  398.850419][ T7108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.903600][ T9310] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  398.903600][ T9310] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  398.959218][ T7330] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.093560][ T9323] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.0'.
[  399.118641][ T9323] nbd: couldn't find a device at index 64
[  399.286708][ T9325] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  399.366925][ T9330] loop1: detected capacity change from 0 to 2048
[  399.391806][ T9335] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  399.623382][ T9333] loop2: detected capacity change from 0 to 4096
[  399.662938][ T9333] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  399.724883][ T9333] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  399.981521][ T9352] loop0: detected capacity change from 0 to 512
[  400.047736][ T9352] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  400.091398][ T9352] EXT4-fs (loop0): orphan cleanup on readonly fs
[  400.145574][ T9352] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 248: padding at end of block bitmap is not set
[  400.164438][   T29] audit: type=1800 audit(1719024666.990:80): pid=9333 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=33 res=0 errno=0
[  400.194759][ T9352] Quota error (device loop0): write_blk: dquota write failed
[  400.203247][ T9352] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  400.213910][ T9352] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 1
[  400.289251][ T9352] EXT4-fs (loop0): 1 truncate cleaned up
[  400.303179][ T9352] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  400.407619][ T9352] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  400.407619][ T9352] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  400.452725][ T9361] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.1'.
[  400.464132][ T9361] nbd: couldn't find a device at index 64
[  400.544859][ T7108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.664749][ T9363] loop1: detected capacity change from 0 to 1024
[  400.816232][ T9367] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[  401.476890][ T9370] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  401.660820][ T9353] loop3: detected capacity change from 0 to 40427
[  401.715813][ T9353] F2FS-fs (loop3): invalid crc value
[  401.776814][ T9353] F2FS-fs (loop3): Found nat_bits in checkpoint
[  401.944371][ T9353] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  402.024925][ T7141] syz-executor.3: attempt to access beyond end of device
[  402.024925][ T7141] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  402.088029][ T7141] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  402.098924][ T9392] xt_recent: Unsupported userspace flags (00000042)
[  402.245304][ T9390] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  402.836680][ T5153] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  402.996629][ T9408] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[  403.027125][ T5153] usb 5-1: Using ep0 maxpacket: 8
[  403.146678][ T5153] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  403.154407][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  403.176667][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  403.472330][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  403.510109][ T5153] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  403.640372][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  403.812128][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  403.948586][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  404.031789][ T9415] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  404.067719][ T5153] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  404.075181][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  404.168373][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  404.231424][ T5153] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  404.291620][ T5153] usb 5-1: string descriptor 0 read error: -22
[  404.317082][ T5153] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  404.340382][ T9424] Cannot find del_set index 0 as target
[  404.363436][ T5153] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.455082][ T5153] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  404.724494][ T5153] usb 5-1: USB disconnect, device number 5
[  404.770467][ T9431] ebt_among: dst integrity fail: 101
[  404.798409][   T29] audit: type=1800 audit(1719024671.650:81): pid=9431 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1967 res=0 errno=0
[  405.056918][ T9441] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'.
[  405.627851][ T9443] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  405.701573][ T9451] 9pnet_fd: Insufficient options for proto=fd
[  405.803057][ T9455] loop4: detected capacity change from 0 to 8
[  406.755325][ T9426] loop1: detected capacity change from 0 to 40427
[  406.775072][ T9426] F2FS-fs (loop1): invalid crc value
[  406.794356][ T9426] F2FS-fs (loop1): Found nat_bits in checkpoint
[  406.912669][ T9426] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  407.042120][ T7330] syz-executor.1: attempt to access beyond end of device
[  407.042120][ T7330] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  407.072557][ T9473] ebt_among: dst integrity fail: 101
[  407.092043][ T7330] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  407.115772][   T29] audit: type=1800 audit(1719024673.960:82): pid=9473 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1968 res=0 errno=0
[  407.160260][ T9473] team0: entered promiscuous mode
[  407.165328][ T9473] team_slave_0: entered promiscuous mode
[  407.212588][ T9473] team_slave_1: entered promiscuous mode
[  407.242609][ T9473] dummy0: entered promiscuous mode
[  407.265798][ T9473] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  407.289017][ T9473] Cannot create hsr debugfs directory
[  407.297399][ T9477] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  407.315082][ T9476] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  407.856528][  T931] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  408.115013][  T931] usb 3-1: Using ep0 maxpacket: 8
[  408.171001][ T9490] pim6reg1: entered promiscuous mode
[  408.176580][ T9490] pim6reg1: entered allmulticast mode
[  408.432234][  T931] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  408.510840][  T931] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  408.707119][  T931] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  408.727593][  T931] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  408.895040][  T931] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  409.206465][  T931] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  409.766466][  T931] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  409.966438][  T931] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  413.023127][  T931] usb 3-1: unable to read config index 2 descriptor/all
[  413.057163][  T931] usb 3-1: can't read configurations, error -71
[  413.154959][ T9494] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.2'.
[  413.183225][ T9494] nbd: couldn't find a device at index 64
[  414.241347][ T9504] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  414.264152][ T9504] bond1: entered promiscuous mode
[  414.329542][ T9505] bond0: (slave bond_slave_0): Releasing backup interface
[  414.427106][ T9505] bond_slave_0: entered promiscuous mode
[  414.442861][ T9505] bond1: (slave bond_slave_0): Enslaving as an active interface with an up link
[  414.705827][ T9518] loop2: detected capacity change from 0 to 512
[  414.715022][ T9518] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  414.751485][ T9518] EXT4-fs (loop2): orphan cleanup on readonly fs
[  414.787188][ T9518] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 248: padding at end of block bitmap is not set
[  414.803492][ T9518] Quota error (device loop2): write_blk: dquota write failed
[  414.811192][ T9518] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  414.827425][ T9518] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz-executor.2: Failed to acquire dquot type 1
[  414.840248][ T9523] loop1: detected capacity change from 0 to 1024
[  414.898896][ T9518] EXT4-fs (loop2): 1 truncate cleaned up
[  414.928581][ T9518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  414.948012][ T9523] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.062122][ T9518] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  415.062122][ T9518] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  415.235277][ T7330] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.246222][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.430710][ T9535] Cannot find del_set index 0 as target
[  416.083420][ T9546] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  416.179802][ T9550] loop0: detected capacity change from 0 to 8
[  416.363992][ T9556] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  416.462693][ T9563] loop3: detected capacity change from 0 to 512
[  416.472384][ T9556] bond1: entered promiscuous mode
[  416.517255][ T9563] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  416.659442][ T9565] loop1: detected capacity change from 0 to 1024
[  416.669319][ T9562] bond0: (slave bond_slave_0): Releasing backup interface
[  416.681637][ T9563] EXT4-fs (loop3): orphan cleanup on readonly fs
[  416.705189][ T9563] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor.3: bg 0: block 248: padding at end of block bitmap is not set
[  416.743748][ T9569] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  416.752021][ T9569] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  416.763648][ T9563] Quota error (device loop3): write_blk: dquota write failed
[  416.774000][ T9563] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  416.790274][ T9562] bond_slave_0: entered promiscuous mode
[  416.799363][ T9565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.816576][ T9569] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  416.819942][ T9562] bond1: (slave bond_slave_0): Enslaving as an active interface with an up link
[  416.839900][ T9563] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz-executor.3: Failed to acquire dquot type 1
[  416.858275][ T9569] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  416.884535][ T9563] EXT4-fs (loop3): 1 truncate cleaned up
[  416.916937][ T4480] Bluetooth: hci4: command 0x0406 tx timeout
[  416.919348][ T7330] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.944037][ T9563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  416.995316][ T9563] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  416.995316][ T9563] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  417.121501][ T7141] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.107557][ T9600] loop2: detected capacity change from 0 to 1024
[  419.181692][ T9596] loop4: detected capacity change from 0 to 2048
[  419.277431][ T9600] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.384812][ T9608] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  419.470653][ T9600] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2786: inode #12: comm syz-executor.2: corrupted in-inode xattr: bad magic number in in-inode xattr
[  419.929219][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.013859][ T9615] ieee802154 phy0 wpan0: encryption failed: -22
[  420.361795][ T9625] fuse: Unknown parameter 'grou00000000000000000000'
[  420.382490][ T9620] loop4: detected capacity change from 0 to 2048
[  420.439590][   T29] audit: type=1804 audit(1719024687.270:83): pid=9625 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/94/file0" dev="sda1" ino=1961 res=1 errno=0
[  420.482201][ T9630] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  420.761210][ T9635] netdevsim netdevsim2: Direct firmware load for ng failed with error -2
[  420.779677][ T9635] netdevsim netdevsim2: Falling back to sysfs fallback for: ng
[  421.188421][ T9640] loop0: detected capacity change from 0 to 512
[  421.205810][ T9640] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  421.238089][ T9640] EXT4-fs (loop0): orphan cleanup on readonly fs
[  421.266520][ T9640] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 248: padding at end of block bitmap is not set
[  421.332694][ T9640] Quota error (device loop0): write_blk: dquota write failed
[  421.355934][ T9640] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  421.368380][ T9640] EXT4-fs error (device loop0): ext4_acquire_dquot:6860: comm syz-executor.0: Failed to acquire dquot type 1
[  421.467392][ T9640] EXT4-fs (loop0): 1 truncate cleaned up
[  421.508825][ T9640] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  421.612498][ T9640] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  421.612498][ T9640] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  421.667942][ T9650] loop2: detected capacity change from 0 to 1024
[  421.677677][ T9653] loop4: detected capacity change from 0 to 8
[  421.702315][ T7108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.764603][ T9650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.900901][ T9662] loop1: detected capacity change from 0 to 2048
[  421.948915][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.090547][ T9666] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  422.101668][ T9665] fuse: Unknown parameter 'grou00000000000000000000'
[  422.127556][   T29] audit: type=1804 audit(1719024688.980:84): pid=9665 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/143/file0" dev="sda1" ino=1950 res=1 errno=0
[  423.709956][ T9688] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  423.756597][ T9688] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  424.207122][ T9694] loop3: detected capacity change from 0 to 1024
[  424.361222][ T9694] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.485873][ T9699] loop1: detected capacity change from 0 to 512
[  424.609187][ T9699] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  424.619616][ T7141] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.677756][ T9699] EXT4-fs (loop1): orphan cleanup on readonly fs
[  424.710605][ T9699] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor.1: bg 0: block 248: padding at end of block bitmap is not set
[  424.766142][ T9699] Quota error (device loop1): write_blk: dquota write failed
[  424.804789][ T9699] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  424.837117][ T9699] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz-executor.1: Failed to acquire dquot type 1
[  424.844990][ T9708] fuse: Unknown parameter 'group_i00000000000000000000'
[  425.722868][ T9699] EXT4-fs (loop1): 1 truncate cleaned up
[  425.756624][   T29] audit: type=1804 audit(1719024692.590:85): pid=9708 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir1345954100/syzkaller.4erJd5/121/file0" dev="sda1" ino=1965 res=1 errno=0
[  425.821042][ T9699] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  425.878046][ T9707] loop0: detected capacity change from 0 to 2048
[  425.938617][ T9699] ext4: Unknown parameter 'ÿÿ0xffffffffffffffff00000000000000000000000ñ¼Þ"�¨C’ôæo÷ï"ªš÷'ήŠŽÉ_Á·0ƒÞ-è% Ë+çtý³6P×ÚÎ'ÁkÂ;/|·%…T‰9i�(Š©%ZŠ’@øG~‚ºͱý\¢ñ«œâÌÄÒÚøÚÇ%S:U�VTúõà’OvO7MfO­Jj²NÀè"çùBnŽ]áþXZ
[  425.938617][ T9699] èoÐ*‹“e–4Ôb¹ûL±¡ú–*‹'
[  425.996575][ T9717] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  426.083180][ T7330] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.241891][ T9730] loop4: detected capacity change from 0 to 8
[  427.057262][ T9739] loop1: detected capacity change from 0 to 1024
[  427.200694][   T29] audit: type=1804 audit(1719024694.050:86): pid=9745 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/101/bus" dev="sda1" ino=1967 res=1 errno=0
[  428.109227][ T9739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  429.172215][ T7330] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.179401][ T9764] loop3: detected capacity change from 0 to 2048
[  429.271911][ T9768] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  429.418159][ T9770] loop0: detected capacity change from 0 to 1024
[  429.658388][ T9778] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'.
[  430.112645][ T9782] netdevsim netdevsim1 : renamed from netdevsim0 (while UP)
[  430.165551][ T9782] A link change request failed with some changes committed already. Interface  may have been left with an inconsistent configuration, please check.
[  430.806569][ T9796] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  430.842715][ T9796] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  432.186054][ T9816] loop4: detected capacity change from 0 to 8
[  432.465520][ T9823] loop2: detected capacity change from 0 to 2048
[  432.535590][ T9828] loop0: detected capacity change from 0 to 4096
[  432.555016][ T9832] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  433.386551][ T9828] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  433.453369][ T9828] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  434.563364][   T29] audit: type=1800 audit(1719024701.410:87): pid=9841 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=33 res=0 errno=0
[  435.585565][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  437.133746][ T9879] loop3: detected capacity change from 0 to 2048
[  437.225248][ T9883] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  438.430710][ T9897] ebt_among: dst integrity fail: 101
[  438.448774][   T29] audit: type=1800 audit(1719024705.300:88): pid=9897 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1944 res=0 errno=0
[  438.515239][ T9897] dummy0: entered promiscuous mode
[  438.532388][ T9897] dummy0: left promiscuous mode
[  438.572956][ T9901] team0: Device syz_tun is up. Set it down before adding it as a team port
[  439.221114][   T29] audit: type=1804 audit(1719024706.070:89): pid=9914 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/157/bus" dev="sda1" ino=1963 res=1 errno=0
[  440.070959][ T9924] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'.
[  440.121018][ T9924] nbd: couldn't find a device at index 64
[  440.178205][ T9929] team0: Device syz_tun is up. Set it down before adding it as a team port
[  440.292386][ T9927] loop2: detected capacity change from 0 to 2048
[  440.301777][ T9934] ebt_among: dst integrity fail: 101
[  440.340184][ T9939] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  440.381080][   T29] audit: type=1800 audit(1719024707.230:90): pid=9934 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1969 res=0 errno=0
[  440.442192][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  440.451398][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  440.492699][ T9933] loop1: detected capacity change from 0 to 4096
[  440.562754][ T9933] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[  440.683275][ T9933] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  440.830552][   T29] audit: type=1800 audit(1719024707.670:91): pid=9944 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=33 res=0 errno=0
[  443.751450][ T9979] fuse: Bad value for 'group_id'
[  443.823974][ T9982] loop2: detected capacity change from 0 to 1024
[  443.910151][ T9982] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.921684][ T9979] loop4: detected capacity change from 0 to 2048
[  444.057193][ T9993] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  444.058446][ T7626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.307593][   T29] audit: type=1804 audit(1719024712.140:92): pid=10006 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir2815371916/syzkaller.9Hx4sq/116/bus" dev="sda1" ino=1959 res=1 errno=0
[  445.363602][T10007] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.1'.
[  445.386786][T10007] nbd: couldn't find a device at index 64
[  446.399740][T10018] ebt_among: dst integrity fail: 101
[  446.654796][T10026] loop4: detected capacity change from 0 to 1024
[  446.759720][T10026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.804547][T10032] netdevsim netdevsim0 : renamed from netdevsim0 (while UP)
[  446.868207][T10032] A link change request failed with some changes committed already. Interface  may have been left with an inconsistent configuration, please check.
[  446.992128][ T7192] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.355800][T10062] ebt_among: dst integrity fail: 101
[  449.398273][   T29] audit: type=1800 audit(1719024716.250:93): pid=10067 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1969 res=0 errno=0
[  451.596404][   T29] audit: type=1800 audit(1719024718.420:94): pid=10100 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1955 res=0 errno=0
[  451.890334][T10110] ebt_among: dst integrity fail: 101
[  451.920313][T10110] team0: entered promiscuous mode
[  451.935290][T10110] team_slave_0: entered promiscuous mode
[  451.943531][T10110] team_slave_1: entered promiscuous mode
[  451.954611][T10110] dummy0: entered promiscuous mode
[  451.962887][   T29] audit: type=1804 audit(1719024718.810:95): pid=10113 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3637834427/syzkaller.aLgiB7/170/bus" dev="sda1" ino=1968 res=1 errno=0
[  451.987810][T10110] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  452.015678][T10110] Cannot create hsr debugfs directory
[  453.592693][T10094] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  453.984032][T10145] ebt_among: dst integrity fail: 101
[  454.008229][   T29] audit: type=1800 audit(1719024720.850:96): pid=10145 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1966 res=0 errno=0
[  454.041510][T10145] team0: entered promiscuous mode
[  454.056525][T10145] team_slave_0: entered promiscuous mode
[  454.063580][T10145] team_slave_1: entered promiscuous mode
[  454.083792][T10145] dummy0: entered promiscuous mode
[  454.090453][T10130] loop3: detected capacity change from 0 to 40427
[  454.098079][T10145] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  454.110746][T10130] F2FS-fs (loop3): invalid crc value
[  454.116240][T10145] Cannot create hsr debugfs directory
[  454.126844][T10145] hsr1: Slave A (team0) is not up; please bring it up to get a fully working HSR network
[  454.134103][T10130] F2FS-fs (loop3): Found nat_bits in checkpoint
[  454.225682][T10130] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  454.311900][T10154] fuse: Bad value for 'fd'
[  454.329035][   T29] audit: type=1804 audit(1719024721.180:97): pid=10154 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir3637834427/syzkaller.aLgiB7/176/file0" dev="sda1" ino=1962 res=1 errno=0
[  454.385361][   T29] audit: type=1804 audit(1719024721.230:98): pid=10156 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/173/bus" dev="sda1" ino=1963 res=1 errno=0
[  454.744321][T10167] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  455.003096][T10181] ebt_among: dst integrity fail: 101
[  455.016588][   T29] audit: type=1800 audit(1719024721.860:99): pid=10181 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1956 res=0 errno=0
[  455.655537][T10166] loop0: detected capacity change from 0 to 512
[  455.766647][T10166] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  455.838592][T10166] EXT4-fs error (device loop0): ext4_orphan_get:1420: comm syz-executor.0: bad orphan inode 15
[  455.845647][T10186] loop1: detected capacity change from 0 to 40427
[  455.851259][T10200] fuse: Bad value for 'fd'
[  455.871703][T10166] ext4_test_bit(bit=14, block=18) = 1
[  455.879475][   T29] audit: type=1804 audit(1719024722.730:100): pid=10200 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir1242897918/syzkaller.XxCa2f/159/file0" dev="sda1" ino=1962 res=1 errno=0
[  455.886532][T10166] is_bad_inode(inode)=0
[  455.913628][T10166] NEXT_ORPHAN(inode)=1023
[  455.919173][T10166] max_ino=32
[  455.923189][T10166] i_nlink=0
[  455.932301][T10166] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2972: inode #15: comm syz-executor.0: corrupted xattr block 19: e_value size too large
[  455.958445][T10166] EXT4-fs warning (device loop0): ext4_evict_inode:271: xattr delete (err -117)
[  455.967884][T10186] F2FS-fs (loop1): invalid crc value
[  455.982472][T10186] F2FS-fs (loop1): Found nat_bits in checkpoint
[  455.991808][T10166] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  456.004155][T10166] ext2 filesystem being mounted at /root/syzkaller-testdir3690635273/syzkaller.dC24cb/173/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  456.123049][ T7108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.146947][T10186] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  456.613711][T10219] ebt_among: dst integrity fail: 101
[  456.622296][   T29] audit: type=1800 audit(1719024723.470:101): pid=10219 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1966 res=0 errno=0
[  456.945999][T10226] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  456.971096][T10239] fuse: Invalid rootmode
[  457.006539][   T29] audit: type=1804 audit(1719024723.850:102): pid=10239 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir1345954100/syzkaller.4erJd5/164/file0" dev="sda1" ino=1965 res=1 errno=0
[  457.559280][T10257] ebt_among: dst integrity fail: 101
[  457.591330][   T29] audit: type=1800 audit(1719024724.440:103): pid=10257 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1947 res=0 errno=0
[  457.785890][T10242] loop1: detected capacity change from 0 to 40427
[  457.801637][T10242] F2FS-fs (loop1): invalid crc value
[  457.813865][T10242] F2FS-fs (loop1): Found nat_bits in checkpoint
[  458.039496][T10242] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  458.676268][T10272] fuse: Invalid rootmode
[  458.872847][   T29] audit: type=1804 audit(1719024725.720:104): pid=10272 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/178/file0" dev="sda1" ino=1963 res=1 errno=0
[  459.310999][T10281] loop2: detected capacity change from 0 to 256
[  459.338060][T10281] exfat: Deprecated parameter 'namecase'
[  459.343867][T10281] exfat: Deprecated parameter 'utf8'
[  459.361139][T10281] exfat: Deprecated parameter 'namecase'
[  459.383449][T10281] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d)
[  459.454377][T10291] ebt_among: dst integrity fail: 101
[  459.476699][   T29] audit: type=1800 audit(1719024726.320:105): pid=10291 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1968 res=0 errno=0
[  460.835212][T10310] fuse: Invalid rootmode
[  460.869342][   T29] audit: type=1804 audit(1719024727.720:106): pid=10310 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir1242897918/syzkaller.XxCa2f/166/file0" dev="sda1" ino=1951 res=1 errno=0
[  460.993800][T10298] loop0: detected capacity change from 0 to 40427
[  461.023749][T10298] F2FS-fs (loop0): invalid crc value
[  461.144793][T10298] F2FS-fs (loop0): Found nat_bits in checkpoint
[  461.289242][T10298] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  462.340946][T10334] syz_tun: left promiscuous mode
[  462.387513][T10334] team0: Port device syz_tun removed
[  462.507777][T10338] ebt_among: dst integrity fail: 101
[  462.525603][   T29] audit: type=1800 audit(1719024729.370:107): pid=10338 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1968 res=0 errno=0
[  463.381574][T10349] fuse: Bad value for 'rootmode'
[  463.469737][   T29] audit: type=1804 audit(1719024730.260:108): pid=10349 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/185/file0" dev="sda1" ino=1966 res=1 errno=0
[  466.209839][   T29] audit: type=1800 audit(1719024733.050:109): pid=10385 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1949 res=0 errno=0
[  467.285117][T10402] fuse: Bad value for 'rootmode'
[  467.292975][   T29] audit: type=1804 audit(1719024734.140:110): pid=10402 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/188/file0" dev="sda1" ino=1946 res=1 errno=0
[  468.616739][   T29] audit: type=1804 audit(1719024735.460:111): pid=10429 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/191/bus" dev="sda1" ino=1952 res=1 errno=0
[  469.810480][   T29] audit: type=1800 audit(1719024736.660:112): pid=10438 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1968 res=0 errno=0
[  475.032967][T10454] fuse: Bad value for 'rootmode'
[  475.078350][   T29] audit: type=1804 audit(1719024741.920:113): pid=10454 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir1345954100/syzkaller.4erJd5/177/file0" dev="sda1" ino=1965 res=1 errno=0
[  476.161328][T10464] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  477.195884][   T29] audit: type=1804 audit(1719024744.040:114): pid=10480 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1345954100/syzkaller.4erJd5/179/bus" dev="sda1" ino=1961 res=1 errno=0
[  482.437542][T10496] fuse: Unknown parameter 'use00000000000000000000'
[  482.446072][   T29] audit: type=1804 audit(1719024749.290:115): pid=10496 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3690635273/syzkaller.dC24cb/196/file0" dev="sda1" ino=1965 res=1 errno=0
[  482.721122][T10504] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  588.016399][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  588.023466][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P10512/2:b..l
[  588.032133][    C1] rcu: 	(detected by 1, t=10503 jiffies, g=47681, q=273 ncpus=2)
[  588.039865][    C1] task:syz-executor.0  state:R  running task     stack:24144 pid:10512 tgid:10505 ppid:7108   flags:0x00004006
[  588.053138][    C1] Call Trace:
[  588.056438][    C1]  <TASK>
[  588.059385][    C1]  __schedule+0x1796/0x49d0
[  588.063911][    C1]  ? mark_lock+0x9a/0x350
[  588.068264][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  588.074278][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  588.080640][    C1]  ? __pfx___schedule+0x10/0x10
[  588.085535][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  588.091554][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[  588.096874][    C1]  preempt_schedule_irq+0xfb/0x1c0
[  588.102026][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  588.107800][    C1]  irqentry_exit+0x5e/0x90
[  588.112251][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  588.118265][    C1] RIP: 0010:debug_lockdep_rcu_enabled+0xf/0x40
[  588.124449][    C1] Code: 0f 0b 90 90 90 eb c6 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 31 c0 83 3d 57 0c 2f 04 00 74 1e <83> 3d 96 3d 2f 04 00 74 15 65 48 8b 0c 25 80 d4 03 00 31 c0 83 b9
[  588.144095][    C1] RSP: 0018:ffffc9000c20f138 EFLAGS: 00000202
[  588.150191][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888026c93c00
[  588.158180][    C1] RDX: ffff888026c93c00 RSI: 0000000000000000 RDI: 0000000000000000
[  588.166166][    C1] RBP: 0000000000000001 R08: ffffffff8b781e67 R09: ffffffff8b7897bb
[  588.174151][    C1] R10: 0000000000000002 R11: ffff888026c93c00 R12: ffffc9000c20f460
[  588.182139][    C1] R13: ffff88823bdac002 R14: ffffc9000c20f478 R15: 1ffff92001841e8f
[  588.190136][    C1]  ? xas_find+0xfb/0x960
[  588.194400][    C1]  ? xas_start+0x227/0x7b0
[  588.198845][    C1]  rcu_read_lock_held+0xa/0x50
[  588.203627][    C1]  xas_start+0x2d7/0x7b0
[  588.207897][    C1]  ? xas_load+0x24/0x5c0
[  588.212163][    C1]  xas_load+0x2c/0x5c0
[  588.216260][    C1]  xas_find+0x13f/0x960
[  588.220431][    C1]  ? xas_next_entry+0x38a/0x3d0
[  588.225322][    C1]  next_uptodate_folio+0x33/0xb10
[  588.230366][    C1]  ? mark_lock+0x9a/0x350
[  588.234712][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  588.239759][    C1]  ? filemap_map_pages+0x24f/0x1e70
[  588.244974][    C1]  filemap_map_pages+0x302/0x1e70
[  588.250041][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[  588.255528][    C1]  ? handle_pte_fault+0x348/0x7090
[  588.260665][    C1]  ? __pfx_lock_release+0x10/0x10
[  588.265895][    C1]  ? pte_offset_map_nolock+0x137/0x1f0
[  588.271489][    C1]  ? handle_pte_fault+0x222c/0x7090
[  588.276712][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[  588.282191][    C1]  ? handle_pte_fault+0x222c/0x7090
[  588.287418][    C1]  handle_pte_fault+0x3b9b/0x7090
[  588.292483][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  588.297528][    C1]  ? __pfx_handle_pte_fault+0x10/0x10
[  588.302927][    C1]  ? do_raw_spin_lock+0x14f/0x370
[  588.307997][    C1]  ? follow_page_pte+0x292/0x1d90
[  588.313054][    C1]  ? follow_page_pte+0x859/0x1d90
[  588.318103][    C1]  ? __pfx_lock_release+0x10/0x10
[  588.323146][    C1]  ? count_memcg_event_mm+0x3c2/0x420
[  588.328543][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  588.333769][    C1]  ? folio_mark_accessed+0x6f6/0x11b0
[  588.339176][    C1]  handle_mm_fault+0xfb0/0x19d0
[  588.344075][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[  588.349380][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  588.354619][    C1]  ? kasan_check_range+0x3a/0x290
[  588.359663][    C1]  __get_user_pages+0x6ef/0x1590
[  588.364635][    C1]  ? mt_find+0x62d/0x850
[  588.368907][    C1]  ? __pfx___get_user_pages+0x10/0x10
[  588.374312][    C1]  populate_vma_page_range+0x264/0x330
[  588.379796][    C1]  ? __pfx_populate_vma_page_range+0x10/0x10
[  588.385790][    C1]  ? userfaultfd_unmap_complete+0x30c/0x360
[  588.391700][    C1]  ? do_mmap+0x915/0xfa0
[  588.395975][    C1]  __mm_populate+0x27a/0x460
[  588.400598][    C1]  ? __pfx___mm_populate+0x10/0x10
[  588.405738][    C1]  vm_mmap_pgoff+0x2c3/0x3d0
[  588.410362][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  588.415499][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  588.421861][    C1]  ? do_syscall_64+0x100/0x230
[  588.426653][    C1]  ? ksys_mmap_pgoff+0xdf/0x720
[  588.431527][    C1]  ? __x64_sys_mmap+0x7f/0x140
[  588.436315][    C1]  do_syscall_64+0xf3/0x230
[  588.440847][    C1]  ? clear_bhb_loop+0x35/0x90
[  588.445638][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.451556][    C1] RIP: 0033:0x7f6459e7d0a9
[  588.455984][    C1] RSP: 002b:00007f645ab730c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  588.464419][    C1] RAX: ffffffffffffffda RBX: 00007f6459fb4120 RCX: 00007f6459e7d0a9
[  588.472403][    C1] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000000020000000
[  588.480386][    C1] RBP: 00007f6459eec074 R08: ffffffffffffffff R09: 0000000000000000
[  588.488378][    C1] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  588.496356][    C1] R13: 000000000000006e R14: 00007f6459fb4120 R15: 00007fff9db9ffc8
[  588.504356][    C1]  </TASK>
[  588.507432][    C1] rcu: rcu_preempt kthread starved for 10549 jiffies! g47681 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  588.518673][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  588.528655][    C1] rcu: RCU grace-period kthread stack dump:
[  588.534555][    C1] task:rcu_preempt     state:R  running task     stack:24912 pid:17    tgid:17    ppid:2      flags:0x00004000
[  588.546318][    C1] Call Trace:
[  588.549618][    C1]  <TASK>
[  588.552564][    C1]  __schedule+0x1796/0x49d0
[  588.557108][    C1]  ? __pfx___schedule+0x10/0x10
[  588.561985][    C1]  ? __pfx_lock_release+0x10/0x10
[  588.567023][    C1]  ? __asan_memset+0x23/0x50
[  588.571637][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  588.577460][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  588.583813][    C1]  ? schedule+0x90/0x320
[  588.588070][    C1]  schedule+0x14b/0x320
[  588.592245][    C1]  schedule_timeout+0x1be/0x310
[  588.597112][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  588.602505][    C1]  ? __pfx_process_timeout+0x10/0x10
[  588.607834][    C1]  ? prepare_to_swait_event+0x32e/0x350
[  588.613404][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  588.618279][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[  588.623242][    C1]  ? __pfx_dyntick_save_progress_counter+0x10/0x10
[  588.630281][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  588.635581][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  588.641506][    C1]  ? finish_swait+0xd4/0x1e0
[  588.646116][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  588.650730][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  588.655947][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  588.661869][    C1]  ? __kthread_parkme+0x169/0x1d0
[  588.666913][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  588.672131][    C1]  kthread+0x2f0/0x390
[  588.676220][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  588.681427][    C1]  ? __pfx_kthread+0x10/0x10
[  588.686034][    C1]  ret_from_fork+0x4b/0x80
[  588.690472][    C1]  ? __pfx_kthread+0x10/0x10
[  588.695079][    C1]  ret_from_fork_asm+0x1a/0x30
[  588.699876][    C1]  </TASK>
[  588.702904][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  588.709246][    C1] Sending NMI from CPU 1 to CPUs 0:
[  588.714463][    C0] NMI backtrace for cpu 0
[  588.714474][    C0] CPU: 0 PID: 5118 Comm: kworker/u9:9 Not tainted 6.10.0-rc4-syzkaller-00164-g66cc544fd75c #0
[  588.714492][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  588.714503][    C0] Workqueue: hci4 hci_cmd_sync_work
[  588.714525][    C0] RIP: 0010:switch_mm_irqs_off+0x1a5/0xae0
[  588.714551][    C0] Code: 83 52 07 00 00 41 f7 c7 00 08 00 00 48 8b 74 24 18 0f 85 4d 07 00 00 41 8d 4f 01 0f b7 c9 48 09 c8 49 39 c4 0f 85 54 08 00 00 <80> 7c 24 20 00 74 08 65 c6 05 2c 80 c1 7e 00 4c 39 74 24 30 0f 84
[  588.714566][    C0] RSP: 0018:ffffc90003ea72e0 EFLAGS: 00000046
[  588.714579][    C0] RAX: 000000005fc98000 RBX: ffff8880252d1e00 RCX: ffff8880645d3c00
[  588.714592][    C0] RDX: 0000000040000000 RSI: 0000000000000000 RDI: 0000000000000000
[  588.714602][    C0] RBP: ffffc90003ea73d0 R08: ffffffff81424bac R09: 1ffff1100c8baa2d
[  588.714615][    C0] R10: dffffc0000000000 R11: ffffed100c8baa2e R12: 000000005fc98000
[  588.714628][    C0] R13: 0000000000000000 R14: ffff888057a26880 R15: 1ffff1100c8b0000
[  588.714640][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  588.714653][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  588.714665][    C0] CR2: 00007f94821d3f80 CR3: 000000005fc98000 CR4: 00000000003506f0
[  588.714680][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  588.714689][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  588.714700][    C0] Call Trace:
[  588.714708][    C0]  <NMI>
[  588.714715][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  588.714733][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  588.714752][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  588.714768][    C0]  ? nmi_handle+0x2a/0x5a0
[  588.714800][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  588.714818][    C0]  ? nmi_handle+0x14f/0x5a0
[  588.714840][    C0]  ? nmi_handle+0x2a/0x5a0
[  588.714864][    C0]  ? switch_mm_irqs_off+0x1a5/0xae0
[  588.714885][    C0]  ? default_do_nmi+0x63/0x160
[  588.714903][    C0]  ? exc_nmi+0x123/0x1f0
[  588.714920][    C0]  ? end_repeat_nmi+0xf/0x53
[  588.714945][    C0]  ? __phys_addr+0xac/0x170
[  588.714967][    C0]  ? switch_mm_irqs_off+0x1a5/0xae0
[  588.714989][    C0]  ? switch_mm_irqs_off+0x1a5/0xae0
[  588.715012][    C0]  ? switch_mm_irqs_off+0x1a5/0xae0
[  588.715039][    C0]  </NMI>
[  588.715044][    C0]  <TASK>
[  588.715055][    C0]  ? __pfx_switch_mm_irqs_off+0x10/0x10
[  588.715083][    C0]  __schedule+0x1066/0x49d0
[  588.715101][    C0]  ? mark_lock+0x9a/0x350
[  588.715121][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  588.715139][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  588.715158][    C0]  ? __pfx___schedule+0x10/0x10
[  588.715184][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  588.715206][    C0]  ? preempt_schedule_irq+0xf0/0x1c0
[  588.715223][    C0]  preempt_schedule_irq+0xfb/0x1c0
[  588.715240][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  588.715254][    C0]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  588.715273][    C0]  ? trace_irq_disable+0x2c/0x120
[  588.715295][    C0]  irqentry_exit+0x5e/0x90
[  588.715315][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  588.715338][    C0] RIP: 0010:preempt_count_add+0x0/0x190
[  588.715362][    C0] Code: c1 03 38 c1 7c 97 48 8b 3c 24 e8 8b ef 92 00 eb 8c e9 ee fe ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 41 57 41 56 53 89 fb 48 c7 c0 e0 66 76 94 48 c1 e8 03
[  588.715375][    C0] RSP: 0018:ffffc90003ea7760 EFLAGS: 00000202
[  588.715388][    C0] RAX: 0000000000000001 RBX: 1ffff1100c8ba780 RCX: 0000000000000001
[  588.715399][    C0] RDX: dffffc0000000000 RSI: ffffffff8bcabb80 RDI: 0000000000000001
[  588.715410][    C0] RBP: ffff8880645d3c00 R08: ffffffff92f6e657 R09: 1ffffffff25edcca
[  588.715422][    C0] R10: dffffc0000000000 R11: fffffbfff25edccb R12: dffffc0000000000
[  588.715434][    C0] R13: 1ffff920007d4ef4 R14: ffffffff8b8644b0 R15: ffff8880645d4e78
[  588.715448][    C0]  ? schedule+0x90/0x320
[  588.715468][    C0]  schedule+0x144/0x320
[  588.715484][    C0]  schedule_timeout+0x1be/0x310
[  588.715506][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  588.715529][    C0]  ? __pfx_process_timeout+0x10/0x10
[  588.715550][    C0]  ? prepare_to_wait_event+0x3ba/0x400
[  588.715572][    C0]  __hci_cmd_sync_sk+0x8df/0x1130
[  588.715595][    C0]  ? __pfx___hci_cmd_sync_sk+0x10/0x10
[  588.715619][    C0]  ? rcu_is_watching+0x15/0xb0
[  588.715637][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  588.715654][    C0]  ? __mutex_lock+0x2ef/0xd70
[  588.715672][    C0]  ? hci_acl_create_conn_sync+0x341/0x9a0
[  588.715690][    C0]  hci_acl_create_conn_sync+0x5fa/0x9a0
[  588.715710][    C0]  ? __pfx_hci_acl_create_conn_sync+0x10/0x10
[  588.715727][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  588.715746][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  588.715762][    C0]  ? __pfx_hci_acl_create_conn_sync+0x10/0x10
[  588.715779][    C0]  hci_cmd_sync_work+0x22b/0x400
[  588.715802][    C0]  ? process_scheduled_works+0x945/0x1830
[  588.715818][    C0]  process_scheduled_works+0xa2c/0x1830
[  588.715850][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  588.715871][    C0]  ? assign_work+0x364/0x3d0
[  588.715890][    C0]  worker_thread+0x86d/0xd70
[  588.715915][    C0]  ? __kthread_parkme+0x169/0x1d0
[  588.715934][    C0]  ? __pfx_worker_thread+0x10/0x10
[  588.715951][    C0]  kthread+0x2f0/0x390
[  588.715970][    C0]  ? __pfx_worker_thread+0x10/0x10
[  588.715986][    C0]  ? __pfx_kthread+0x10/0x10
[  588.716005][    C0]  ret_from_fork+0x4b/0x80
[  588.716026][    C0]  ? __pfx_kthread+0x10/0x10
[  588.716048][    C0]  ret_from_fork_asm+0x1a/0x30
[  588.716078][    C0]  </TASK>