last executing test programs:

1m57.576036435s ago: executing program 0 (id=1):
syz_mount_image$erofs(&(0x7f00000003c0), &(0x7f0000000880)='./file0\x00', 0x8000c6, &(0x7f0000000180)=ANY=[], 0x0, 0x17d, &(0x7f0000001ac0)="$eJzsmLFP+kAUx7/vyg/yMy6uLg4SxcHSFjUuxLA5mogaNwlUghYx0EGYdPH/cHZwdvOPMM7qYFwY3Uxqej3oQQR10MT4PsPj+7h313evyXcoGIb5szw+vNyvFe+EAWASaaTU/89GXCO0+tfb83Jraj1/OfeUv041robPIwBB8PnnJwDcFAz4Kg+Cwd1p9VuE6OstCCwovQOCqfQeBLaVdkHYVfpA042w3jT3a55rlhteJRRWGOwwOGHIDffXPSNUtP5IW2+1O4clz3Ob3yg+ml+3IJDX+tPfV282ljY/GwK20jkQNpVeRao3m2gk2v2nE/H5xg/fnwULFr9NxP4UXBDmNX9KaP6R9evH2Va7s1irl6pu1T1ynNyKtWRZy05WGlEUx/jff+lPE9r5/0bUJimJk5LvN+0o9nMniu85rpD+J5CZjfLQ+5Mju4nWSe0jqTLGmHKGYRiGYRiGYRiGYRiGYZgvMAOSX0EldIo4GcDZkNVvAQAA///an3MA")
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./bus\x00', 0x110)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f00000003c0)='./file2\x00', 0x60302, 0x7)

1m56.994941493s ago: executing program 0 (id=13):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdir(&(0x7f00000001c0)='./bus\x00', 0x40)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./file0\x00')
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000240)=0x4013)

1m56.147025915s ago: executing program 0 (id=18):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000080)=0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000700)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000010140)={0x8, {"7f9654d636ab18b7938a2804505c72e9994ca22404fc203334cc21ed3d6a776fd12d13f9602b2980f983c31a5d1e431db778099ce3af3fb20e1ee1f4fdb77cbb36154982a93c19825d6fd273ab1eb5bcd47adad50de8a6791486e482e29ecc94284921f33b941cfc1000c9781d9a828c5ec7a2c77b4e624a5aa0e9e39782bad733eda81ba47e1c6116e4170e6587dd6210a57abe91f1f80c4e31139d8b73fe35ac1f99ea82dd6aa9c9aa67de88ae3e141020e1a876bbc449d2d843aa7e6d90b948b7e28770e6ac71010c63f17e90fd20806a9f8d9f418ee3af74aac64b04a27c4f5e3626ca2da546c79d24acadd11e8d272a22fc54078fd5e64475993668980a9f95aff964dee674356af492b8377a759d8ccf1accb9a18ef7ad16f438dde69cd020d71552b0810688c882a26a22b23f4b35471b08b379193db1cd7934a4049ff1b00d9795cda6e73951641d5e2365c24facd5afd09ed1d096d758b4fef66fe1aa22395d67b7e1db623d4a60a7dc93893d6c4a91df79535a855868c5dc0033d5c428cd25b85c5deb6e81068553bc84cead4d1eba8aa57e2b354a6899e44acbd3834491219b3e231cd55d82f161774a689efe197cc193ac0124c67738a0a1d5f16a6768c2c2ba7386c8c95ca08c55117f344f5a2bca0d09e79ea3fc49491f2c7adc513c2779c1bf62b1a8643d23e9e8b2ae41d4a59f1b82b82e092b36eb851b8456da871b4057aec325a9d4cccafde61f2abc85e3cabeabb856f6ffbfe23d69219ec8fae6beb54abe7870dbae823d49806a967a1c7f252999804f106745f20490bb3347b59321dc69765567abcbd89de04d89622170005df5871ed0fb72345a11da074060d7d4ee2e437f71a45723fb6b02de56067e54f54c52d10f7874a13cbfb3bd65ce54f9d6719ea210e0cf79e4e2157736ec07ac5915682ab81bced665c1e72fab8d8cfe509de0f21fe374b957b379fd5918061e21c2e96985cc1354b2de859b0f1a463ab04683b1253eda671c2353b5c208aca652f5419ffc4949a7fa909b95653f42d97390c400b4a1c308b11e73e9a06d3b164d3361e75584d70e6bc61d570a7e0c7da330f643194c1893fcd6489fac605eead61b53dff18caf526ecccc9bbd9146bc3c3bb67677695e6fddaab081786e9084014e60f5c03ae5a9087726b05e17402cd2fbb80d773b8a41470b1f901a8c2b2d57450181f4fc5bc53c7cb3dc032b84567492607cb08832eca9f79da9210d197863e5db5a74a9823dc0cc8bd9f3a9b6ff5a7d15d4747a9b26e088f4fad96d81cd1214226b1c4585d418d593220fcbb9ad949266cc48163e3498b46ebcdf7b2b5ecfe67539a61ed9e39b02d5b35ac0d0e7fa830034ca2da8a7ddf04bcf2cee939994369feb77023e0e3de04b21db7a640a92c17748245005cd75a7deba4ff0e4c104a9db2d9a98ec8edb3562050a3bac5f322290e3d8b6fb21770ac436d4cb12b97fc8f76d7bb9eeed85663eb0626f1ad1719ee4b07f7de2c1d1a31c27c6879f4fa3dbdfb2bfc0898beabafbeca9f13050e6b2f6c432e423cd5cb6b8fa56fe32c3e50104e44462c0a5c69de6a7ac5ae3d9f07ceed64dbffa42e4663838bfcde92f0fcb895f3b93c59b0e48c09890dfc36436db56b708f6e7cbbd2a6305f573cee099dbcd263cb96d9fb69cbc3cb06d8f5e3789698a17e71d22b4665ff5447fcc17a31bb136c8bb4b984573bcaf1cb650198c1266e6ddfd42d44f9de02cb9d915c5334c550fac3fcee56790aeb09d81e7690a32d8b0cc477b23f15257820de227be1ffaec2f63f3266b8f5dd78947dcee355fe59bfb100e5244425532bb1d110aae00fca5d4511a05c3ff027a1cac56210a10d81c01b90e156cc7b33de0fac825dc516d398166096013e068db935483c93ba95da39b5ae4087d84479a4c4809f28f93790dc279637bd6f3dc441d315cf6bd7b0e3d92070a45baf4445ce063fd12690eb002f5ca068a256bc54100c99a02a346beca39072163c4b297d117f1ed9fef42e3dbc11d36a0a0db52e84461c6fbb4aad62cd6c8dc9ae6a3390a5e8773ac599e67436220c8d541a9039762bffaa7f490e31dddbc362fb4ff686cda905f3b02a1db76d4d570d970434921ca8a4765af6d5c8b881e1f4ffa7e2d9ef5f5511b94f88474674ec790bb5186c73446a227bf1ffd19b605733abd1bd41e421aeaf2ed4617088c7ceef85451225056435993e89e4bccd2c2e4b39af99feef11fea645eeb5cf9f77b1e19a72d3efb613100969b84302789714bca65bcbc96762b4012a5700c62aed706433b9f142b7302442b6a9958b0e28e8b1cfa9eeb4ac0d71f497b23babf9f0221dcb658d9f4db5d45bee30d2ad7c97d6a562e014a7701c15325ec5d42ab732b37714a77a95c03fb15bbfba6fade32bf50f985a1df362ca7216cc152907dd931acb58a63920f581e82b590c0d6a0033009f8e50c3263d3f58596b63d507cadbc809a6690561f74d0772bf92d04e06c47a350724b106f5e83f7e71c4b2a983bf5ad7d8684e7b8b5dc1273d0fa5879b8e61b33d602bc8ff0913b6d32dcac366d568dc7cf82bbfc405cbe418a2644c26592b32ca1a632fc95123efb784cfb6953a94ebeccd24fba389a0e56b043df07d9a2dd38a1196e5e55576b25f85cb96f6560802a4a58b7a6857e8454faa2c880bf32d464562b2bdc5f0df22b663f2c01fc944f1cfd1908f617f8295a5440bb79ae178ea46a95baeea48322105146ac3ed2de7d3796ddddcc848a8ecf4a00dd055733b4f59211f5a40deea44e74b3bc57953b26ed61e6fd67889edfe8d0902385e37666aacec072735630ecc441c3cc6b09bb2f63aa4e332c6df728dc74078a83ce20454dfd616d116270666ddc09c5fea2e8442bc43455d0257fac92f3780061178f9420bf8e463f29896c12383dbb9a81bc5c87376e647c8a7986cb514fb9696d9c0a8d303c5c4b5b7c5f601c01fa19323e02f675c371bc44fbc1ac5704d41a89a2a4ccec6ac8440c532f07da25aa2dce6a5d2ebe694eb4017d178b221213bfe2a01d9cfe689bd190776bca6c032f446eb8862587a7826e35f3f691763212eee6af2e49bbeb0a27e07c5714b74e373798c7bebce265f7ebef3a1ea64078cf1e8a9d433af32c53090c972ffedbadafb50b9a6e540abd84f8e938583ea725954be3b236c5d8aca7d486d21902a2902f25a7c02dbe83c39bd0b81513f9ef198c49d560e930ae224ff47f92e4851e1f7ab5bb406abcf6596569261e6b0c67bb3b854e9c6de60bfb60fcf29241ff237151310ecd19f8b2cfe764c1df1a2de9d840eca47aa169ba9a415901204ec31ccdfd76e908029ae34fb12dc286758c64fd6d42bc82b14e07e421f4b42b180cd6ef40cac8062928b4a420a4577f24295f54de9048ac9d34307bf93e463cea4967cf4880166f68ed1eb965db2e4fb9f5f0b1c695d621e427ccb9a3188073ee6fde729c6698346efa1c0ba643c1efd20858965511da750060d551c44c435a5f1603fae7357e0bc78e92aad3d88790ec2aa1a42d6fe7e0ffc57f3599e406db63be7dd32692df32ce33dee0a2becdb02d6e435e09de3d356497543db23f53da25643f9c585e275297800d8beed47f0e622f86fc25d2e87036fdceebfe7257cb6de0c02412d1c0758acfcd0862e99ad17a118f46f635a87477e8b825423d94ada35bf0b5444aa7d3de4bb7eec7ae5129fcc2cba651cc972f5500fc5161149d29f452962afb102a01ae76825cb4477460be0b85d75058595c27e9b7fae3492ec3925c671bee5f4ca534d5a294f783d6cc073c992139b61d21fd98297b04c0578dafd5f7ebcaf8d4d9185aea3d76e813421f4573b38c25093c015a65e44fb297f0f6ac2d02c4237b37a3bfca2406c5c95ae5812816bacad59ba7c6f72d7c644ff25b592ed1e89b276e05866c01a4ced7fc6dd9f190c20d420d7c8a1fe908833a24c5e5bd7a95a2a6fbf147fc4b29a179718166dd0fbae2fc6b8c8aac6194fa6baf0d3edc36b2316c56c441ba53e3e7aaaf0a1405566ff584f73a637b74dde9bcb4d41da2be6c9df5d533fbac54f5fb52a8a793757cfe19aa90048c6d07e3474136ae1be2455b0d0d02eb4b5961ba883209355c0dd2af4aad98e7b971e358a7d9b55fe17cd6095f257355d9b99e5ea52848f17b35a80792d9ed0fef6fe3eef9a324902409969823be20bbe0e8dba9c747cd1a14d3642d877b86271f3f0c322a142c4ff635b37d542c3265b5fe8589a732bb1a55010b930dd0196cd43ac3634c01b4a44c517197d03a3d89c67f5c09aab409e84c0af466bfbd0c96d240101a2542c66b4b4b8ef65b41b0079995c52cc9720d2c1d7c128c6f17a65cc798c1986cfbd8888460c54438edc4f91f3580391c8b57d9aee209a59a116c1c44775437e9c30e6d87e82ce84e28532b19441e32ab9aea22177bac9daad25a6c88395e9348d6780de630cddb266c411011175bdb6255a36535180818447d43ffba3758d311539fe9f6811fa470bf3767b4c2d4cdf37854c7ee28730bb1d39d5c0dfffcdbf353cca3e13079f3ae66b839c7dd36914022a0e75bca5b622f521420b73249ef47f03cfcaa7cf454a68ad237d4ce860bd6b1531c1cafe2cfb76bc4188271ef6bdfb304ee0e6932463a1909f03d6e8a27b5f137d6b342841d613863dfdf37d5ec3a98d667810fb6f82d67620bdefed8b3ff98420a6c7ee577c3ba68b95a20403608a7ba6526ec9e8662c6e15ab09b1a9019d4958af04cb2e4890ee6b1077fcaa5cc0817f388461b230fe631e75f18ab392a5ca5de4a024ca16dd05fcfdf92114e43a5c4a169d462ff0dba57deeaf5eaafd892f8ccbd72ac56471162e1416bca39859b4184ba0d1b3f7ec05db4ef4cf0142867fa9be328a0be8aa74c716aad9411008607980861f4f72e9bfa60195e2f939d3f6a44a6cec07dd376d1bccaa126686f313d5f7918ecd1215026982c82ed1922ef70e36e8ed59b2d5ceab3b4aad7e53049062dd5ba0e87f7005c3f4d2b788245cdc2f35ef2572bea5ea92dfad406ade6d5ad18be8eeb4c652e5277b244645c68c0c0f5a68d42e00d59b75941917b2cdf31fdf809f2078ca97fd5beba65b34e0621138ea0e94feb87166b2dac2232ebca575e5c0a4d565d9992f733bbfbe68a63d99ee93398604065d5517c33ed0e067bdb643e73102f16137afd7d4bf21e8065ea028c392a6dcefbe642dc3fb03a239d9c8b17023eacc8e19fea11c34a10644af1b786fc0f4504038c2ee59c1b353f3d7b9313df025b4b5874ca63ec164a3fe35bf390d266f53dcda6a8e190e63a56ffdf4f7c5c02aa22d376db06d4d2b96be5b331f897d1ecfd25c13a1c194c265dd95a5724a6435bc8138224d9db28b689b9cea5132cd19601dbc4a43e70c71e27e8fd0689d09484974e8a4605f8553735fffaf5654a087e323ca14e02b681b9bbe592bd6b719ae2e86bdf918b27c79d52dd334d1aa7ebc1bff76e97572faad092010a1022f7d33089049107a89c364ae7dd022d119e8f6ab795fd71d76a90e8202339401ff9e9918ea8c8e12f7b0ba10d9ebde5d1bc5988f2d07b34579d8c282628204f2978d8b0cf95dc41f3775a4053f833267c64b42336d7c850f2918ef0dd6d62e43fcc173254eb34748efd4754609ce25afd648ee5a8fc5c64346603f8258592d67b9613e8f7ac0def0958f13436581d729e0b3e062738eb06b2116abe837529690a614fc5d3f53b4d4602e5706000", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f00000000c0)={{}, 0x0, 0x0, 0xa998, 0xc})

1m54.409991775s ago: executing program 0 (id=39):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000001a80)=0x5, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10)
connect$unix(r1, &(0x7f0000000540)=@abs={0x0, 0x0, 0x4e23}, 0x6e)

1m53.95887792s ago: executing program 32 (id=39):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000001a80)=0x5, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10)
connect$unix(r1, &(0x7f0000000540)=@abs={0x0, 0x0, 0x4e23}, 0x6e)

1m32.751577965s ago: executing program 2 (id=150):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bbr', 0x3)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

1m31.725982977s ago: executing program 2 (id=155):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0xa1001)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x0, 0x2, 0x3}})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x183c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x6, 0xffff81a4, 0x40, 0x0, 0xf})

1m31.486000937s ago: executing program 2 (id=158):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0xc00, 0x0, 0x374}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
syz_io_uring_submit(r2, r3, r4, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0x718a, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r1, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

1m31.075024585s ago: executing program 2 (id=162):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000000)={[{@jqfmt_vfsv0}, {@minixdf}]}, 0x1, 0x784, &(0x7f00000007c0)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x122dfb579e447c7a)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x6000, 0x69)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x3, 0x0, 0x0, 0x4, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000007700000c00002000", "036c47c678082004cb59d654cb9b1b165263bdbcef549ba197fce47ddfdd753abd950100172a00ffffff00f7ffffff000000f3e7f20000000200000000000600", "b7326736181c208220fffff2ff00000000000000000e00", [0x4]})
open(&(0x7f0000000140)='./file1\x00', 0x141042, 0x0)

1m30.292674006s ago: executing program 2 (id=166):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
shutdown(r0, 0x1)
recvfrom(r0, &(0x7f0000000480)=""/110, 0x168f6f3d, 0x734, 0x0, 0xfffffffffffffecb)
recvmmsg(r0, &(0x7f0000002000)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x40000163, 0x0)

1m29.61390053s ago: executing program 2 (id=168):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x6d207ee5}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback, 0x2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f0000000580)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x8020)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000300)={0x0, 0x1, 0x1, [0x3]}, 0xa)

1m28.984711835s ago: executing program 33 (id=168):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x6d207ee5}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback, 0x2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f0000000580)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x8020)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000300)={0x0, 0x1, 0x1, [0x3]}, 0xa)

27.911074814s ago: executing program 3 (id=490):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000180)={0xbc, 0x0, 0x3})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000040)="b99d0100000f320fc76fb4360fc9bb25cc00007666ba6b416000f303c70fae6e2fc0c00f0f2367260f01ca660f38817700c4c2459d78ad", 0x37}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

27.63529315s ago: executing program 3 (id=494):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='hybla', 0x5)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

26.707054346s ago: executing program 3 (id=505):
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
ioctl$KDSKBSENT(0xffffffffffffffff, 0x4b49, &(0x7f0000000040)={0x6d, "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"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xf, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x14, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000007efff100004000", "280be8dbe108598948224ad54afac180000000bdb20405000000000000ffff3d458dd4992861ac00008000000000000000002300000000000000000080004000", "f4bd000000801900", [0x8, 0xffffffff9673e35d]}})

26.633403868s ago: executing program 3 (id=506):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000680)='./file0\x00', 0x12148c5, &(0x7f0000000580)={[{@utf8no}, {@fat=@dmask={'dmask', 0x3d, 0x3}}, {@shortname_mixed}, {@utf8}, {@uni_xlateno}, {@fat=@dos1xfloppy}, {@fat=@quiet}, {@uni_xlate}, {@shortname_mixed}, {@fat=@errors_continue}, {@fat=@discard}, {@shortname_win95}, {@rodir}, {@uni_xlateno}]}, 0x0, 0x2c4, &(0x7f0000000a40)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005c48, 0x0)
read$FUSE(r0, &(0x7f0000004c40)={0x2020}, 0x2020)

26.49778877s ago: executing program 3 (id=507):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x24d, &(0x7f0000000840)="$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")
mkdir(&(0x7f0000000040)='./file0\x00', 0x28)
r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000000)=@v1={0x0, @aes128, 0x0, @desc3})
chdir(&(0x7f0000000240)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x1db)
open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0x10)

26.184565802s ago: executing program 3 (id=508):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004300)="00e7a0633e8438bafa888b9b02144af32e296a0a01dc194d649b6fa26d6d5e63bac4a04baeeb8aacb22c6eec461b67db6a737737c6d2687acb00572f92e3fdb5d0cb2f11121c557a943020200755bcab77b39c406b733239e2bb1175b9322ba39dc7d67da8f77aed1714dae2e6c24c3ea96be9d151c6ab7b3c54bbe507b8b2461fb4be8dc90042184af6d48f8ace16abb5e3fc943cf61cdb75624a259bdb5f7829b9775820f85f2d1a6ee6c6c2af4fd41ab8a41ecb2612abf13cd2c6f9f3e6db505e4bbe68cc000cf5fa6d5636191a4b366ab59af52132a3f9678d4ed1bd577bacffb3b52850804005eebf3dfa4763168ff30490a11acdbbf4c3312a45f30139f6b72b1e7cdec185006bb30e0e8fa88da2cefc718cae7e9830f7ca101e4e23c6bd16bfacf4a9927fb13af4b79c86ab999beda4ad396abdda354a42fb4ef21d6749175dc21a0cf9191aa4f90d274b50370a580ad8dcd166d2b06c0d8b071973c3fde30f7e2bc371a51ca5866bf8b24eaac75bf482dd4436b214ff62d32e20df223b0b680ede28b3a49e66e330a8a3ecace0db9855d235d5ff23765e742d1a739c2ac8743f4c62664a3b347279da55a1a5b16e1e2828b584a013577d50f890e3894d9e8d6bfccdfb2b70221f12a7fac24b7a8818edce72b65f622c77bf1312771a2c0d805ec9a25c536c91868762032255be78903b77b2c1a773a03996fabba69214e76f5df6df0375b592692a2c3c86c75a3be56fe598ddaea0b9901d20db7e43e128e04e5509283f833c24c625887288459db5727210ba9a301fb8c934dd1d8dca68039fe5b2e1a8d7cdfc6d875e5851098100c3cd42544ed90bb55b58d20a501fabbc485d148c615a3b070fa0520da2ed68ee115a4411d5418b47f3d95616096f67a7a36d68f1e8df82eca8ef96fb4a96b3422fe046a37ea5f5967513a559bd770fecab7228b0692f439765c9e9c6ea4fc608e0b27f9b49064dd2f9ac06f83f6d87ebc61fa3a29bb5ed39641245ce8cf43770df32a84838802b0827ca5a40e2003915e2ed108a005637bb028d29bd2cfd28a1bd55e67ed1b6b7b72163c27c4b0e36d1b134d6dfdb165a66fb46498fc04bb8053b84098af5b18758631d1318d625a6fa4d3ce5a4d3a90e10c6363a26b5ae96c2d56f87ad21a6118af6847d041f88f852ddc3f250c088ef5cb31198f3ac81cff9a5bab26ed56c09f8416188974e08349f7da28fc754b98c1ac4ea0060ac1e1b1c49f7dbadbc59254b265dc418cab9ac14e2bbecc4c3103543e37984efb1f61315e10d2b422732217d3a9b0cfe4561f3765d3bda60be239e02bdc164dd631582e8c87dd8fa60d63dcf9e7f3dadc4ce5e4433a42425b8ee8cb8a2defab0bf9b6109c90b5655b79b18c06884f2670a985d454e08e54de69f645cb0cbb70620bd988ee717c310ae77b4abe81c01c6e7f47268ee20bc30b9062830917705682eba2c5ef966b877f33294aa5f8b29d3dd5ed92302087f34fa18d19a005de05f925e3e93c8c0f24507ff20cd23d9ae5452c32ff58c78ccdb1ab32c98edfaa6d2c3971934ca8f849ac360c286566eb72b0793f12cef84bd282368d533247ee750f18aeda484167f3d680e4aaa3aa0694441d4ff6a71531f1a30f87eeb71afd04c5d686e1f86f27586f4e2c8ff77c09612ba1af9b3fb93efd31af42f8e0498f35d07c662b743a08f2839cad8f95b90cbb4fc0ed2ca45dd093a549cde4c6ff08ce09a2cbc6f9f78b6f96643357f92f8f403202742057731fd3e343a87c0affe803cfdbddb8c2694ab63f2dc35da705624747e30a943000fc82c40f10e1975d2e2ec15aefd531b6dbc053606b054dc976f44d5b5a5f37e9c08532ce16cf8bca55ab6c814ceb855ab50b8b52620f8645a9dc25fcb732080d84bf39c3ebb235b4d96da527b64ec4b72f69e91d16a4efcaf76f2e1f968ca68a06f60b01ec7becc9ffd7877c0992cb0f80fb3daabc039513896bd7697843be06aba53e7761e11e075c61ef2d897d4d9f90041c14283746feeb3f0d456ba4be27843350fe43e7c1110b4439489139f6dae01c43f23ec71f08d3042663c65e059d368e4e2c6e49de45bf078d3182a1bc1208bc59379e705aa3309579947409f2a8b3d79099c8619f916e7a6fa333d2312a274247156b8c25cbcfcc59ef13339c700f56a8691dff39bd4338789001872c0d90929037dc0ad99b380a6ba73f331f73f9274f4c2bf5233d7482edf37bf6ffed4f2c0ee44a1d57cae0d644f25591dc03bf837571a82d0c31b61be7ff85a5b3843e8f96a50eaa43f5c137ecfc4e4530d08a2afa4ba02fcc50117a4ad0d5862302017639344c82749f673dbd650e49b35302d0acbab45c0973198291bb42b4cfcd3b0c252074341ea8eca19e122cd234da6d41bf5eedb706e16c17687ed8b84db67130796d26b94eac83bbcd785b603242bd6252c155711efd7dd22cc54e1eaf6d910d0f22c701f3d4da0314dd2829c6ee13bbcbd126558b47b8066bf0766c792a012315bd29bfeda8f28a2c1f4e638b701758e19a0e5bd5b4f19048b00a877d956292e345f8a3a8367892f955bcb5e50ca145ec5e2c9309e25941bd277e393aaad38f9b72a42514b27da6856223c37a16c9eea138cf4f327e88fdfee293c5b6b007028eb796a60772148282dcd17ffc1c90ed8b6540ede933545ed5a5301d6ff39734444ff3d85cda4ac3befa5083a4685e9e231eba4a91a35f4f7f48fd5ac2447c64c010e2a9f8e80691c95460e1995444466ec5f3cd71fe509a26ff0b7f3254bc8c3255e903834e841b37c70b267fb33deb0d1ed4ea84a869453ba508fc255b12cf847103d5195046c930ae4a75c956f22fcfe4186d547686b54bd7a534940d5d62216994eac0e8ed3bd2bd59354e6b9c6b5b10511d54a8b928040f1e13c4a423b0cf519fc6e9673df5c48c0778c7edb8fa8d8ace77463a77d2d6313160e1ee72742953e433b670400d59c93464fd91520847db238610ed0c289fc55647881a7d6257cf28090c75a6f19df079cfd35742a74a5ab270314f7c8039c20ff0f3f543d029b75a741b5dc6425241ac2ffabf1f96288e6d4ba34da09fb6049c2c8753fbd41fdb4bc68c57bf374ef4feb0df00c41319debb26afba2ff39e1799a1c2137f4e920ee5b02d93789b6b0c853e8143dae5b08ee85da2ea7c31803610ce797293ea95c16ade6dae2afb008e59d8b9505737f008b5227df5f1e4eb5d707f502698a17ead9b1f5ec09dff34248ff2fb153dc6df4812e39754a4baa42e1d8b77fbddef3ca091701ac28ae5fd422dbd8db5b122d3965383abc37a52d2fca5ce56eba974dba3d059cefe40e3c35c9daa8ae31198214303c1dcb90d58fc983ccfd504fa43925636f94b128d44e8aa5cd3ecfabd50a84062d03f7508a0575ab65ecc749d3ef566fdbc529a8139b7a7fb3a9bd784df52cddc6f2699044ba47615163fbbe19f3d88d38a8b71fe52b2611ca74341429d1cef1a7e350545be29d2caa560e60352cc2074c298c44ca2c07f9795ce52f10aa3e2fcdef371f24e309b19e52218881f25a4674527edbe3b3bd0b9b536d810c6f9500c0c81bcfd9a440dd91c1d35c52758d2b2ae1a8497bb394c4f09d3947cf777727b0d1daf5ac4fe4fa3c247a791702cb84b96321b7fec81bf549d4eb5d6dafe019b26187417c68b064e4308908535a3e77b6cd3e28caaf12d726f15590b7958e40134d045a38cbb689131a7e85532f1c63dd4bac9e4d00645cd7b2b71704563f3738b92044a8153f6ba717800ab7cb238175c376d7add2c5ec38e4c856f1ab9c3ee33f6ca6d576ae908dd290e4bae23470182e253765e04e8eb02a791c4396a511ef467879a9e2818b8a4b1b0b39a6c44e816e3ebf6e3be93929dfcb38d5dad7d20b60215447674d0608b8b02331ac20e57083cb9b4449fecbb149441aea0ad82f00a82d87d743fc80d410922bc20923516885440f43c9f32beb81ce148def6140952583a7825c2d2fe012d52d30ef66d32a8a0864ac5c1737e2506228d41ff0515ee80be4cf012927dde0fd2a07cac68eff8c4437f2844d4df07936fd8753e5909f962c5c767f8719cc295bdfa8a16f3f36ff56e34d7b14b6b8c46d5af248b04a9c5396f84990e23d145670950bce5f5638e5e2cea37c371a4483729338f1305cbb32fa1c05dd9d21d2a69e5fa3abe9a2dad2237be20b4088393c04aa66cf13718de4bffac72f641a8c017a1d5568fa15a6a06e4dc833874ec95af6f115bdadf15179bfc8c4e3e64f26f1299e282c4ab397340934efc1e601afc630fe195e8ae7d8da1310568cab4f2fad085d0ec39710d8b7c812b3fd55c6f50925bcfc90fbcb35b8daa0f1e1f69d82fae2034039f7ad6921694ed48a55a68bc541e6d86f1e33c261a92d48b50eb58a03d8e31b2f6564a4ddc3ee988d0dc47b4b610a9a9dcb87571b5c1edb3362df0ec3d58872157e0f7247dfa8100b4478b705702a5620c9201010f40232327550db333e845dbecd6aadbd0a94c064862b1100b6dd45ece811b8c0275e3753e11b4bcd8bc5ed7668e72afa5bc5cc17b4c313273755f532ecfdefdf2d5c47999453a3b7c158d98332f0bd3a820cfb2c8c3bcd43197e7395a032cec6e41662079f2f654965aebc393e22b5c8516d9b8ad01e33ee481a4ac46a2df304dadeaa9e5274d340aaebe14dcea315fe1279f1a41a5c7aa8c94bf4b3d48757503171f53488e01210145e62c0de7c39737848dbdb1b207d4d33b8de180b020e8a76b1b521905e5e3ce97292f8558fb68efdee774681bfffcf1dc3eef35f660dd1659a32950dc6d50e762313beee330d9c2a9fe8ce5e4e61ddd86378d3551335f6ef62053d3b248a8c33a11abdf3f3aa1975a15f4a6957a13d5b12a44d0f2b52b9a2d996e98c630c0f2abca80c7ae89efcf81ae284a0d19582cb1319d207077e5657d245533181ed6e07e0f7647123fc46c37bd75b4f4d181112b4a08acdcf445332cb9dde69a0923dd9244dd2ecd818b19588939922e3b2d8dd9d9fed95fa55b0e4564b38aca2c4d24eebc634664400177fbdeaeb08000000eb11baf4be5c87d4f8d9a855bfa75df4c51fb4eec87a27c59df9a47d82523b08022a1c0fb22ff6f93c3d2cc22a4111a6ec5be428cba33617be65739c2240248f3a02d01ddf2d6aca9e537a2296b16d082d2b868504371dd5e41898885b03ebfaca73b40e8924ece83c1c80de6ce14943e1199c6f81bf359f44c3ed5ae3c6eacb730b1039f0b6555347bd566dfff45a7a2176420ab2b40916a73b66a3ad07af6e1ac5597393d203fa1ad34d4564af956a0a3e2997e27a4e5eff67dd89cce8875d995e00c1858234f149f6ad4cac2b8056966f726df57b8c4ee8f22f23097ba1471b1f1036e3a499400fccdb75b56eb13e9eca1407d5bff4b075b06d00fcbfcafc28431eb33156232e73c6577e3eca437330c494ede57b9609e1f40634918dea767338b5542197410cdc000143ace89ca0b7bf645b3267f74767d7c7fce05d2f59c137204e56bfa711f66903c511f681cf7a1b4f9fc0f42b7c438ff8957e1059375321df5b0c5c884f46d94c21686e1300582d34928bc398653118f79bfeea2e7cfbbf31a7718f4aab50fae57db94203d43e060365c9a7455241be03d82dffc3783d0f6aa170c0866eb0dad07485831526922d8348a7a16e2e9903a2ac93c58c6dce83127fab17703ec004a519ae5675baffb31bf4b52f9ca992a84017a44d68dc693abd829947342f277fdcbc87168bcc03c32b8b1e81a1915af2517c464af07d52b79d1b0e53164c82ba049f81e92ed1dc20a88fd72e9ce7aa4b22a7cc57dc5527d14f62bc29cfc9d57ed26fd523cac39ac00ba12d3a070094709924275fc0793d56acf9558818dc9eb210749fa5307d45886b879257d627cee0542b51c2ce6ce134100efb47c92456ece5b73cdc051f570810a8d534222649eb56cf73a377162b753de6c282bcd4a25dda21dd10901bd8dfe8fd4ba8a70811c39707beded23dd60f23e2933372e3a6bce099899b07f0a4c4956fd98e956a8649622c77717de099463c0c6c9389ab506c000000000000876af2943ee0b6b402ae5f89e09922e8c510ec0caa0a83e366e916400bfec88a52ab457037a35ddc6a8e2289c33684a5915c37bf5d227cbc65a737b52bdcb4fbbb7b4e7f965db116b46044d0870846c730dce12e120b1fe6dd5798ced24cad72c59a3f44de4978b8bc05a1dbeb766be6e2abf6ef46c67a58a370e54e92d89e5f44525e82b94a388d8d0cb20c3469a258c1633c9dddb6854aee255f93f59435ff317622f6899250aa185c207644275278580c5d32401741fe264a2e03b80f442ed58fd0704ebac923ac6a5abb7f0c695252f82e3fbcf2b99d721589a8fe3fad4d5926aee3d7bfafb6739e525faae3d25b12841fa2cc61dddc44d36acb9a8b72d60ecdd9c8cf04f9bac341b5e0f9bc59042db8126324888b07afe72b18cce36d61eec975b6b4ef5dc4a16ac14440cf770599bd4db630bd110eb63a03a80cd95c16d314a4de60cc5115bf0754cb7ab84a827ecefafa96069c721a5979f227fdc2467b4cd1975dafb5b28e1d6f3c1c3a2816ad831dd98c1378a03798c128f176426eaa0e361571e758d54bf4ec2c988355f016e16d6cd5cf97bb4891ab33f5623b7e796af313cc7a9e2f9510cd2bead1ea5dd080d9de1f595b2629ebccf69a0feaed3963ae8a6c89edd66fbf6e566379898185828925f8669668d6bddff961b08aaedbbe7fc196931a887ec740da6bcdab8f826a34aa2aa1e406a258558f3baf022a64222df4d6ee8726c79ba3dd6e11a19e4b4bb49b4a8cd99c189e6392f08ad731e415b65d0ccb919dca46efe9f79e21437111ab09e926d3038182044ae047bf1cc92e2d2644c528985719667a1a8abaf65d0f211172ea789b2fa016e1a88325d1ed706239da4dbb9e2079e3598b4ae5885667587ba1e0921c9ba55d7a3be4c47bc2f2f3547ce9efe32e5a22855f761bd4cbe1cd9337eda4bd7d82a918084d7e116b656104ca87e64b1b8c62323c3c296c5b5b98051feb607b872edf9f789744aff710c4b7279711182bcac6b76c05f5cd982f52f451e7e29046550e012e01d8cdd3e305427030f4247488c9136303084c12175c5c781cdd08aede5a356ea0ccdd05a460be3c7b4bfd62c3ce9ab68e285a36c1546d0b18edad71f69f5bedb340772e1bbb035514b085067259e39f59dc292a12557350c66904b253efee29a5eb7a6920f583c899dc46a1d3e2af2db3a3d1a0e8d1f98722a16c6cc1e401058d60c8c436d8f1166ba53bdde5810f9d0288528affd486c266546a864c92af3df8abd451cc1e0d6bfea534865cea9d49b3ea5e390fa823118df8a61e31022f5fbb8ceee870bf2e60890263c4d14e24d053d0fddf665ff80a66fa00a5957f8a30fe82a4b82cf2f6b4d49def98f66bfcdaa0aef13314e950ca9f3849b1edf3b82eaf74a0dbcf45c3dba9bd2d853281a78484f1efaf4150da1207ec3cb61fbcbf759f8182b7052b28d7164b73197b0a440759fe9d5ddf827f1897a174e82fb968a9a07c61bee44bc1f7f9ee5c6de04c02d57735c5fab741b36aec7c8642e56cba932a08b8e8a9d3eb066a4ee7cbf22e5abbd4346de59eca1f24ad9f7f9ff7621e5f30dd08f4cddda8e80e496908109f5212a72bab1378d1237def07bdda4178719975346c68405de15153031fb17535894e5e3c1de6fdd507333f0226b78ba7cae509cfb48d6735ede9392650bf85ac1db919b1e9fe0a823119d8253204dbb2f7a8f524be6d419f3a45c5051a7a88ef0bd41586d90c11a894d647f03895f671a6e19f1c70e32668653aba8366a3d372522f49844081a9637db080663ab02f4a8af502955d5411461b62f85308c91852f8fb9f0bdddd500b4a133791d3a2f91a82dc4b09f5ad2196a9172ab0cd3fafe7266e9f6d159110d99ca8da8a34b17be17a04ad4509a9fffab1e45e10f10e0cf9cfbd9c761ad044064c07e473fdc626289cfb88b13a11455c069b70aa02426d9119ac878a14c9483be9c0d5bcbb5fa76c8d06531f59c7cf7c26372e750e2f332418ca769e5e7fbeb3ada7bb58b573a0635e2e3ad9a53ddb809ea01086a3fa993ad57e89da6f9c5e61bd0f8ba69212a386b2aa1ae17520d7fb989dbe14021885eb50fa3048aebd42c861a09a308b660d382c0480ead8a52a1e14927c7c77957f94bb59ccfd557f8c4a7af23360a298a603d20ebc386db041d8c306b3e32b0bff541bdec5ff75c3b40950815cf9f89d48a382f67e44c409d046c01fb1262aca0df6f5238a3c3c09977261494f7361ba326815d6e23f49e4d6d4b54665081067332265fff59cf54af9da0db9d19bc611cbcb6e6f3f1e2e1ffb6cdd6253578d78d06a2ff5f9250f1994c5749e3ce49231fbd63bba28e948f9150933e3ae31299babaa41043b181a100882e613b4b4b8f49ceeb742d22f860853a9b917f5a323a8a1fb1f3363a7be4407fba44b408f259b5db79a055b92ce3d7a0649cc59f4afa2a5f69959d5c6f5eef1fa7987a47bee4491f685c52e9db1ee1a231ab5a4bae1019c97868a409dd0d57b32525394a233023c4a7ac429808bbcb57a34b41883202744c3bdebc0a637773273f19c2be6e806bef7fc1002846db762ee4e16867773808c5477987d5851d5b1641d070feabc203cb3d7943ffb206272fcac1bccb616352d85975f5a22c0f247548535ad9fb83fb2be17689453f10691143c060cd964df63c3c70e7b1cfc7e2b468015f327f9869353477bfeeed330b03ddd9e4e0a2441182244da283d7a59d2b2b20e6de3e3a47c26aeef4944c1190bba674523a6c3c4ed6bac53b9edffcb0e9fb19d8bf36949d03ef6a7e59eb903a00d9614f642d1932c766421906f5b177963c71e881453560e3ffcec792e8dc46b1832a8fcb2ab2268a9c1fb648d1c6fa1c8cbd50d5a2d8264fbc6c063e6daac5519d362da389dcd3d12c8039f991de91e728abf5bab95c3aef66dd8cc36c60e73cb10afb02eff6df20ff12c59b142b07fc48fe94612de80b8b958f78256fd7cf3c6f79a83867f3bb5f70da392957badadecefdf7b6e4ebd39ff945397c7d302ca0a5a3918d8abb893cd9cdd680916a50fe19699ff0476ad82e6ba46523f26ccc5eb65313c1df1077c8876d2b73bf86ba311862d12b0c557a92ef827197121512e87f817167d4b17c7e225a48b3f8fbbf4187438e0e9b78e905cdbeb72e80dfb37ec0104f5186b39b4ff34f0cdf4b74dc915acd3f98874cd6a67308d0ad9697121ac477550b1affe004f433705933f9647522be65cb5a7471120ec942aeb956f195be0c1783102cf7d842f2968222ae1a7fa6513f200d3fa85d71724956ed697f0673ee3b40a4d46ba4850439ec125b708ed52b52b9f72906477d520c90a9f5dd49a7a33a328137a183f439895532b78ae451a8c3db789bc862fbc37241d523027e1a008629c969380f6eb55f9cf3f0675bca6851f00df6aaf90de9f62d5c179945ef81d1073850301f97e379ea415d830e3f3751cf83e2dba541cb6cdd89e6b674f2c53e329e5f3dd418d534ada6469a5b3bca5b7cfbdfdd6df4abaf77d4520d0311e801145c91b52586a56086e663841b702f52cef9fff8cfb7b33dfa125688ba6b4fadd1dca8defaf4259ca85323b23d3bbb45933562c25af3e8d7bc6ad4a50ae974f8d207994b3bd74a6812ab6a40fcaf96bb4e17bd20d742b14c72226caef3e0f5c56c4930071e9f9a894f18650fbb785c6f707605c86b634c9722c8690cf3a954f68d7c2db3a257339ade67a41259f6f878dd0ab7876deffa77f6f00819282a8f4c4da84c6cf4f335cd0410770a2b1a1fbb3f85f4489eeceb78bbfdd21d1866c57b41f6ed179a0bc3750a486403d23473f2feef43ebc5af1018d9c20089e277d77fb9c34f425c8f8af4c49864b57572fa8c232e61ef37194251a1ddc2f73fdecd57e638751cb72bcb2c40d22540166ca1e8588f24b010c9fbd962e3a2c23a7e93f131df61b8703ce326ed80cc87912d3c6aaa27574bbe8d65bcaecd660c31cead132a44b1d0e4a53cacc0b82a263c4e7783944af0af08ea9e68e8e25ed9111cfef841f1b2fd24164f9097f70efe09b1109e5cb91fe68a2760381fd63a7fd422dd578a60661abc9ee3a5db1c2cde2fb21f2040f1ed3fc27b99e254256949d0560e8b98fa028fca50768caa951a87bf8969af498d50a9ee773c9caa7d9f7d8e1955506013f198cda316d79b177e59f233b98f727afd2494fc18642f0015adab756ea6742690c7d00f28655b915ce4eb8b3ba2e8559ba23e1ff1ccc9f79ae2df85f924459c56715dec78ef4592352eb1a850cd65ecd36e1a9121e888586b7b2fa84da920b8cf44480433e61ab076b10171c0537524bb170a4b99b0b0c437418a665b7ef909652b6483b20362e557c1480c2a2a0efa221fc59054a48122b52d38245f9bd026001635be5b155f5c766a59306fbde231fa72b4d74449a2fe8fb969496ee26af5881adaafb4189b439877ab8f78709cfd32c10ea576a010bfc137b7a4aae137ea3d29070ce3bc8dbe6655e967115ca3461ad9d28b9cf8af07441e68a54ec5e889846f3978f07ba51f7d5af5da78c5c675dc5d0c1a4a399ff4247203573a46fb903eaf7bc886e6cbd3126fa4a3fe3bb13bbdfea7da871f65665a750f6ad7895b34b2809563dcf5ed30f1c60cef4138aa49d4f55e396534ed10cf4d857723a2b442f47d79de162c30ec6c4daf939b4c88649495e3682d1da81b4a5928d8e18a16c46707a685305e592589acb484e28e9d5af89c44b6e563d125ec97c0155410527406d94b90bc9576a662db99da1cb82b04d610d02187ce08f22ea0e8fd31919d53fa6aaf980e31ca7f8610e695a41919c24136a8406c62d5f15fca365892a2b54ece17664b5247583ad60d863f283f3c288946139575dcaedc978762e85f534e56334ef0221c34ffae054ddf79339b8f0870300000011041df8f518dd33203377b38d8dff11b15aadb0c251ce2c5b32f8735b3cb784f2e5731b48feb5a0e791a1106abdea0f7d1f087737cbe7fdf523fa14c9be2a2987511004c5b7ac1814ef6961db16799698242452c469a07c30e4a1f73193c74a41bdd88aef50035e4648bc9dfa276951798420a45e4085932bdb9381af3cc4678bd962af616549e4020d2c9fd25e2117a6d8934fde2218273d7833d60ea492e251417a27e7fb32012a940a6b6487af4b64958bf05f1b1107732149d227eeda5ca5a43cf583dc297d66072a1acd75e93a7caefd36a0d581e21d5cb08654c4ecef46ebac5391546e0b7d2a6418548d8f816446bcf237f676e873e6bae9107234abe5ab24c53ea472ad10653cef068fd9f4e729fc0d526e489f8df13af5575f1e70e0ec22899728b0659d70fc2dd509d9df3ec170638f89e540f4d3f02aa9b1b1819f84da596e0d7b45a5818061728f8eeccd2bea0f460dd7e18cb95f2364c50e351f0690e184eb63ebbb14a0b4b2117e44f3b2b300", 0x2000, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

25.774512631s ago: executing program 34 (id=508):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004300)="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", 0x2000, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.701295518s ago: executing program 4 (id=636):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000840), &(0x7f0000000880)=r1}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r1, r3, 0x25, 0x0, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[], 0x0)

2.562631341s ago: executing program 4 (id=639):
epoll_create1(0x80000)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0xc00, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000e11000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000dea000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ca6000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

2.414458556s ago: executing program 4 (id=641):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)='W', 0x1}], 0x1}, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0xc008744c, &(0x7f0000000180))

2.166993038s ago: executing program 4 (id=645):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x100, 0x0, 0x0, 0x0, 0x54}, 0x9c)

1.950064963s ago: executing program 5 (id=649):
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f000046d000/0x4000)=nil, 0x4000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x4)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)

1.703164055s ago: executing program 4 (id=653):
r0 = fsopen(&(0x7f00000003c0)='tracefs\x00', 0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(r1, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x9})
unshare(0x22020400)
fcntl$lock(r1, 0x7, &(0x7f0000000140)={0x1, 0x1, 0x7, 0x5})
close_range(r0, 0xffffffffffffffff, 0x0)

1.551112881s ago: executing program 5 (id=655):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x1, @empty, 'ip6tnl0\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x1, @broadcast, 'ip6tnl0\x00'}}, 0x1e)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000080)={0x18, 0x0, {0x1, @empty, 'ip_vti0\x00'}}, 0x1e)
close(0x3)

1.4977216s ago: executing program 6 (id=657):
open(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1a1342, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000d88000/0x1000)=nil, &(0x7f00007f2000/0x2000)=nil, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000b44000/0x2000)=nil, &(0x7f0000fc4000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00008f7000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fed000/0x10000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x2405a045)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xcaa1, 0xc000, 0x6, 0xbe})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50)
io_uring_enter(r0, 0x2219, 0x8224, 0x16, 0x0, 0x0)

1.404403245s ago: executing program 5 (id=658):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000100)={0x28, 0x3, r1, 0x0, &(0x7f0000000000)='\x00', 0x1, 0xfffffffffffffffe})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000280)={0x28, 0x5, r1, 0x0, &(0x7f0000000440)='\x00', 0x1, 0x860})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f00000001c0)={0x28, 0x4, r1, 0x0, &(0x7f0000000180)="b1", 0x1, 0xb3b})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x4, r1, 0x0, &(0x7f0000000200)="90", 0x1, 0x43b0607c})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x6, r1, 0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000})

1.396703096s ago: executing program 6 (id=659):
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f00000006c0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb87, &(0x7f00000017c0)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x2200008, &(0x7f0000000600)={[{@stripe={'stripe', 0x3d, 0x9}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@grpquota}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@jqfmt_vfsv1}, {@nouser_xattr}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x594, &(0x7f0000001000)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f00000000c0)='./file1\x00', 0x0)

1.242095782s ago: executing program 5 (id=660):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0xc, &(0x7f0000000040)=0xfffffffc, 0x4)
recvmmsg(r0, &(0x7f0000000340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/33, 0x21}, 0x4}], 0x3d5, 0x45833af92e4b38ff, 0x0)

922.644226ms ago: executing program 6 (id=661):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000340)={@val={0x8, 0x800}, @val={0x0, 0x1, 0x6, 0x4, 0x7, 0x48}, @ipv4=@udp={{0x5, 0x4, 0x3, 0x5, 0x2d, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x12}}, {0x4e26, 0x4e20, 0x19, 0x0, @gue={{0x1, 0x1, 0x0, 0x8, 0x0, @void}, "6a93a1fc83e4f238473a58586f"}}}}, 0x3b)

874.703784ms ago: executing program 1 (id=662):
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

727.252758ms ago: executing program 4 (id=663):
r0 = epoll_create1(0x80000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = epoll_create1(0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x0, 0xfffffffffffffffd, 0x9}, 0x0, &(0x7f0000000240)={0xdd, 0x3, 0x56d92c88, 0x0, 0x0, 0x10000}, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000000)={0xa0000001})

726.389729ms ago: executing program 1 (id=664):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0x2})
r1 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000340)={@val={0x0, 0x30f6}, @void, @eth={@multicast, @multicast, @val={@void, {0x8100, 0x0, 0x0, 0x4}}, {@ipv4={0x8100, @udp={{0x5, 0x4, 0x0, 0x2, 0x20, 0x68, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x17c1, 0xc, 0x0, @gue={{0x1, 0x1, 0x1, 0x6, 0x100, @void}}}}}}}}, 0x36)

436.199897ms ago: executing program 1 (id=665):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000380), 0x12)
r3 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r3, &(0x7f0000000280), 0x9)

408.535371ms ago: executing program 6 (id=666):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000004000/0x4000)=nil)
sendmsg$can_bcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2, 0x0, 0x0, 0x8084}, 0x0)

357.20645ms ago: executing program 5 (id=667):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="01000000050000000200000004"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000011e0000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lirc_mode2=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4048801}, 0x20000050)

257.276897ms ago: executing program 6 (id=668):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x4e, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa30e, 0x1, 0xfffffffa}}}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=@newtfilter={0x44, 0x2c, 0xd3f, 0x70b524, 0x25dfdbf9, {0x0, 0x0, 0x0, r3, {0xfff3, 0xffe0}, {0x0, 0xfff1}, {0xc, 0x1}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0x2, 0xd}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008849}, 0x30004440)

202.090186ms ago: executing program 1 (id=669):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1000401, &(0x7f00000000c0)={[{@grpjquota}, {@errors_continue}, {@noblock_validity}]}, 0x1, 0x4ac, &(0x7f0000000680)="$eJzs3MtvG8UfAPDvrvPoO/n1Vx59QAMFEVFImrRAD0gIBFIvSEhwgGNIQ1WatqgJEq0q2iBUjoi/ADgi8RdwggsCTiCuIK4IqUK9tHBARmvvJpvYTV2njkP9+Uh2ZvY1Mzs72dmdXQfQs0ayryRiW0T8EhFD9ejyBUbqf25cuzj917WL00lUq6/+OVhb7vq1i9PFosV6W/PIaBqRfpjE3ibpzp2/cGpqdnbmXB4fnz/9zvjc+QtPnjw9dWLmxMyZyaNHjxyeeObpyafaKtemFfGsXNf3vH923+5jb3zy8nQ13vz+yyy/2/L55XLUDbeVbtlIjES1Wq2my6YO1L4fXfPWN5btEbGQh5O+LmeGllUiIquu/lr7H4pKLFXeULz0QVczB3RUdn4abJhayf/2Jdn8TaVlgbvJgnYNPao442fXv8VnvfoeG8HV57PvmVr5b+Sf+py+yK7bk+H6FXulQ+lvi4jXL//9afaJpvchAADurK+z/s8Tzfp/adxbWm5HPoYyHBEHI2JnRPw/InZFxD0RtWXvi4j7bzP92vjTwlK8sf/z0+a2C9eCrP/3bD62tbz/tzhqM1zJY9tr5e9P3jo5O3Mo3yej0T+YxSdWSeObF3/++GbzRkr9v+yTpV/0BfN8/NG34gbd8an5qbWUuezqQsSevmblTxZHApKI2B0Re9rYfrbPTj7+xb4svGNr4/xbl381l9vI0XLVzyMeq9f/5VhR/kJSHyK52fjk+KaYnTk0XhwVjX748cor5Xh/Kby28q9dVv9bmh7/efmLZlCM1861uOGBpeCVXz/Kt9nYlNs9/geS15Yl897U/Py5iYiBgWicPrm0bhEvls/KP3og4ko+EFxu/zsj/vksX29vRGQH8QMR8WBE7M/z/lBEPBwRB1bZFd+98Mjbq++s7tb/8dXqP2I4KY/XtxGonPr2q2Jji1WZ/3Nprf6P1EKj+ZRW/v+1msE7sQ8BAABgo0trY9BJOrYYTtOxsfoz/LtiSzp7dm7+4Ei8e+Z4fax6OPrT4k7XUOl+6ER+b7iIT66IH46I/9WeNNpci49Nn53d3u3CQ4/bepP2n/m9Uw+9ABvHsve1bvW+XdLZvADrq6/JwCzQG1p+X7u/s/kA1p/fa4Depf1D72rW/i9F3OhCVoB1dlvn/+c6lw9g/a3W/t3yg7ub63/oXdo/9KTGV+KLR4HaedN/KbDz2JpW76FApUNbjvKPdtw6UJwDWk4i0q7vuvYDafur/3bHsrE/DwxGRKtrXbqdOl3z8QMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDf928AAAD//+f51pU=")
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x140)
chdir(&(0x7f00000001c0)='./bus\x00')
chroot(&(0x7f0000000b40)='./file1\x00')
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)

130.986148ms ago: executing program 1 (id=670):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xc4, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@policy_type={0xa, 0x10, {0x1}}]}, 0xc4}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0xa, [@var={0x7, 0x0, 0x0, 0xe, 0x1, 0x1}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x30, 0x2e, 0x2e, 0x1e]}}, 0x0, 0x32}, 0x28)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r2, &(0x7f0000000100)={&(0x7f0000000040)={0xa, 0x4e24, 0x1, @dev}, 0x1c, 0x0}, 0xfdff)

105.735192ms ago: executing program 5 (id=671):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x183081, 0x0)
close(r1)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000500)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd6372ce22667f2c"], 0x280)

35.581734ms ago: executing program 6 (id=672):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37}, 0x48)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f0000000100)=r0, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="b7000000ecffffff0c0000000000000095000000000000005e0c83dfb64a3eb1cdfa541cd3957aa8a96b9fa4591c1eb556e38defc504b011face5a06294c2115a9ad943bac350e8d7961537181f79ead9176dc7c3ed2d45004deb987fa0d"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37}, 0x48)
r3 = dup2(r2, r0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f00000000c0)=r3, 0x4)

0s ago: executing program 1 (id=673):
syz_open_dev$video4linux(&(0x7f0000000480), 0xffffffffffffff52, 0x450202)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000080)={{@my=0x1, 0x2}, @local, 0x0, 0x0, 0x5e, 0x200000000000, 0x100000000000006})

kernel console output (not intermixed with test programs):

v0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.939461][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.946527][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.972884][ T5774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.015064][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.022155][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.048623][ T5774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.073550][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.080793][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.089657][ T5788] bridge_slave_0: entered allmulticast mode
[   86.098250][ T5788] bridge_slave_0: entered promiscuous mode
[   86.110997][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.120975][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.128316][ T5788] bridge_slave_1: entered allmulticast mode
[   86.135191][ T5788] bridge_slave_1: entered promiscuous mode
[   86.183371][ T5783] hsr_slave_0: entered promiscuous mode
[   86.190266][ T5783] hsr_slave_1: entered promiscuous mode
[   86.199662][ T5783] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.207771][ T5783] Cannot create hsr debugfs directory
[   86.243596][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.280215][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.321678][ T5774] hsr_slave_0: entered promiscuous mode
[   86.328302][ T5774] hsr_slave_1: entered promiscuous mode
[   86.334428][ T5774] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.342948][ T5774] Cannot create hsr debugfs directory
[   86.367051][ T5782] Bluetooth: hci1: command tx timeout
[   86.394338][ T5788] team0: Port device team_slave_0 added
[   86.403196][ T5788] team0: Port device team_slave_1 added
[   86.436124][ T5782] Bluetooth: hci2: command tx timeout
[   86.436332][   T51] Bluetooth: hci0: command tx timeout
[   86.487387][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.494391][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.521920][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.560356][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.570473][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.596751][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.607685][   T51] Bluetooth: hci3: command tx timeout
[   86.742484][ T5778] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   86.780076][ T5788] hsr_slave_0: entered promiscuous mode
[   86.789610][ T5788] hsr_slave_1: entered promiscuous mode
[   86.795698][ T5788] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.803408][ T5788] Cannot create hsr debugfs directory
[   86.810371][ T5778] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   86.839806][ T5778] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   86.859763][ T5778] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   87.048301][ T5783] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   87.094695][ T5783] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   87.106530][ T5783] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   87.145375][ T5783] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   87.250841][ T5774] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   87.268433][ T5774] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   87.311716][ T5774] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   87.335831][ T5774] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   87.430737][ T5778] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.443319][ T5788] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.482280][ T5788] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.492969][ T5788] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.505569][ T5788] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   87.536907][ T5778] 8021q: adding VLAN 0 to HW filter on device team0
[   87.555901][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.563254][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.586007][ T1080] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.593134][ T1080] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.693296][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.739643][ T5783] 8021q: adding VLAN 0 to HW filter on device team0
[   87.785259][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.792537][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.824732][ T4464] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.831912][ T4464] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.862224][ T5774] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.880093][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.950862][ T5774] 8021q: adding VLAN 0 to HW filter on device team0
[   87.972338][ T4464] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.979569][ T4464] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.006373][ T1080] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.013544][ T1080] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.028201][ T5788] 8021q: adding VLAN 0 to HW filter on device team0
[   88.092983][ T1080] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.100189][ T1080] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.113731][ T1080] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.120926][ T1080] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.242841][ T5778] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.388604][ T5778] veth0_vlan: entered promiscuous mode
[   88.423231][ T5778] veth1_vlan: entered promiscuous mode
[   88.438020][   T51] Bluetooth: hci1: command tx timeout
[   88.481407][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.518330][   T51] Bluetooth: hci0: command tx timeout
[   88.519640][ T5782] Bluetooth: hci2: command tx timeout
[   88.626916][ T5778] veth0_macvtap: entered promiscuous mode
[   88.654694][ T5774] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.666410][ T5778] veth1_macvtap: entered promiscuous mode
[   88.676867][ T5782] Bluetooth: hci3: command tx timeout
[   88.683724][ T5783] veth0_vlan: entered promiscuous mode
[   88.710407][ T5783] veth1_vlan: entered promiscuous mode
[   88.745689][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.765932][ T5778] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.794147][ T5783] veth0_macvtap: entered promiscuous mode
[   88.824098][ T5783] veth1_macvtap: entered promiscuous mode
[   88.840164][ T5778] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.852865][ T5774] veth0_vlan: entered promiscuous mode
[   88.871346][ T5778] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.880711][ T5778] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.890158][ T5778] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.901345][ T5778] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.944593][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.957329][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.969877][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.979958][ T5774] veth1_vlan: entered promiscuous mode
[   89.019075][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.031746][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.043903][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.072978][ T5783] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.082955][ T5783] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.093813][ T5783] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.104149][ T5783] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.124004][ T5788] veth0_vlan: entered promiscuous mode
[   89.168925][ T5774] veth0_macvtap: entered promiscuous mode
[   89.191355][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.205185][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.218836][ T5774] veth1_macvtap: entered promiscuous mode
[   89.243372][ T5788] veth1_vlan: entered promiscuous mode
[   89.264513][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.279827][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.296202][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.308081][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.318704][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.329772][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.341330][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.369183][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.387528][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.401120][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.411838][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.426873][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.445162][ T5788] veth0_macvtap: entered promiscuous mode
[   89.482321][ T5774] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.491644][ T5774] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.501838][ T5774] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.510716][ T5774] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.537866][ T5788] veth1_macvtap: entered promiscuous mode
[   89.559253][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.586541][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.621948][ T5837] syz.1.2[5837]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   89.654802][ T5837] loop1: detected capacity change from 0 to 512
[   89.681701][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.699190][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.704687][ T5837] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   89.710510][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.734846][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.744986][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.757898][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.766045][ T5837] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   89.774180][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.797308][ T4482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.805170][ T4482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.836025][ T5837] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[   89.844150][ T5837] System zones: 1-12
[   89.853721][ T5837] EXT4-fs (loop1): 1 truncate cleaned up
[   89.868308][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.882839][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.894482][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.901492][ T5837] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.908110][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.927297][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.953841][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.966232][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.979443][ T5788] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.988391][ T5788] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.997193][ T5788] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.005928][ T5788] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.020435][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.057343][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.206826][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.214706][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.225723][ T1080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.250872][ T1080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.294441][ T5778] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.385124][ T1080] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.444019][ T1080] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.516284][ T5782] Bluetooth: hci1: command tx timeout
[   90.570446][ T5843] pim6reg1: entered promiscuous mode
[   90.575812][ T5843] pim6reg1: entered allmulticast mode
[   90.596461][ T5782] Bluetooth: hci2: command tx timeout
[   90.600658][   T51] Bluetooth: hci0: command tx timeout
[   90.724615][ T5850] loop0: detected capacity change from 0 to 16
[   90.756398][   T51] Bluetooth: hci3: command tx timeout
[   90.817124][ T5850] =======================================================
[   90.817124][ T5850] WARNING: The mand mount option has been deprecated and
[   90.817124][ T5850]          and is ignored by this kernel. Remove the mand
[   90.817124][ T5850]          option from the mount to silence this warning.
[   90.817124][ T5850] =======================================================
[   90.911584][ T5850] erofs: (device loop0): mounted with root inode @ nid 36.
[   91.017191][ T5856] Bluetooth: MGMT ver 1.22
[   91.111540][   T28] audit: type=1800 audit(1776138740.215:2): pid=5850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1" name="file2" dev="overlay" ino=89 res=0 errno=0
[   91.228026][ T5860] loop2: detected capacity change from 0 to 512
[   91.269661][ T5860] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   91.352991][ T5860] EXT4-fs (loop2): 1 orphan inode deleted
[   91.411270][ T5860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.511151][ T5867] loop0: detected capacity change from 0 to 512
[   91.552145][ T5867] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   91.684965][ T5867] EXT4-fs (loop0): 1 truncate cleaned up
[   91.702723][ T5783] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.741848][ T5867] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.960014][   T27] cfg80211: failed to load regulatory.db
[   92.077896][ T5788] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[   92.607312][   T51] Bluetooth: hci1: command tx timeout
[   92.676786][   T51] Bluetooth: hci0: command tx timeout
[   92.682263][   T51] Bluetooth: hci2: command tx timeout
[   92.797839][ T5894] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[   92.829259][ T5894] overlayfs: overlapping lowerdir path
[   93.148934][ T5154] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   93.172706][ T5908] TCP: TCP_TX_DELAY enabled
[   93.349746][ T5154] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   93.384902][ T5154] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   93.406037][ T5154] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   93.416463][ T5154] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   93.434012][ T5154] usb 4-1: SerialNumber: syz
[   93.572657][ T5926] loop3: detected capacity change from 0 to 7
[   93.584247][ T5926] Dev loop3: unable to read RDB block 7
[   93.590596][ T5926]  loop3: unable to read partition table
[   93.599900][ T5926] loop3: partition table beyond EOD, truncated
[   93.607632][ T5926] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[   93.689949][ T5154] usb 4-1: 0:2 : does not exist
[   93.708828][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.810764][ T5154] usb 4-1: USB disconnect, device number 2
[   93.905780][ T5784] udevd[5784]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   93.918927][   T49] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.964678][ T5931] netlink: 8 bytes leftover after parsing attributes in process `syz.1.38'.
[   94.033987][   T49] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.170262][   T49] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.245400][   T49] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.603718][ T5944] "syz.1.44" (5944) uses obsolete ecb(arc4) skcipher
[   94.647478][ T5944] trusted_key: syz.1.44 sent an empty control message without MSG_MORE.
[   95.179235][ T5782] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   95.196437][ T5782] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   95.205048][ T5782] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   95.218984][ T5782] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   95.241525][ T5782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   95.249031][ T5782] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   95.868738][ T5953] loop1: detected capacity change from 0 to 32768
[   95.904759][ T5953] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.47 (5953)
[   96.034175][ T5953] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   96.100675][ T5953] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[   96.137245][ T5953] BTRFS info (device loop1): using free space tree
[   96.283594][ T5953] BTRFS info (device loop1): enabling ssd optimizations
[   96.314145][ T5953] BTRFS info (device loop1): auto enabling async discard
[   96.704800][ T5778] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   96.860572][ T6013] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   97.063372][ T5959] chnl_net:caif_netlink_parms(): no params data found
[   97.086099][   T23] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   97.177620][   T49] hsr_slave_0: left promiscuous mode
[   97.207067][   T49] hsr_slave_1: left promiscuous mode
[   97.236945][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.255327][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.296148][   T23] usb 3-1: Using ep0 maxpacket: 16
[   97.313872][   T23] usb 3-1: New USB device found, idVendor=041e, idProduct=4018, bcdDevice=ed.b4
[   97.323769][   T51] Bluetooth: hci3: command tx timeout
[   97.336230][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.344371][   T23] usb 3-1: Product: syz
[   97.349321][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.353659][   T23] usb 3-1: Manufacturer: syz
[   97.361611][   T23] usb 3-1: SerialNumber: syz
[   97.374829][   T23] usb 3-1: config 0 descriptor??
[   97.384423][   T23] gspca_main: spca508-2.14.0 probing 041e:4018
[   97.437854][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.472565][   T49] bridge_slave_1: left allmulticast mode
[   97.488126][   T49] bridge_slave_1: left promiscuous mode
[   97.494711][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.514667][   T49] bridge_slave_0: left allmulticast mode
[   97.521076][   T49] bridge_slave_0: left promiscuous mode
[   97.527712][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.551542][ T6028] capability: warning: `syz.1.60' uses 32-bit capabilities (legacy support in use)
[   97.596804][   T23] gspca_spca508: reg_read err -32
[   97.603020][   T23] gspca_spca508: reg_read err -32
[   97.610398][   T49] veth1_macvtap: left promiscuous mode
[   97.616497][   T23] gspca_spca508: reg_read err -32
[   97.631288][   T23] gspca_spca508: reg_read err -32
[   97.632474][   T49] veth0_macvtap: left promiscuous mode
[   97.654307][   T49] veth1_vlan: left promiscuous mode
[   97.682701][   T49] veth0_vlan: left promiscuous mode
[   97.851567][   T23] gspca_spca508: reg write: error -71
[   97.871636][   T23] spca508: probe of 3-1:0.0 failed with error -71
[   97.909431][   T23] usb 3-1: USB disconnect, device number 2
[   98.557959][ T6036] loop3: detected capacity change from 0 to 40427
[   98.630871][ T6036] F2FS-fs (loop3): Invalid SB checksum offset: 0
[   98.663748][ T6036] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[   98.705009][ T6036] F2FS-fs (loop3): invalid crc value
[   98.925371][ T6036] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[   98.938888][ T6036] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   99.008834][   T28] audit: type=1800 audit(1776138748.125:3): pid=6036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.65" name="file1" dev="loop3" ino=10 res=0 errno=0
[   99.097830][ T5774] syz-executor: attempt to access beyond end of device
[   99.097830][ T5774] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   99.120528][ T5774] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   99.130713][ T5774] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   99.364591][   T49] team0 (unregistering): Port device team_slave_1 removed
[   99.405329][   T51] Bluetooth: hci3: command tx timeout
[   99.439040][   T49] team0 (unregistering): Port device team_slave_0 removed
[   99.496465][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   99.544433][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   99.953335][   T49] bond0 (unregistering): Released all slaves
[  100.254522][ T5959] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.287170][ T5959] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.314716][ T5959] bridge_slave_0: entered allmulticast mode
[  100.336266][ T5959] bridge_slave_0: entered promiscuous mode
[  100.360663][ T5959] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.373559][ T5959] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.402685][ T5959] bridge_slave_1: entered allmulticast mode
[  100.423074][ T5959] bridge_slave_1: entered promiscuous mode
[  100.523987][ T5959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.545461][ T5959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.632219][ T5959] team0: Port device team_slave_0 added
[  100.651765][ T5959] team0: Port device team_slave_1 added
[  100.708690][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.715705][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.766135][  T789] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  100.776084][ T5959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.806346][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.815983][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.917716][ T5959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.966219][  T789] usb 3-1: Using ep0 maxpacket: 8
[  100.973763][  T789] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  100.998799][  T789] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  101.016562][  T789] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  101.047009][  T789] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  101.080067][  T789] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  101.110050][  T789] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.124014][ T5959] hsr_slave_0: entered promiscuous mode
[  101.161850][ T5959] hsr_slave_1: entered promiscuous mode
[  101.176144][ T5959] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  101.183737][ T5959] Cannot create hsr debugfs directory
[  101.393602][  T789] usb 3-1: usb_control_msg returned -32
[  101.404040][ T6082] loop1: detected capacity change from 0 to 32768
[  101.420525][  T789] usbtmc 3-1:16.0: can't read capabilities
[  101.447127][ T6082] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.78 (6082)
[  101.478977][   T51] Bluetooth: hci3: command tx timeout
[  101.499159][ T6082] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  101.558717][ T6082] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  101.596185][ T6082] BTRFS info (device loop1): force clearing of disk cache
[  101.603416][ T6082] BTRFS info (device loop1): metadata ratio 0
[  101.646006][ T6082] BTRFS info (device loop1): enabling ssd optimizations
[  101.697757][ T6082] BTRFS info (device loop1): using spread ssd allocation scheme
[  101.705456][ T6082] BTRFS info (device loop1): using free space tree
[  101.790899][ T5959] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  101.809299][ T6101] loop3: detected capacity change from 0 to 2048
[  101.819977][ T5959] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  101.847783][ T5959] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  101.853642][    C1] usbtmc 3-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  101.894637][ T5959] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  101.909349][ T6082] BTRFS info (device loop1): auto enabling async discard
[  101.931219][ T6082] BTRFS info (device loop1): rebuilding free space tree
[  102.002952][ T6121] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  102.172638][   T28] audit: type=1800 audit(1776138751.285:4): pid=6101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.82" name="file1" dev="loop3" ino=15 res=0 errno=0
[  102.260525][ T6101] NILFS (loop3): nilfs_palloc_commit_free_entry (ino=3): entry number 7168 already freed
[  102.273118][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.361353][ T5959] 8021q: adding VLAN 0 to HW filter on device team0
[  102.413244][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.420703][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.462751][ T1098] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.469955][ T1098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.496254][ T6121] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  102.541096][ T6121] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4)
[  102.601742][ T6121] Remounting filesystem read-only
[  102.632287][   T31] NILFS (loop3): discard dirty page: offset=0, ino=3
[  102.649317][   T31] NILFS (loop3): discard dirty block: blocknr=42, size=1024
[  102.666030][   T31] NILFS (loop3): discard dirty block: blocknr=43, size=1024
[  102.673394][   T31] NILFS (loop3): discard dirty block: blocknr=44, size=1024
[  102.706043][   T31] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.716768][   T31] NILFS (loop3): discard dirty page: offset=229376, ino=3
[  102.723944][   T31] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.758249][ T5778] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  102.775006][   T31] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.811116][   T31] NILFS (loop3): discard dirty block: blocknr=50, size=1024
[  102.829915][   T31] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.910413][ T5774] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer
[  102.945064][ T5774] NILFS (loop3): discard dirty page: offset=0, ino=6
[  102.961336][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  102.998250][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.035060][ T5774] NILFS (loop3): discard dirty block: blocknr=37, size=1024
[  103.065740][ T5774] NILFS (loop3): discard dirty block: blocknr=38, size=1024
[  103.143586][ T5774] NILFS (loop3): discard dirty page: offset=0, ino=5
[  103.169424][ T5774] NILFS (loop3): discard dirty block: blocknr=41, size=1024
[  103.210998][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.247932][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.278913][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.302987][ T5774] NILFS (loop3): discard dirty page: offset=0, ino=4
[  103.324041][ T5774] NILFS (loop3): discard dirty block: blocknr=40, size=1024
[  103.335146][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.364019][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.387271][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.394577][ T5774] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  103.539396][  T789] usb 3-1: USB disconnect, device number 3
[  103.559684][   T51] Bluetooth: hci3: command tx timeout
[  104.027325][  T789] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  104.088290][ T6166] loop1: detected capacity change from 0 to 128
[  104.251011][  T789] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.258369][ T6166] syz.1.89: attempt to access beyond end of device
[  104.258369][ T6166] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[  104.293135][  T789] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  104.325252][ T5959] veth0_vlan: entered promiscuous mode
[  104.339061][  T789] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  104.355503][ T5959] veth1_vlan: entered promiscuous mode
[  104.364717][  T789] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.391658][  T789] usb 3-1: Product: syz
[  104.414235][  T789] usb 3-1: Manufacturer: syz
[  104.436565][  T789] usb 3-1: SerialNumber: syz
[  104.489156][ T5959] veth0_macvtap: entered promiscuous mode
[  104.550373][ T5959] veth1_macvtap: entered promiscuous mode
[  104.599177][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.609900][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.621425][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.632119][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.642049][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.664171][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.674965][ T6149] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  104.718086][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.774865][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.794798][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.810415][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.829829][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.846997][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.857806][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.875256][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.900327][ T6178] loop3: detected capacity change from 0 to 2048
[  104.902463][ T5959] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.916772][ T5959] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.925565][ T5959] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.946149][ T5959] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.018612][ T6178] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  105.164275][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.194307][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.281521][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.292767][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.341758][ T6149] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  105.555450][ T6187] loop4: detected capacity change from 0 to 512
[  105.580362][  T789] cdc_ncm 3-1:1.0: MAC-Address: 42:42:42:42:42:42
[  105.612228][  T789] cdc_ncm 3-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  105.678479][  T789] cdc_ncm 3-1:1.0: setting rx_max = 2048
[  105.720780][ T6187] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  105.782743][  T789] cdc_ncm 3-1:1.0: setting tx_max = 184
[  105.894297][ T6187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.918057][  T789] cdc_ncm 3-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.2-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  105.993540][ T6187] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.046652][  T789] usb 3-1: USB disconnect, device number 4
[  106.075078][  T789] cdc_ncm 3-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.2-1, CDC NCM (NO ZLP)
[  106.571428][ T5959] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.590163][ T6185] loop3: detected capacity change from 0 to 131072
[  106.602673][ T6185] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  106.611009][ T6185] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  106.625505][ T6185] F2FS-fs (loop3): invalid crc value
[  106.661246][ T6185] F2FS-fs (loop3): Found nat_bits in checkpoint
[  106.733327][ T6185] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  106.740554][ T6185] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  106.881396][   T28] audit: type=1800 audit(1776138755.995:5): pid=6185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.93" name="file1" dev="loop3" ino=7 res=0 errno=0
[  107.367696][ T6223] Bluetooth: MGMT ver 1.22
[  107.686772][  T788] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  107.878959][  T788] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  107.897354][  T789] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  107.900480][  T788] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  107.935176][  T788] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  107.962150][  T788] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  107.981877][  T788] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.007114][  T788] usb 5-1: config 0 descriptor??
[  108.126249][  T789] usb 2-1: Using ep0 maxpacket: 8
[  108.136456][  T789] usb 2-1: unable to get BOS descriptor or descriptor too short
[  108.161212][  T789] usb 2-1: config 1 interface 0 has no altsetting 0
[  108.184094][  T789] usb 2-1: string descriptor 0 read error: -22
[  108.199436][  T789] usb 2-1: New USB device found, idVendor=05ac, idProduct=025b, bcdDevice= 0.40
[  108.223284][  T789] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.464702][  T788] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[  108.543378][  T788] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  108.697365][  T789] apple 0003:05AC:025B.0002: invalid report_size -1149171161
[  108.723325][  T789] apple 0003:05AC:025B.0002: item 0 4 1 7 parsing failed
[  108.757080][  T789] apple 0003:05AC:025B.0002: parse failed
[  108.762963][  T789] apple: probe of 0003:05AC:025B.0002 failed with error -22
[  108.935733][  T788] usb 2-1: USB disconnect, device number 2
[  109.269902][ T6250] loop2: detected capacity change from 0 to 32768
[  109.377799][ T6250] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  109.465433][ T6250] XFS (loop2): Ending clean mount
[  109.526883][ T6250] XFS (loop2): Quotacheck needed: Please wait.
[  109.665613][ T6250] XFS (loop2): Quotacheck: Done.
[  109.940468][ T5783] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  110.377783][ T6296] loop2: detected capacity change from 0 to 256
[  110.674081][  T788] usb 5-1: USB disconnect, device number 2
[  110.926223][ T6313] loop5: detected capacity change from 0 to 7
[  110.960236][ T6313] Dev loop5: unable to read RDB block 7
[  110.984586][ T6313]  loop5: unable to read partition table
[  111.009074][ T6313] loop5: partition table beyond EOD, truncated
[  111.047078][ T6313] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  111.080731][ T6310] loop2: detected capacity change from 0 to 32768
[  111.207975][ T6310] JBD2: Ignoring recovery information on journal
[  111.285446][ T6310] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  111.390862][ T6310] OCFS2: ERROR (device loop2): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 23 has 4294967295 used bits but only 16777215 total
[  111.412817][ T6310] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  111.422863][ T6310] OCFS2: File system is now read-only.
[  111.428404][ T6310] (syz.2.115,6310,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[  111.436851][ T6310] (syz.2.115,6310,1):__ocfs2_claim_clusters:2365 ERROR: status = -30
[  111.444963][ T6310] (syz.2.115,6310,1):__ocfs2_claim_clusters:2373 ERROR: status = -30
[  111.453241][ T6310] (syz.2.115,6310,1):ocfs2_add_clusters_in_btree:4830 ERROR: status = -30
[  111.461826][ T6310] (syz.2.115,6310,1):ocfs2_write_cluster:1153 ERROR: status = -30
[  111.469749][ T6310] (syz.2.115,6310,1):ocfs2_write_cluster_by_desc:1248 ERROR: status = -30
[  111.479747][ T6310] (syz.2.115,6310,1):ocfs2_write_begin_nolock:1820 ERROR: status = -30
[  111.489673][ T6310] (syz.2.115,6310,1):ocfs2_write_begin:1907 ERROR: status = -30
[  111.903899][ T6334] loop1: detected capacity change from 0 to 128
[  111.912209][ T5783] ocfs2: Unmounting device (7,2) on (node local)
[  111.969608][ T6334] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.016936][ T6339] loop3: detected capacity change from 0 to 64
[  112.048189][ T6334] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  112.277724][ T5778] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.541565][ T6329] loop4: detected capacity change from 0 to 32768
[  112.650575][ T6329] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  112.814314][ T6329] XFS (loop4): Ending clean mount
[  112.830632][ T6329] XFS (loop4): Quotacheck needed: Please wait.
[  112.890670][ T6329] XFS (loop4): Quotacheck: Done.
[  112.996700][ T5959] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.586949][ T6385] netlink: 'syz.1.136': attribute type 2 has an invalid length.
[  113.594690][ T6385] netlink: 16 bytes leftover after parsing attributes in process `syz.1.136'.
[  114.287054][ T5154] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  114.398569][ T6409] loop2: detected capacity change from 0 to 512
[  114.446260][ T6391] loop4: detected capacity change from 0 to 32768
[  114.488090][ T5154] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.504397][ T5154] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  114.518315][ T5154] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  114.532180][ T6414] loop1: detected capacity change from 0 to 128
[  114.536386][ T5154] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.555634][ T5154] usb 4-1: Product: syz
[  114.564700][ T6391] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  114.577305][ T6414] EXT4-fs: Ignoring removed i_version option
[  114.586358][ T5154] usb 4-1: Manufacturer: syz
[  114.591018][ T5154] usb 4-1: SerialNumber: syz
[  114.665900][ T6414] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c018, mo2=0003]
[  114.703562][ T6414] System zones: 1-3, 19-19, 35-36
[  114.710782][ T6391] XFS (loop4): Ending clean mount
[  114.720362][ T6409] EXT4-fs (loop2): Test dummy encryption mode enabled
[  114.749622][ T6414] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  114.771620][ T6409] EXT4-fs error (device loop2): ext4_orphan_get:1404: inode #15: comm syz.2.145: inode has both inline data and extents flags
[  114.791432][ T6414] ext4 filesystem being mounted at /49/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  114.824328][ T6409] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.145: couldn't read orphan inode 15 (err -117)
[  114.883756][ T6409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.902411][ T6399] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  115.059585][ T5783] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.085222][ T5778] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  115.141660][ T5959] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  115.517200][ T6399] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  115.739468][ T5154] cdc_ncm 4-1:1.0: MAC-Address: 42:42:42:42:42:42
[  115.756203][ T5154] cdc_ncm 4-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  115.764038][ T5154] cdc_ncm 4-1:1.0: setting rx_max = 2048
[  115.950495][ T5154] cdc_ncm 4-1:1.0: setting tx_max = 184
[  115.975305][ T5154] cdc_ncm 4-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.3-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  116.004844][ T5154] usb 4-1: USB disconnect, device number 3
[  116.018566][ T5154] cdc_ncm 4-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.3-1, CDC NCM (NO ZLP)
[  116.230919][ T6448] loop4: detected capacity change from 0 to 512
[  116.283351][ T6448] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.437828][ T5959] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.451251][ T6453] loop1: detected capacity change from 0 to 256
[  116.519271][ T6453] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  116.749924][ T6461] xt_CT: You must specify a L4 protocol and not use inversions on it
[  116.759546][   T28] audit: type=1800 audit(1776138765.855:6): pid=6459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.153" name="file1" dev="loop1" ino=1048599 res=0 errno=0
[  116.951206][ T6469] Illegal XDP return value 4294967282 on prog  (id 14) dev syz_tun, expect packet loss!
[  117.122497][ T6474] loop3: detected capacity change from 0 to 256
[  117.328366][ T6477] loop2: detected capacity change from 0 to 2048
[  117.452052][ T6477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.737098][ T6477] loop2: detected capacity change from 2048 to 0
[  117.792072][    C1] I/O error, dev loop2, sector 64 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  117.801718][ T6486] EXT4-fs error (device loop2): __ext4_find_entry:1685: inode #2: comm syz.2.162: reading directory lblock 0
[  117.820515][ T6486] syz.2.162: attempt to access beyond end of device
[  117.820515][ T6486] loop2: rw=145409, sector=0, nr_sectors = 4 limit=0
[  117.843864][ T6486] Buffer I/O error on dev loop2, logical block 0, lost sync page write
[  117.853477][ T6486] EXT4-fs (loop2): I/O error while writing superblock
[  117.905293][ T5783] syz-executor: attempt to access beyond end of device
[  117.905293][ T5783] loop2: rw=12288, sector=64, nr_sectors = 4 limit=0
[  118.020232][ T6471] loop4: detected capacity change from 0 to 40427
[  118.055250][ T6471] F2FS-fs (loop4): build fault injection attr: rate: 684, type: 0x7ffff
[  118.090724][ T6471] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x35f7
[  118.099439][ T5897] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.120302][ T6471] F2FS-fs (loop4): Image doesn't support compression
[  118.150696][ T6471] F2FS-fs (loop4): invalid crc value
[  118.152744][ T5897] syz.2.26: attempt to access beyond end of device
[  118.152744][ T5897] loop2: rw=145409, sector=0, nr_sectors = 4 limit=0
[  118.203638][ T5897] Buffer I/O error on dev loop2, logical block 0, lost sync page write
[  118.205653][ T6471] F2FS-fs (loop4): Found nat_bits in checkpoint
[  118.216596][ T5897] EXT4-fs (loop2): I/O error while writing superblock
[  118.237862][ T6479] kmmpd-loop2: attempt to access beyond end of device
[  118.237862][ T6479] loop2: rw=14337, sector=256, nr_sectors = 4 limit=0
[  118.269707][ T6479] Buffer I/O error on dev loop2, logical block 64, lost sync page write
[  118.324534][ T6482] loop1: detected capacity change from 0 to 32768
[  118.376520][ T6471] F2FS-fs (loop4): Start checkpoint disabled!
[  118.403866][ T6482] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  118.460156][ T6471] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  118.515772][ T6482] XFS (loop1): Ending clean mount
[  118.558836][ T6482] XFS (loop1): Quotacheck needed: Please wait.
[  118.684751][ T6482] XFS (loop1): Quotacheck: Done.
[  118.693551][ T6471] F2FS-fs (loop4): inject no more block in inc_valid_block_count of f2fs_reserve_new_blocks+0x127/0xb50
[  118.754965][ T6471] syz.4.160: attempt to access beyond end of device
[  118.754965][ T6471] loop4: rw=2049, sector=77824, nr_sectors = 624 limit=40427
[  118.802552][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.971378][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.030028][   T12] kworker/u4:1: attempt to access beyond end of device
[  119.030028][   T12] loop4: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  119.049220][   T12] kworker/u4:1: attempt to access beyond end of device
[  119.049220][   T12] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  119.070877][   T12] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  119.082474][   T12] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  119.119175][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.192936][ T5778] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  119.420132][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.616319][ T5834] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  119.844523][ T5834] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.865817][ T5834] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.911210][ T5834] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  119.963146][ T5834] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  119.992912][ T5834] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.034298][ T5782] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  120.128875][ T5834] usb 4-1: config 0 descriptor??
[  120.265421][ T5782] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  120.275130][ T5782] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  120.296184][ T5782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  120.305674][ T5782] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  120.313399][ T5782] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  120.587890][ T5834] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  120.637932][ T5834] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  120.952181][  T788] usb 4-1: USB disconnect, device number 4
[  121.267176][ T6518] chnl_net:caif_netlink_parms(): no params data found
[  121.584724][ T6518] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.601921][ T6518] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.625253][ T6518] bridge_slave_0: entered allmulticast mode
[  121.633534][ T6518] bridge_slave_0: entered promiscuous mode
[  121.693488][   T11] hsr_slave_0: left promiscuous mode
[  121.704260][   T11] hsr_slave_1: left promiscuous mode
[  121.715060][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.725280][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  121.744407][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  121.752422][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  121.769133][ T6564] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  121.778336][ T6564] UDF-fs: Scanning with blocksize 512 failed
[  121.807685][   T11] bridge_slave_1: left allmulticast mode
[  121.812241][ T6564] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  121.816580][   T11] bridge_slave_1: left promiscuous mode
[  121.848727][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.867041][ T6564] UDF-fs: Scanning with blocksize 1024 failed
[  121.877353][   T11] bridge_slave_0: left allmulticast mode
[  121.883868][   T11] bridge_slave_0: left promiscuous mode
[  121.894614][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.945543][ T6564] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  121.954920][ T6564] UDF-fs: Scanning with blocksize 2048 failed
[  121.963491][   T11] veth1_macvtap: left promiscuous mode
[  121.970551][   T11] veth0_macvtap: left promiscuous mode
[  121.980333][ T6564] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  121.988878][ T6564] UDF-fs: Scanning with blocksize 4096 failed
[  121.989893][   T11] veth1_vlan: left promiscuous mode
[  122.010907][   T11] veth0_vlan: left promiscuous mode
[  122.372297][   T51] Bluetooth: hci2: command tx timeout
[  122.586473][  T788] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  122.797866][  T788] usb 5-1: config 0 has no interfaces?
[  122.822383][  T788] usb 5-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  122.834850][  T788] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.869282][  T788] usb 5-1: config 0 descriptor??
[  122.932110][   T51] Bluetooth: hci4: command 0x1003 tx timeout
[  122.946047][ T5782] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  123.102786][ T6571] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  123.167140][   T11] team0 (unregistering): Port device team_slave_1 removed
[  123.247048][   T11] team0 (unregistering): Port device team_slave_0 removed
[  123.374629][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  123.436648][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  123.960834][   T11] bond0 (unregistering): Released all slaves
[  124.075295][ T6518] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.084037][ T6518] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.093448][ T6518] bridge_slave_1: entered allmulticast mode
[  124.101774][ T6518] bridge_slave_1: entered promiscuous mode
[  124.292694][ T6518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.379381][ T6518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.420150][ T6518] team0: Port device team_slave_0 added
[  124.430178][ T6518] team0: Port device team_slave_1 added
[  124.456123][ T5782] Bluetooth: hci2: command tx timeout
[  124.526102][ T6518] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.533197][ T6518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.544854][  T788] usb 5-1: USB disconnect, device number 3
[  124.592858][ T6518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.641436][ T6518] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.650309][ T6518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.680834][ T6518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.840716][ T6518] hsr_slave_0: entered promiscuous mode
[  124.861321][ T6518] hsr_slave_1: entered promiscuous mode
[  124.883409][ T6518] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  124.903784][ T6518] Cannot create hsr debugfs directory
[  125.114672][ T6606] loop1: detected capacity change from 0 to 4096
[  125.314796][ T6611] netlink: 'syz.3.193': attribute type 7 has an invalid length.
[  125.356725][ T6611] netlink: 'syz.3.193': attribute type 7 has an invalid length.
[  125.364828][ T6611] Zero length message leads to an empty skb
[  125.795230][ T6518] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  125.849407][ T6518] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  125.895412][ T6518] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  125.943507][ T6518] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  126.439515][ T6518] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.517663][ T5782] Bluetooth: hci2: command tx timeout
[  126.528295][ T6621] loop4: detected capacity change from 0 to 32768
[  126.535132][ T6518] 8021q: adding VLAN 0 to HW filter on device team0
[  126.549062][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.556318][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.596628][ T6621] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.196 (6621)
[  126.634239][ T6621] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  126.665731][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.672934][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.740793][ T6621] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  126.790567][ T6621] BTRFS info (device loop4): setting nodatasum
[  126.816093][ T6621] BTRFS info (device loop4): force zlib compression, level 3
[  126.823584][ T6621] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  126.854814][ T6621] BTRFS info (device loop4): use lzo compression, level 0
[  126.876053][ T6621] BTRFS info (device loop4): turning on flush-on-commit
[  126.908943][ T6621] BTRFS info (device loop4): enabling auto defrag
[  126.915459][ T6621] BTRFS info (device loop4): max_inline at 4096
[  126.948685][ T6621] BTRFS info (device loop4): using free space tree
[  127.142910][ T6621] BTRFS info (device loop4): enabling ssd optimizations
[  127.552961][ T6518] 8021q: adding VLAN 0 to HW filter on device batadv0
[  127.666119][ T6683] syz.1.206 uses obsolete (PF_INET,SOCK_PACKET)
[  127.937924][ T5959] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  128.573707][ T6518] veth0_vlan: entered promiscuous mode
[  128.597484][ T5782] Bluetooth: hci2: command tx timeout
[  128.658037][ T6518] veth1_vlan: entered promiscuous mode
[  128.774439][ T6518] veth0_macvtap: entered promiscuous mode
[  128.815520][ T6518] veth1_macvtap: entered promiscuous mode
[  128.891891][ T6725] loop3: detected capacity change from 0 to 512
[  128.928570][ T6518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.966511][ T6518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.976931][ T6518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.002416][ T6518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.013947][ T6518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.036824][ T6518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.077590][ T6518] batman_adv: batadv0: Interface activated: batadv_slave_0
[  129.103835][ T6518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.146198][ T6518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.186008][ T6518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.215264][ T6518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.241399][ T6518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.282541][ T6518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.354354][ T6518] batman_adv: batadv0: Interface activated: batadv_slave_1
[  129.387724][ T6518] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.417571][ T6518] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.436236][ T6518] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.455584][ T6518] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.748602][ T4482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.794813][ T4482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.898000][ T4482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.922867][ T4482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.493303][ T6735] loop1: detected capacity change from 0 to 32768
[  130.504497][ T6763] loop3: detected capacity change from 0 to 256
[  130.540644][ T6735] (syz.1.217,6735,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  130.598380][ T6735] (syz.1.217,6735,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  130.809699][ T6735] JBD2: Ignoring recovery information on journal
[  130.972701][ T6735] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  131.390966][ T6781] input: syz1 as /devices/virtual/input/input5
[  131.466040][   T28] audit: type=1800 audit(1776138780.565:7): pid=6735 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.217" name="file1" dev="loop1" ino=16979 res=0 errno=0
[  131.637730][ T6786] loop5: detected capacity change from 0 to 128
[  131.760837][ T5778] ocfs2: Unmounting device (7,1) on (node local)
[  131.778427][   T28] audit: type=1800 audit(1776138780.895:8): pid=6786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.229" name="bus" dev="loop5" ino=1048606 res=0 errno=0
[  131.864861][ T6786] syz.5.229: attempt to access beyond end of device
[  131.864861][ T6786] loop5: rw=0, sector=121, nr_sectors = 75 limit=128
[  132.484985][ T6811] pim6reg1: entered promiscuous mode
[  132.506074][ T6811] pim6reg1: entered allmulticast mode
[  132.923218][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  132.931367][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  133.129309][ T6835] process 'syz.3.242' launched './file1' with NULL argv: empty string added
[  133.315555][ T6838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  133.326956][ T6805] loop5: detected capacity change from 0 to 40427
[  133.351264][ T6838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.364715][ T6805] F2FS-fs (loop5): Invalid SB checksum offset: 0
[  133.380872][ T6805] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  133.393389][ T6838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  133.410490][ T6838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.422486][ T6838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  133.435119][ T6838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.447096][ T6805] F2FS-fs (loop5): invalid crc value
[  133.489828][ T6838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.527089][ T6838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.586013][ T6838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.676096][ T6838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.719845][ T6838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.760915][ T6838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.776995][ T6805] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  133.784096][ T6805] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  134.021429][ T6805] syz.5.235: attempt to access beyond end of device
[  134.021429][ T6805] loop5: rw=2049, sector=53248, nr_sectors = 16 limit=40427
[  134.089431][ T6805] syz.5.235: attempt to access beyond end of device
[  134.089431][ T6805] loop5: rw=2049, sector=53264, nr_sectors = 8 limit=40427
[  134.132562][ T6805] syz.5.235: attempt to access beyond end of device
[  134.132562][ T6805] loop5: rw=2049, sector=53272, nr_sectors = 16 limit=40427
[  134.318695][ T6518] syz-executor: attempt to access beyond end of device
[  134.318695][ T6518] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  134.366246][   T28] audit: type=1326 audit(1776138783.475:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6860 comm="syz.4.246" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1679d9c819 code=0x0
[  134.388024][ T6518] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  134.663696][ T6849] loop1: detected capacity change from 0 to 40427
[  134.732173][ T6849] F2FS-fs (loop1): invalid crc value
[  134.752735][ T6842] loop3: detected capacity change from 0 to 40427
[  134.764016][ T6842] F2FS-fs (loop3): Fix alignment : internally, start(4096) end(16896) block(12288)
[  134.816095][ T6842] F2FS-fs (loop3): invalid crc value
[  134.844334][ T6842] F2FS-fs (loop3): Found nat_bits in checkpoint
[  134.997371][ T6849] F2FS-fs (loop1): Start checkpoint disabled!
[  135.014187][ T6842] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  135.042338][ T6849] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  135.285216][ T6849] F2FS-fs (loop1): Stopped filesystem due to reason: 0
[  135.344618][ T6880] netlink: 25 bytes leftover after parsing attributes in process `syz.4.248'.
[  135.911202][ T6897] loop1: detected capacity change from 0 to 64
[  136.032205][ T5778] Trying to free block not in datazone
[  136.087315][    T8] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  136.302556][    T8] usb 4-1: unable to get BOS descriptor or descriptor too short
[  136.318221][    T8] usb 4-1: too many endpoints for config 1 interface 0 altsetting 13: 255, using maximum allowed: 30
[  136.339452][    T8] usb 4-1: config 1 interface 0 altsetting 13 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  136.383474][    T8] usb 4-1: config 1 interface 0 has no altsetting 0
[  136.399675][    T8] usb 4-1: string descriptor 0 read error: -22
[  136.408995][    T8] usb 4-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.40
[  136.418466][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.804817][ T6300] IPVS: starting estimator thread 0...
[  136.926204][ T6923] IPVS: using max 22 ests per chain, 52800 per kthread
[  137.018775][    T8] input: HID 0458:5012 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/0003:0458:5012.0004/input/input6
[  137.191907][    T8] input: HID 0458:5012 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/0003:0458:5012.0004/input/input7
[  137.274878][ T6933] netlink: 24 bytes leftover after parsing attributes in process `syz.5.260'.
[  137.313487][    T8] kye 0003:0458:5012.0004: input,hiddev0,hidraw0: USB HID vff.7f Device [HID 0458:5012] on usb-dummy_hcd.3-1/input0
[  137.446682][    T8] usb 4-1: USB disconnect, device number 5
[  137.491798][ T6911] loop1: detected capacity change from 0 to 32768
[  137.554676][ T6936] fido_id[6936]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  137.613230][ T6911] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  137.867479][ T6911] XFS (loop1): Ending clean mount
[  138.153710][ T5778] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.454036][ T6962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.506088][ T6962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.532612][ T6962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.565602][ T6962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.588084][ T6962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.610477][ T6962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.643482][ T6962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.674620][ T6962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.715006][ T6962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.750597][ T6962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.760911][ T6962] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.776146][ T6962] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.897547][ T5782] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  138.910162][ T5782] CPU: 1 PID: 5782 Comm: kworker/u5:4 Not tainted syzkaller #0
[  138.917776][ T5782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  138.927869][ T5782] Workqueue: hci1 hci_rx_work
[  138.932630][ T5782] Call Trace:
[  138.935961][ T5782]  <TASK>
[  138.938924][ T5782]  dump_stack_lvl+0x18c/0x250
[  138.943739][ T5782]  ? show_regs_print_info+0x20/0x20
[  138.949065][ T5782]  ? load_image+0x420/0x420
[  138.953605][ T5782]  sysfs_create_dir_ns+0x26e/0x2a0
[  138.958760][ T5782]  ? sysfs_warn_dup+0xa0/0xa0
[  138.963455][ T5782]  ? do_raw_spin_unlock+0x121/0x230
[  138.968682][ T5782]  kobject_add_internal+0x61c/0xcc0
[  138.973920][ T5782]  kobject_add+0x164/0x240
[  138.978402][ T5782]  ? __rwlock_init+0x150/0x150
[  138.983197][ T5782]  ? kobject_init+0x1e0/0x1e0
[  138.987896][ T5782]  ? _raw_spin_unlock+0x28/0x40
[  138.992857][ T5782]  ? get_device_parent+0x366/0x390
[  138.997991][ T5782]  device_add+0x408/0xc20
[  139.002352][ T5782]  hci_conn_add_sysfs+0xd5/0x1e0
[  139.007326][ T5782]  le_conn_complete_evt+0xf5d/0x1540
[  139.012639][ T5782]  ? hci_event_packet+0x4cb/0x1270
[  139.017797][ T5782]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  139.024063][ T5782]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  139.029720][ T5782]  ? skb_pull_data+0xfb/0x200
[  139.034425][ T5782]  hci_le_conn_complete_evt+0x187/0x440
[  139.040000][ T5782]  ? hci_remote_host_features_evt+0x150/0x150
[  139.046129][ T5782]  hci_event_packet+0x7ba/0x1270
[  139.051109][ T5782]  ? bis_list+0x290/0x290
[  139.055477][ T5782]  ? lockdep_hardirqs_on+0x98/0x150
[  139.060790][ T5782]  ? hci_send_to_monitor+0xd7/0x4f0
[  139.066034][ T5782]  hci_rx_work+0x43a/0xd60
[  139.070503][ T5782]  ? process_scheduled_works+0x96f/0x15d0
[  139.076254][ T5782]  process_scheduled_works+0xa5d/0x15d0
[  139.081866][ T5782]  ? worker_attach_to_pool+0x380/0x380
[  139.087376][ T5782]  ? assign_work+0x3d2/0x5d0
[  139.092036][ T5782]  worker_thread+0xa55/0xfc0
[  139.096677][ T5782]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  139.102599][ T5782]  ? _raw_spin_unlock+0x40/0x40
[  139.107499][ T5782]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  139.113443][ T5782]  kthread+0x2fa/0x390
[  139.117580][ T5782]  ? pr_cont_work+0x560/0x560
[  139.122283][ T5782]  ? kthread_blkcg+0xd0/0xd0
[  139.126899][ T5782]  ret_from_fork+0x48/0x80
[  139.131346][ T5782]  ? kthread_blkcg+0xd0/0xd0
[  139.135963][ T5782]  ret_from_fork_asm+0x11/0x20
[  139.140773][ T5782]  </TASK>
[  139.157033][ T5782] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  139.171701][ T5782] Bluetooth: hci1: failed to register connection device
[  139.610504][ T6998] loop5: detected capacity change from 0 to 512
[  140.536077][  T788] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  140.738447][  T788] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  140.794058][  T788] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  140.838767][  T788] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  140.864591][  T788] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.895642][  T788] usb 4-1: Product: syz
[  140.908330][  T788] usb 4-1: Manufacturer: syz
[  140.912980][  T788] usb 4-1: SerialNumber: syz
[  141.243628][ T1080] Bluetooth: (null): Invalid header checksum
[  141.286819][ T1080] Bluetooth: (null): Invalid header checksum
[  141.370403][   T11] Bluetooth: (null): Invalid header checksum
[  141.469200][   T49] Bluetooth: (null): Invalid header checksum
[  141.591045][   T11] Bluetooth: (null): Invalid header checksum
[  141.700169][   T12] Bluetooth: (null): Invalid header checksum
[  141.822953][   T12] Bluetooth: (null): Too short H5 packet
[  141.833614][   T28] audit: type=1326 audit(1776138790.945:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7047 comm="syz.5.286" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f21c439c819 code=0x0
[  141.865905][   T12] Bluetooth: (null): Invalid header checksum
[  142.191530][  T788] cdc_ncm 4-1:1.0: bind() failure
[  142.210970][ T7040] loop1: detected capacity change from 0 to 32768
[  142.223458][  T788] usbtest: probe of 4-1:1.1 failed with error -71
[  142.267274][  T788] usb 4-1: USB disconnect, device number 6
[  142.286741][ T7040] (syz.1.285,7040,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  142.338682][ T7040] (syz.1.285,7040,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  142.379377][ T7040] JBD2: Ignoring recovery information on journal
[  142.431593][ T7040] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  142.770688][ T7040] (syz.1.285,7040,0):ocfs2_rename:1690 ERROR: status = -39
[  142.854390][ T7040] syz.1.285 (7040) used greatest stack depth: 18768 bytes left
[  142.941067][ T7077] loop5: detected capacity change from 0 to 16
[  143.016629][ T7077] erofs: (device loop5): mounted with root inode @ nid 36.
[  143.052289][ T5778] ocfs2: Unmounting device (7,1) on (node local)
[  143.089666][ T7077] overlayfs: failed to clone upperpath
[  143.838973][ T7100] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  143.852281][ T7100] UDF-fs: Scanning with blocksize 512 failed
[  143.869061][ T7100] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  143.879737][ T7100] UDF-fs: Scanning with blocksize 1024 failed
[  143.888964][ T7100] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  143.905298][ T7100] UDF-fs: Scanning with blocksize 2048 failed
[  143.924090][ T7100] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  143.931983][ T7100] UDF-fs: Scanning with blocksize 4096 failed
[  144.420452][ T7112] pim6reg1: entered promiscuous mode
[  144.432696][ T7112] pim6reg1: entered allmulticast mode
[  144.803610][ T7117] "syz.1.300" (7117) uses obsolete ecb(arc4) skcipher
[  144.891746][ T7118] syzkaller1: entered promiscuous mode
[  144.919182][ T7118] syzkaller1: entered allmulticast mode
[  146.032481][ T7145] loop3: detected capacity change from 0 to 64
[  146.343434][ T5774] hfs: node 4:3 still has 1 user(s)!
[  146.736185][   T23] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  146.916416][   T23] usb 6-1: Using ep0 maxpacket: 32
[  146.924945][   T23] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  146.933222][   T23] usb 6-1: config 0 has no interface number 0
[  146.941469][   T23] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  146.950720][   T23] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.959667][   T23] usb 6-1: Product: syz
[  146.963867][   T23] usb 6-1: Manufacturer: syz
[  146.968542][   T23] usb 6-1: SerialNumber: syz
[  146.974978][   T23] usb 6-1: config 0 descriptor??
[  146.983037][   T23] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  147.203119][   T23] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  147.217646][   T23] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  147.421406][    C1] quatech-serial ttyUSB0: qt2_process_read_urb - unsupported command 6
[  147.603775][ T7160] loop4: detected capacity change from 0 to 512
[  147.617634][ T7160] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  147.646359][    C1] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  147.656824][ T5779] usb 6-1: USB disconnect, device number 2
[  147.673823][ T7160] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  147.699065][ T7160] System zones: 1-12
[  147.703423][ T7160] EXT4-fs (loop4): orphan cleanup on readonly fs
[  147.726215][ T5779] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  147.728879][ T7160] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.319: bg 0: block 361: padding at end of block bitmap is not set
[  147.761755][ T7164] pim6reg1: entered promiscuous mode
[  147.767268][ T7160] EXT4-fs (loop4): Remounting filesystem read-only
[  147.774105][ T7160] EXT4-fs (loop4): 1 truncate cleaned up
[  147.780727][ T7164] pim6reg1: entered allmulticast mode
[  147.791831][ T7160] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  147.817330][ T5779] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  147.850857][ T5779] quatech2 6-1:0.51: device disconnected
[  148.032011][ T5959] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  148.234356][ T7176] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2182154216 (4364308432 ns) > initial count (507749598 ns). Using initial count to start timer.
[  148.337641][ T1080] Bluetooth: (null): Invalid header checksum
[  148.343790][ T1080] Bluetooth: (null): Invalid header checksum
[  148.458250][ T1080] Bluetooth: (null): Invalid header checksum
[  148.567407][ T4482] Bluetooth: (null): Invalid header checksum
[  148.677917][ T1080] Bluetooth: (null): Invalid header checksum
[  148.802017][ T1080] Bluetooth: (null): Too short H5 packet
[  148.816149][ T1080] Bluetooth: (null): Invalid header checksum
[  148.914597][   T49] Bluetooth: (null): Invalid header checksum
[  149.527844][ T7189] loop1: detected capacity change from 0 to 32768
[  149.541591][ T7189] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.316 (7189)
[  149.578770][ T7189] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  149.614686][ T7189] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  149.656133][ T7189] BTRFS info (device loop1): setting nodatasum
[  149.662402][ T7189] BTRFS info (device loop1): force zlib compression, level 3
[  149.689127][    T8] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  149.702472][ T7189] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[  149.732916][ T7204] "syz.3.325" (7204) uses obsolete ecb(arc4) skcipher
[  149.745737][ T7189] BTRFS info (device loop1): use lzo compression, level 0
[  149.763323][ T7189] BTRFS info (device loop1): turning on flush-on-commit
[  149.780853][ T7189] BTRFS info (device loop1): enabling auto defrag
[  149.797233][ T7189] BTRFS info (device loop1): max_inline at 4096
[  149.813889][ T7189] BTRFS info (device loop1): using free space tree
[  149.919119][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.940667][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.969245][ T7189] BTRFS info (device loop1): enabling ssd optimizations
[  149.995108][    T8] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  150.061352][    T8] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  150.106706][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.151355][    T8] usb 6-1: config 0 descriptor??
[  150.505871][ T5778] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  150.638425][    T8] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  150.686517][    T8] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  151.025483][  T788] usb 6-1: USB disconnect, device number 3
[  151.038699][ T7202] plantronics 0003:047F:FFFF.0005: usb_submit_urb(ctrl) failed: -19
[  151.163484][ T7222] loop3: detected capacity change from 0 to 32768
[  151.267921][ T7222] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.375832][ T7222] XFS (loop3): Ending clean mount
[  151.616313][ T5774] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.983711][ T7235] loop4: detected capacity change from 0 to 32768
[  152.081838][ T7235] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  152.106245][ T7258] netlink: 8 bytes leftover after parsing attributes in process `syz.5.333'.
[  152.198976][ T7235] XFS (loop4): Ending clean mount
[  152.229891][ T7235] XFS (loop4): Quotacheck needed: Please wait.
[  152.299680][ T7235] XFS (loop4): Quotacheck: Done.
[  152.583524][ T5959] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  153.338815][ T7286] netlink: 16 bytes leftover after parsing attributes in process `syz.4.339'.
[  153.360183][ T7288] loop3: detected capacity change from 0 to 128
[  153.461026][ T7288] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  153.513386][ T7288] ext4 filesystem being mounted at /96/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  153.631510][ T7286] ipvlan0: entered promiscuous mode
[  153.654757][ T7286] ipvlan0: left promiscuous mode
[  153.892561][ T5774] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  154.175305][ T7284] loop5: detected capacity change from 0 to 32768
[  154.339483][ T7284] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.465496][ T7284] XFS (loop5): Ending clean mount
[  154.489016][ T7284] XFS (loop5): Quotacheck needed: Please wait.
[  154.588131][ T7284] XFS (loop5): Quotacheck: Done.
[  155.075927][    C1] sched: RT throttling activated
[  155.104786][ T6518] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  155.218070][ T7296] loop1: detected capacity change from 0 to 131072
[  155.295712][ T7296] F2FS-fs (loop1): Found nat_bits in checkpoint
[  155.364260][ T7296] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  155.493591][ T7301] loop3: detected capacity change from 0 to 32768
[  155.556162][ T7301] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.345 (7301)
[  155.648043][ T7301] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  155.690431][ T7301] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  155.738623][ T7301] BTRFS info (device loop3): setting nodatasum
[  155.763138][ T7301] BTRFS info (device loop3): force zlib compression, level 3
[  155.783339][ T7301] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8)
[  155.806094][ T7301] BTRFS info (device loop3): use lzo compression, level 0
[  155.813322][ T7301] BTRFS info (device loop3): turning on flush-on-commit
[  155.862238][ T7301] BTRFS info (device loop3): enabling auto defrag
[  155.882634][ T7301] BTRFS info (device loop3): max_inline at 4096
[  155.895271][ T7301] BTRFS info (device loop3): using free space tree
[  156.103694][ T7301] BTRFS info (device loop3): enabling ssd optimizations
[  156.168094][ T7344] loop5: detected capacity change from 0 to 2048
[  156.250207][ T7344] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.401455][ T7344] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  156.557881][ T6518] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.726526][ T5774] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  157.082494][ T7362] netlink: 16 bytes leftover after parsing attributes in process `syz.3.352'.
[  157.161128][ T7362] ipvlan0: entered promiscuous mode
[  157.194613][ T7362] ipvlan0: left promiscuous mode
[  157.930885][ T7377] loop3: detected capacity change from 0 to 64
[  158.794232][ T7405] loop4: detected capacity change from 0 to 736
[  160.013930][ T7419] loop5: detected capacity change from 0 to 32768
[  160.041593][ T7419] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.370 (7419)
[  160.101770][ T7419] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  160.130638][ T7419] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  160.153921][ T7419] BTRFS info (device loop5): setting nodatasum
[  160.169451][ T7419] BTRFS info (device loop5): force zlib compression, level 3
[  160.193813][ T7419] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_LZO (0x8)
[  160.224069][ T7419] BTRFS info (device loop5): use lzo compression, level 0
[  160.244071][ T7419] BTRFS info (device loop5): turning on flush-on-commit
[  160.265817][ T7419] BTRFS info (device loop5): enabling auto defrag
[  160.274006][ T7416] loop1: detected capacity change from 0 to 40427
[  160.290069][ T7419] BTRFS info (device loop5): max_inline at 4096
[  160.314734][ T7419] BTRFS info (device loop5): using free space tree
[  160.345539][ T7416] F2FS-fs (loop1): Found nat_bits in checkpoint
[  160.428312][ T7416] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  160.461133][ T7419] BTRFS info (device loop5): enabling ssd optimizations
[  160.519885][ T7416] syz.1.369: attempt to access beyond end of device
[  160.519885][ T7416] loop1: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  160.748180][ T5778] syz-executor: attempt to access beyond end of device
[  160.748180][ T5778] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  160.822029][ T5778] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  161.027140][ T6518] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  161.306574][ T7444] loop3: detected capacity change from 0 to 32768
[  161.420179][ T7444] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.377 (7444)
[  161.539736][ T7444] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  161.579238][ T7444] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  161.604656][ T7444] BTRFS info (device loop3): using free space tree
[  161.874641][ T7444] BTRFS info (device loop3): enabling ssd optimizations
[  161.936230][ T7444] BTRFS info (device loop3): auto enabling async discard
[  162.216068][ T5779] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  162.296128][  T788] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  162.439969][ T5779] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  162.460756][ T5774] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  162.476938][ T5779] usb 2-1: config 0 interface 0 has no altsetting 0
[  162.508821][  T788] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  162.519238][ T5779] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  162.531194][  T788] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  162.555982][ T5779] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  162.561800][  T788] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  162.584710][ T5779] usb 2-1: Product: syz
[  162.589206][  T788] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  162.598506][  T788] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.619487][  T788] usb 6-1: config 0 descriptor??
[  162.620186][ T5779] usb 2-1: Manufacturer: syz
[  162.677670][ T5779] usb 2-1: SerialNumber: syz
[  162.698130][ T5779] usb 2-1: config 0 descriptor??
[  162.744237][ T5779] usb 2-1: selecting invalid altsetting 0
[  162.991232][   T28] audit: type=1326 audit(1776138812.095:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.3.385" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9473d9c819 code=0x0
[  163.019389][  T789] usb 2-1: USB disconnect, device number 3
[  163.083326][  T788] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  163.173884][  T788] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  163.955242][ T7526] loop4: detected capacity change from 0 to 32768
[  165.260730][ T7591] loop4: detected capacity change from 0 to 128
[  165.320651][  T788] usb 6-1: USB disconnect, device number 4
[  165.329295][ T7591] syz.4.390: attempt to access beyond end of device
[  165.329295][ T7591] loop4: rw=2049, sector=138, nr_sectors = 112 limit=128
[  165.755570][ T7602] loop4: detected capacity change from 0 to 128
[  165.851706][ T7602] syz.4.392: attempt to access beyond end of device
[  165.851706][ T7602] loop4: rw=2049, sector=145, nr_sectors = 5 limit=128
[  165.878072][ T7602] syz.4.392: attempt to access beyond end of device
[  165.878072][ T7602] loop4: rw=34817, sector=102, nr_sectors = 27 limit=128
[  165.897974][ T7602] syz.4.392: attempt to access beyond end of device
[  165.897974][ T7602] loop4: rw=34817, sector=145, nr_sectors = 5 limit=128
[  166.050765][ T7611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.394'.
[  166.081499][ T7611] veth0_vlan: left promiscuous mode
[  166.279903][ T7617] loop5: detected capacity change from 0 to 1024
[  166.600697][ T7617] hfsplus: b-tree write err: -5, ino 2
[  166.678233][ T4464] hfsplus: b-tree write err: -5, ino 25
[  166.712347][ T4464] hfsplus: b-tree write err: -5, ino 4
[  166.739672][ T4464] hfsplus: b-tree write err: -5, ino 2
[  166.745449][ T4464] hfsplus: b-tree write err: -5, ino 27
[  166.769707][ T7627] input: syz0 as /devices/virtual/input/input8
[  166.784196][ T7629] veth1_to_bridge: entered allmulticast mode
[  166.794325][ T7629] veth1_to_bridge: left allmulticast mode
[  167.486190][ T7645] loop1: detected capacity change from 0 to 256
[  167.504419][ T7645] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f1c, chksum : 0x850fc7e5, utbl_chksum : 0xe619d30d)
[  167.544521][ T7645] exFAT-fs (loop1): error, exfat_zeroed_cluster: out of range(sect:224 len:8)
[  167.554226][ T7645] exFAT-fs (loop1): Filesystem has been set read-only
[  168.064216][ T7655] loop5: detected capacity change from 0 to 2048
[  168.138313][ T7655] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  168.156525][ T5942] udevd[5942]: incorrect nilfs2 checksum on /dev/loop5
[  168.211385][ T7663] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  168.318903][ T7655] NILFS (loop5): DAT doesn't have a block to manage vblocknr = 262144
[  168.327568][ T7655] NILFS error (device loop5): nilfs_bmap_truncate: broken bmap (inode number=15)
[  168.348510][ T7655] Remounting filesystem read-only
[  168.353669][ T7655] NILFS (loop5): error -5 truncating bmap (ino=15)
[  168.409478][ T6518] NILFS (loop5): discard dirty page: offset=0, ino=6
[  168.426123][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.456013][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.475062][ T6518] NILFS (loop5): discard dirty block: blocknr=37, size=1024
[  168.484706][ T6518] NILFS (loop5): discard dirty block: blocknr=38, size=1024
[  168.498615][ T6518] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer
[  168.509750][ T6518] NILFS (loop5): discard dirty page: offset=0, ino=15
[  168.516869][ T6518] NILFS (loop5): discard dirty block: blocknr=22, size=1024
[  168.525114][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.540045][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.550167][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.562002][ T6518] NILFS (loop5): discard dirty page: offset=0, ino=3
[  168.569567][ T6518] NILFS (loop5): discard dirty block: blocknr=42, size=1024
[  168.578235][ T6518] NILFS (loop5): discard dirty block: blocknr=43, size=1024
[  168.585712][ T6518] NILFS (loop5): discard dirty block: blocknr=44, size=1024
[  168.593552][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.604185][ T6518] NILFS (loop5): discard dirty page: offset=229376, ino=3
[  168.613076][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.622798][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.632004][ T6518] NILFS (loop5): discard dirty block: blocknr=50, size=1024
[  168.642302][ T6518] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024
[  168.753285][ T7669] loop5: detected capacity change from 0 to 128
[  168.999266][ T7662] loop3: detected capacity change from 0 to 32768
[  169.049164][ T7676] loop5: detected capacity change from 0 to 128
[  169.076932][ T7662] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  169.137657][ T7676] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  169.209873][ T7662] XFS (loop3): Ending clean mount
[  169.248697][ T7676] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.271667][ T7662] XFS (loop3): Quotacheck needed: Please wait.
[  169.274372][ T7676] ext2 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.431302][ T7662] XFS (loop3): Quotacheck: Done.
[  169.618474][ T6518] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.722763][ T7692] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  169.759370][ T5774] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  171.273537][ T7716] loop5: detected capacity change from 0 to 512
[  171.366696][ T7716] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  171.385843][ T7716] EXT4-fs error (device loop5): ext4_iget_extra_inode:4739: inode #15: comm syz.5.437: corrupted in-inode xattr: e_value size too large
[  171.400911][ T7716] EXT4-fs error (device loop5): ext4_orphan_get:1409: comm syz.5.437: couldn't read orphan inode 15 (err -117)
[  171.415663][ T7716] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.505447][ T7723] capability: warning: `syz.3.427' uses deprecated v2 capabilities in a way that may be insecure
[  171.521491][ T6518] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.916354][ T7758] netlink: 'syz.1.451': attribute type 25 has an invalid length.
[  172.943002][ T7758] netlink: 4 bytes leftover after parsing attributes in process `syz.1.451'.
[  172.964867][ T7758] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  172.975198][ T7758] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  172.984187][ T7758] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  172.992989][ T7758] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  173.005259][ T7758] netlink: 'syz.1.451': attribute type 25 has an invalid length.
[  173.023405][ T7758] netlink: 4 bytes leftover after parsing attributes in process `syz.1.451'.
[  173.141898][ T7760] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  173.143358][ T7762] loop3: detected capacity change from 0 to 128
[  173.164809][ T7762] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  173.210005][ T7762] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  173.224435][ T7762] ext2 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.409230][ T5774] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  173.750765][ T7771] loop3: detected capacity change from 0 to 32768
[  173.763964][ T7771] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.456 (7771)
[  173.787531][ T7771] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  173.797943][ T7771] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  173.806755][ T7771] BTRFS info (device loop3): force clearing of disk cache
[  173.814018][ T7771] BTRFS info (device loop3): enabling auto defrag
[  173.820657][ T7771] BTRFS info (device loop3): max_inline at 0
[  173.826841][ T7771] BTRFS info (device loop3): enabling ssd optimizations
[  173.833811][ T7771] BTRFS info (device loop3): using spread ssd allocation scheme
[  173.841606][ T7771] BTRFS info (device loop3): using free space tree
[  173.903278][ T7771] BTRFS info (device loop3): rebuilding free space tree
[  174.040254][ T5774] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  174.421898][ T7773] loop4: detected capacity change from 0 to 32768
[  174.587485][ T7773] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  174.757400][ T7773] XFS (loop4): Ending clean mount
[  174.833072][ T7807] sit1: entered allmulticast mode
[  175.055351][ T5959] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  175.727635][ T7746] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  176.436182][ T5834] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  177.588071][ T7825] loop3: detected capacity change from 0 to 131072
[  177.598028][ T7825] F2FS-fs (loop3): Segment count (31) mismatch with total segments from devices (0)
[  177.607538][ T7825] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  177.623436][ T7825] F2FS-fs (loop3): invalid crc value
[  177.646013][ T5834] usb 6-1: Using ep0 maxpacket: 32
[  177.659396][ T5834] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  177.667817][ T7825] F2FS-fs (loop3): Found nat_bits in checkpoint
[  177.704010][ T5834] usb 6-1: config 0 has no interface number 0
[  177.711475][ T5834] usb 6-1: config 0 interface 12 has no altsetting 0
[  177.737540][ T5834] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  177.749725][ T7825] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  177.757248][ T7825] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  177.768975][ T5834] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.786033][ T5834] usb 6-1: Product: syz
[  177.790251][ T5834] usb 6-1: Manufacturer: syz
[  177.794887][ T5834] usb 6-1: SerialNumber: syz
[  177.820393][ T5834] usb 6-1: config 0 descriptor??
[  177.886109][ T7825] F2FS-fs (loop3): f2fs_fill_dentries: corrupted namelen=24152, run fsck to fix.
[  177.909933][ T7825] F2FS-fs (loop3): checksum invalid, nid = 7, ino_of_node = 7, 32dd6215 vs. 1de10dc4
[  179.227182][ T7858] bridge_slave_0: left allmulticast mode
[  179.232939][ T7858] bridge_slave_0: left promiscuous mode
[  179.249843][ T5834] f81534 6-1:0.12: f81534_set_register: reg: 1002 data: 2f failed: -71
[  179.267063][ T5834] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  179.276634][ T7858] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.284052][ T5834] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  179.292743][ T5834] f81534: probe of 6-1:0.12 failed with error -71
[  179.305368][ T5834] usb 6-1: USB disconnect, device number 5
[  179.365098][ T7858] bridge_slave_1: left allmulticast mode
[  179.389492][ T7858] bridge_slave_1: left promiscuous mode
[  179.395335][ T7858] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.415023][ T7858] bond0: (slave bond_slave_0): Releasing backup interface
[  179.442609][ T7858] bond0: (slave bond_slave_1): Releasing backup interface
[  179.522410][ T7858] team0: Port device team_slave_0 removed
[  179.546223][ T7858] team0: Port device team_slave_1 removed
[  179.562806][ T7858] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.581800][ T7858] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.600786][ T7858] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  179.610731][ T7858] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.630764][ T7861] netlink: 4 bytes leftover after parsing attributes in process `syz.1.482'.
[  179.958201][ T1080] Bluetooth: hci4: Frame reassembly failed (-84)
[  179.962781][ T7870] loop3: detected capacity change from 0 to 128
[  179.996788][ T7870] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  180.011032][ T7870] hpfs: filesystem error: improperly stopped
[  180.017423][ T7870] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  180.041868][ T7870] hpfs: You really don't want any checks? You are crazy...
[  180.060522][ T7870] hpfs: Code page index out of array
[  180.065853][ T7870] hpfs: code page support is disabled
[  180.098072][ T7870] hpfs: hpfs_map_4sectors(): unaligned read
[  180.129380][ T7870] hpfs: hpfs_map_4sectors(): unaligned read
[  180.135343][ T7870] hpfs: filesystem error: unable to find root dir
[  180.241436][ T7878] batman_adv: batadv0: Adding interface: macvlan2
[  180.266027][ T7878] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.326054][ T7878] batman_adv: batadv0: Not using interface macvlan2 (retrying later): interface not active
[  180.904484][ T7899] netlink: 12 bytes leftover after parsing attributes in process `syz.1.497'.
[  181.602846][ T7924] loop3: detected capacity change from 0 to 128
[  181.618554][ T7924] FAT-fs (loop3): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1)
[  181.716262][  T788] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  181.928294][  T788] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  181.939113][  T788] usb 5-1: config 220 has 1 interface, different from the descriptor's value: 3
[  181.948627][  T788] usb 5-1: config 220 interface 0 has no altsetting 0
[  181.958857][  T788] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  181.969378][   T51] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  181.978149][  T788] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.986245][  T788] usb 5-1: Product: syz
[  181.990671][  T788] usb 5-1: Manufacturer: syz
[  181.995317][  T788] usb 5-1: SerialNumber: syz
[  182.229606][ T7919] kvm: Disabled LAPIC found during irq injection
[  182.275763][  T788] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  182.292713][  T788] usb 5-1: No valid video chain found.
[  182.301590][ T4482] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.325526][  T788] usb 5-1: USB disconnect, device number 4
[  182.421650][ T4482] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.558585][ T4482] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.667700][ T4482] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.328491][ T5782] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  183.349977][ T5782] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  183.359003][ T5782] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  183.368262][ T5782] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  183.377027][ T5782] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  183.387366][ T5782] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  183.645331][   T28] audit: type=1326 audit(1776138832.755:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7945 comm="syz.5.516" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f21c439c819 code=0x0
[  184.044487][ T7942] loop4: detected capacity change from 0 to 40427
[  184.063192][ T7942] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x7ffff
[  184.107710][ T7942] F2FS-fs (loop4): Image doesn't support compression
[  184.125491][ T7942] F2FS-fs (loop4): Image doesn't support compression
[  184.145827][ T7942] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x4
[  184.168860][ T7942] F2FS-fs (loop4): invalid crc value
[  184.193203][ T7942] F2FS-fs (loop4): Found nat_bits in checkpoint
[  184.431484][ T7942] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  184.629588][   T28] audit: type=1800 audit(1776138833.735:13): pid=7942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.515" name="bus" dev="loop4" ino=14 res=0 errno=0
[  184.758355][ T5959] syz-executor: attempt to access beyond end of device
[  184.758355][ T5959] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  184.819631][ T5959] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  184.849151][ T5959] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  185.476605][ T5782] Bluetooth: hci0: command tx timeout
[  185.989294][ T7943] chnl_net:caif_netlink_parms(): no params data found
[  186.276429][    T8] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  186.477836][ T7943] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.485189][ T7943] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.503920][    T8] usb 5-1: Using ep0 maxpacket: 16
[  186.509787][ T7943] bridge_slave_0: entered allmulticast mode
[  186.518768][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  186.531678][ T7943] bridge_slave_0: entered promiscuous mode
[  186.541181][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.557449][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  186.572372][    T8] usb 5-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  186.581818][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.599068][    T8] usb 5-1: config 0 descriptor??
[  186.630502][ T7943] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.638392][ T7943] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.653488][ T7943] bridge_slave_1: entered allmulticast mode
[  186.687450][ T7943] bridge_slave_1: entered promiscuous mode
[  186.768636][ T4482] hsr_slave_0: left promiscuous mode
[  186.781526][ T4482] hsr_slave_1: left promiscuous mode
[  186.789187][ T4482] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.801688][ T4482] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.827320][ T4482] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.847442][ T4482] batman_adv: batadv0: Removing interface: batadv_slave_1
[  186.873428][ T4482] bridge_slave_1: left allmulticast mode
[  186.885997][ T4482] bridge_slave_1: left promiscuous mode
[  186.901132][ T4482] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.933185][ T4482] bridge_slave_0: left allmulticast mode
[  186.952173][ T4482] bridge_slave_0: left promiscuous mode
[  186.971443][ T4482] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.049249][    T8] input: HID 05ac:8241 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:05AC:8241.0007/input/input9
[  187.132008][ T4482] veth1_macvtap: left promiscuous mode
[  187.141576][ T4482] veth0_macvtap: left promiscuous mode
[  187.176154][ T4482] veth1_vlan: left promiscuous mode
[  187.186697][    T8] appleir 0003:05AC:8241.0007: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.4-1/input0
[  187.271192][ T5834] usb 5-1: USB disconnect, device number 5
[  187.481850][ T8015] fido_id[8015]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  187.557764][ T5782] Bluetooth: hci0: command tx timeout
[  187.795192][ T8007] loop5: detected capacity change from 0 to 32768
[  187.810544][ T8007] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 scanned by syz.5.528 (8007)
[  187.854799][ T8007] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  187.877373][ T8007] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[  187.921704][ T8007] BTRFS info (device loop5): enabling auto defrag
[  187.950138][ T8007] BTRFS info (device loop5): use no compression
[  187.980164][ T8007] BTRFS info (device loop5): force clearing of disk cache
[  187.996504][ T8007] BTRFS info (device loop5): max_inline at 4096
[  188.006034][ T8007] BTRFS info (device loop5): disabling free space tree
[  188.220069][ T8007] BTRFS info (device loop5): enabling ssd optimizations
[  188.227255][ T8007] BTRFS info (device loop5): auto enabling async discard
[  188.248014][ T8007] BTRFS info (device loop5): rebuilding free space tree
[  188.300615][ T8007] BTRFS info (device loop5): disabling free space tree
[  188.316480][ T8007] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  188.331758][ T8007] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  188.471838][   T28] audit: type=1800 audit(1776138837.585:14): pid=8007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.528" name="bus" dev="loop5" ino=263 res=0 errno=0
[  188.504422][ T8007] overlayfs: failed to clone lowerpath
[  188.672502][ T6518] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  189.147557][ T4482] team0 (unregistering): Port device team_slave_1 removed
[  189.221838][ T8051] loop5: detected capacity change from 0 to 1024
[  189.231203][ T8051] EXT4-fs: Ignoring removed orlov option
[  189.261053][ T8051] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002]
[  189.272488][ T4482] team0 (unregistering): Port device team_slave_0 removed
[  189.286494][ T8051] System zones: 0-1, 3-12
[  189.317772][ T8051] EXT4-fs (loop5): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.358754][ T8051] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2853: Unable to expand inode 12. Delete some EAs or run e2fsck.
[  189.432699][ T4482] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  189.445255][ T6518] EXT4-fs (loop5): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  189.588882][ T4482] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  189.636063][ T5782] Bluetooth: hci0: command tx timeout
[  190.202915][ T4482] bond0 (unregistering): Released all slaves
[  190.540621][ T7943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.601497][ T7943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.724740][ T7943] team0: Port device team_slave_0 added
[  190.782837][ T7943] team0: Port device team_slave_1 added
[  190.937853][ T7943] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.945353][ T7943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.004979][ T7943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.036357][ T7943] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.043343][ T7943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.084722][ T7943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.282226][ T7943] hsr_slave_0: entered promiscuous mode
[  191.344520][ T7943] hsr_slave_1: entered promiscuous mode
[  191.355582][ T8092] overlayfs: failed to clone upperpath
[  191.369729][ T7943] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  191.380941][ T7943] Cannot create hsr debugfs directory
[  191.582227][ T8098] netlink: 'syz.1.550': attribute type 1 has an invalid length.
[  191.595877][ T8098] netlink: 'syz.1.550': attribute type 22 has an invalid length.
[  191.716073][ T5782] Bluetooth: hci0: command tx timeout
[  192.085605][ T7943] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  192.149753][ T7943] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  192.230680][ T7943] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  192.297984][ T7943] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  192.521852][ T8135] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  192.521852][ T8135] The task syz.1.560 (8135) triggered the difference, watch for misbehavior.
[  192.565545][ T8134] loop4: detected capacity change from 0 to 128
[  192.580773][    T8] IPVS: starting estimator thread 0...
[  192.612387][ T8134] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  192.634833][ T8134] hpfs: filesystem error: improperly stopped
[  192.641461][ T8134] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  192.649600][ T8134] hpfs: You really don't want any checks? You are crazy...
[  192.661844][ T7943] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.716215][ T8134] hpfs: Code page index out of array
[  192.716527][ T8137] IPVS: using max 20 ests per chain, 48000 per kthread
[  192.763561][ T8134] hpfs: code page support is disabled
[  192.830484][ T8134] hpfs: hpfs_map_4sectors(): unaligned read
[  192.913307][ T8134] hpfs: hpfs_map_4sectors(): unaligned read
[  192.971789][ T8134] hpfs: filesystem error: unable to find root dir
[  193.029698][ T7943] 8021q: adding VLAN 0 to HW filter on device team0
[  193.210817][ T4464] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.218280][ T4464] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.238750][ T8134] hpfs: hpfs_map_4sectors(): unaligned read
[  193.529352][ T4464] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.536588][ T4464] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.693085][   T28] audit: type=1326 audit(1776138842.805:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.1.564" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efe83d9c819 code=0x0
[  194.305266][ T7943] 8021q: adding VLAN 0 to HW filter on device batadv0
[  194.361664][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  194.369174][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  194.397698][ T8147] loop5: detected capacity change from 0 to 32768
[  194.423088][ T8147] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.565 (8147)
[  194.462241][ T8147] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  194.482922][ T8147] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  194.504334][ T8147] BTRFS info (device loop5): setting nodatasum
[  194.522191][ T8147] BTRFS info (device loop5): force zlib compression, level 3
[  194.560533][ T8147] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_LZO (0x8)
[  194.591742][ T8147] BTRFS info (device loop5): use lzo compression, level 0
[  194.640813][ T8147] BTRFS info (device loop5): turning on flush-on-commit
[  194.657636][ T8147] BTRFS info (device loop5): enabling auto defrag
[  194.664248][ T8147] BTRFS info (device loop5): max_inline at 4096
[  194.705974][ T8147] BTRFS info (device loop5): using free space tree
[  194.856697][ T8147] BTRFS info (device loop5): enabling ssd optimizations
[  194.977611][ T7943] veth0_vlan: entered promiscuous mode
[  195.043403][ T7943] veth1_vlan: entered promiscuous mode
[  195.164750][ T7943] veth0_macvtap: entered promiscuous mode
[  195.201348][ T7943] veth1_macvtap: entered promiscuous mode
[  195.260951][ T7943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.283864][ T7943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.295254][ T7943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.316083][ T7943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.367451][ T7943] batman_adv: batadv0: Interface activated: batadv_slave_0
[  195.407110][ T7943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.427280][ T6518] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  195.442242][ T7943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.481111][ T7943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.492018][ T7943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.508863][ T7943] batman_adv: batadv0: Interface activated: batadv_slave_1
[  195.559122][ T7943] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.589419][ T7943] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.619807][ T7943] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.640043][ T7943] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.022998][ T1080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.065023][ T1080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.203259][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.247567][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.510731][ T8223] loop6: detected capacity change from 0 to 128
[  196.589236][   T28] audit: type=1800 audit(1776138845.695:16): pid=8223 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.510" name="file2" dev="loop6" ino=1048613 res=0 errno=0
[  196.621480][ T8203] loop4: detected capacity change from 0 to 32768
[  196.727740][   T28] audit: type=1800 audit(1776138845.815:17): pid=8203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.574" name="file1" dev="loop4" ino=4 res=0 errno=0
[  197.384901][ T8250] tipc: Started in network mode
[  197.397763][ T8250] tipc: Node identity 5, cluster identity 4711
[  197.403985][ T8250] tipc: Node number set to 5
[  197.461783][ T8257] overlayfs: failed to clone upperpath
[  198.485138][ T8286] 9pnet: p9_errstr2errno: server reported unknown error 01777777
[  198.694299][ T8294] geneve2: entered promiscuous mode
[  199.064184][ T8303] fuse: Bad value for 'fd'
[  199.768202][ T8307] loop4: detected capacity change from 0 to 32768
[  199.810990][ T8307] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop4 scanned by syz.4.597 (8307)
[  199.843410][ T8307] BTRFS info (device loop4): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  199.866109][ T8307] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  199.909847][ T8307] BTRFS info (device loop4): using free space tree
[  200.071908][ T8307] BTRFS info (device loop4): enabling ssd optimizations
[  200.101179][ T8307] BTRFS info (device loop4): auto enabling async discard
[  200.559707][ T5959] BTRFS info (device loop4): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  200.730596][ T5784] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 10 /dev/loop4 scanned by udevd (5784)
[  200.919866][ T8363] overlayfs: failed to clone upperpath
[  201.026208][   T28] audit: type=1326 audit(1776138850.135:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1679d9c819 code=0x7fc00000
[  201.081688][   T28] audit: type=1326 audit(1776138850.135:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1679d9c819 code=0x7fc00000
[  201.165532][   T28] audit: type=1326 audit(1776138850.135:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.4.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1679d9c819 code=0x7fc00000
[  201.386010][ T5815] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  201.584083][ T5815] usb 7-1: Using ep0 maxpacket: 8
[  201.601015][ T5815] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  201.628349][ T5815] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  201.657270][ T5815] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  201.686103][ T5815] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  201.720338][ T5815] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  201.750449][ T5815] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.018534][ T5815] usb 7-1: usb_control_msg returned -32
[  202.038350][ T5815] usbtmc 7-1:16.0: can't read capabilities
[  202.428381][    C1] usbtmc 7-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  203.477888][ T8415] netlink: 20 bytes leftover after parsing attributes in process `syz.1.621'.
[  203.519444][ T8415] netlink: 28 bytes leftover after parsing attributes in process `syz.1.621'.
[  203.958221][ T8412] loop4: detected capacity change from 0 to 32768
[  203.996194][ T8412] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.620 (8412)
[  204.078558][ T8412] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  204.090298][ T8412] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  204.099740][ T8412] BTRFS info (device loop4): force clearing of disk cache
[  204.153626][ T8412] BTRFS info (device loop4): metadata ratio 0
[  204.169755][  T789] usb 7-1: USB disconnect, device number 2
[  204.179208][ T8412] BTRFS info (device loop4): enabling ssd optimizations
[  204.196558][ T8412] BTRFS info (device loop4): using spread ssd allocation scheme
[  204.204293][ T8412] BTRFS info (device loop4): using free space tree
[  204.342148][ T8412] BTRFS info (device loop4): auto enabling async discard
[  204.403698][ T8412] BTRFS info (device loop4): rebuilding free space tree
[  204.689008][ T5959] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  205.453503][ T8463] netlink: 280 bytes leftover after parsing attributes in process `syz.5.634'.
[  205.494667][ T8463] netlink: 280 bytes leftover after parsing attributes in process `syz.5.634'.
[  205.806134][ T8471] overlayfs: metacopy with no lower data found - abort lookup (/file2)
[  206.419372][ T8501] fuse: Bad value for 'fd'
[  206.681471][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  206.925063][ T8519] loop6: detected capacity change from 0 to 4096
[  206.952873][ T8519] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.303289][ T7943] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.222242][ T8558] 
[  208.224728][ T8558] =============================
[  208.229873][ T8558] WARNING: suspicious RCU usage
[  208.234789][ T8558] syzkaller #0 Not tainted
[  208.239428][ T8558] -----------------------------
[  208.244326][ T8558] net/mac80211/iface.c:378 suspicious rcu_dereference_protected() usage!
[  208.253634][ T8558] 
[  208.253634][ T8558] other info that might help us debug this:
[  208.253634][ T8558] 
[  208.264211][ T8558] 
[  208.264211][ T8558] rcu_scheduler_active = 2, debug_locks = 1
[  208.272348][ T8558] 1 lock held by syz.5.671/8558:
[  208.277556][ T8558]  #0: ffffffff8e3c2748 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x7a4/0x1140
[  208.286538][ T8558] 
[  208.286538][ T8558] stack backtrace:
[  208.292470][ T8558] CPU: 1 PID: 8558 Comm: syz.5.671 Not tainted syzkaller #0
[  208.299791][ T8558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  208.309923][ T8558] Call Trace:
[  208.313236][ T8558]  <TASK>
[  208.316205][ T8558]  dump_stack_lvl+0x18c/0x250
[  208.320941][ T8558]  ? show_regs_print_info+0x20/0x20
[  208.326183][ T8558]  ? load_image+0x420/0x420
[  208.330765][ T8558]  lockdep_rcu_suspicious+0x1e1/0x300
[  208.336191][ T8558]  ieee80211_check_concurrent_iface+0x475/0x950
[  208.342511][ T8558]  ieee80211_open+0xc1/0x200
[  208.347155][ T8558]  __dev_open+0x2cb/0x430
[  208.351538][ T8558]  ? dev_open+0x190/0x190
[  208.355930][ T8558]  __dev_change_flags+0x211/0x6a0
[  208.361008][ T8558]  ? dev_get_flags+0x1c0/0x1c0
[  208.365824][ T8558]  ? mutex_lock_nested+0x20/0x20
[  208.370804][ T8558]  dev_change_flags+0x88/0x1a0
[  208.376620][ T8558]  dev_ioctl+0x7b4/0x1140
[  208.381204][ T8558]  sock_do_ioctl+0x239/0x310
[  208.385827][ T8558]  ? sock_show_fdinfo+0xb0/0xb0
[  208.390723][ T8558]  sock_ioctl+0x5ba/0x7e0
[  208.395105][ T8558]  ? sock_poll+0x3e0/0x3e0
[  208.399568][ T8558]  ? bpf_lsm_file_ioctl+0x9/0x10
[  208.404535][ T8558]  ? security_file_ioctl+0x80/0xa0
[  208.409684][ T8558]  ? sock_poll+0x3e0/0x3e0
[  208.414135][ T8558]  __se_sys_ioctl+0xfd/0x170
[  208.418759][ T8558]  do_syscall_64+0x55/0xa0
[  208.423205][ T8558]  ? clear_bhb_loop+0x40/0x90
[  208.427929][ T8558]  ? clear_bhb_loop+0x40/0x90
[  208.432663][ T8558]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.438600][ T8558] RIP: 0033:0x7f21c439c819
[  208.443060][ T8558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  208.462703][ T8558] RSP: 002b:00007f21c5208028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  208.471151][ T8558] RAX: ffffffffffffffda RBX: 00007f21c4615fa0 RCX: 00007f21c439c819
[  208.479141][ T8558] RDX: 0000200000000500 RSI: 0000000000008914 RDI: 0000000000000004
[  208.487126][ T8558] RBP: 00007f21c4432c91 R08: 0000000000000000 R09: 0000000000000000
[  208.495214][ T8558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.503213][ T8558] R13: 00007f21c4616038 R14: 00007f21c4615fa0 R15: 00007ffe6a610418
[  208.511214][ T8558]  </TASK>