last executing test programs:

1m56.57564204s ago: executing program 0 (id=1382):
syz_mount_image$iso9660(&(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x0, &(0x7f0000000400), 0x1, 0x34e, &(0x7f0000000440)="$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")

1m56.095111556s ago: executing program 0 (id=1387):
r0 = gettid()
mount(&(0x7f0000000180)=@md0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='hostfs\x00', 0x260041, 0x0)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r0}, &(0x7f0000044000))
timer_settime(0x0, 0x1, 0x0, 0x0)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0xe, {"a2e3ad099b0d09f91b25090987f70e06d038e7ff7fc6e5539b0d3d0e8b089b3f323063090810e0879b0f0a75e70a9b334d959b669a240d5b0af3988f7ef31952010affe8d178708c523c921b1b5b07070d075b0936cd3b78130daa61d8e81a0000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397273ce1766769f0c91c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b7638354a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc3609aa24b7d520c829d095083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130bb3850a27af9544ae15a7e4540a005918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0274c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354daaa795e96334e207dff70f1988037b2ed3aaf575c0b88d8f19d684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16daffc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a4f0492d48604675fde2b34cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed061cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892438b79ef799cf0630becdcce04579b5561dc825ab829827955e020c1f67ee615feb6243378e0610060f02cca4000000001edb9754fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94e7475cb74642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c226563c24880100bdbe8ddbd72ea4998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5ff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c58b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d4c3e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9728937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f2203783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b50517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864af090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d885b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c7305000000399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1a85ae7e69fd1a47a284f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe437759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b344340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcb7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c2e14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e524f8454c16f8342856935125102bb784ed7148b6ce431b63ec00000000000000b90ea70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a52830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840203bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec685f068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c223598199307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7fb6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f394d7fb83690a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)

1m55.119272779s ago: executing program 0 (id=1396):
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, 0x0, 0x48)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000640)=""/4112, 0x1010}], 0x1, 0x4000, 0x0)

1m53.916216135s ago: executing program 0 (id=1401):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x784, &(0x7f0000001900)="$eJzs3c1rHOUfAPDvbN7aNL9fIghaTwFBA6UbU2Or6KHiQQQLBT3bLpttqNlkS3dTmhDQIoIXQcWDoJeefak3r75c9V/w5EEsVdNixYNEZrPTbJvdNEmTbHU/H5js88zM5pnvPDPzPLvzMBtA1xpN/+QiDkbEe0nEcGN+EhF99VRvxPHV9W4uLxXTKYmVlVd+S+rr3FheKkbTe1IHGpmHI+LbtyMO5daXW11YnCmUy6Xzjfx4bfbceHWhPyIK06Xp0tzRicnJI8eeOnZ052L944fFoavvv/j4F8f/euuhK+9+l8TxGGosa45jp4zGaGOf9KW78DYv7HRhHZZ0egPYlvTU7Fk9y+NgDEdPPQUA/Je9ERErAECXSbT/ANBlsu8BbiwvFbOps99I7K1rz0fEvtX4s/ubq0t6G/fs9tXvgw7eSG67M5JExMgOlD8aEZ989dpn6ZTmf3y2u/Y/0DlvXoqI0yOj66//yboxC1v1xAbL+huvo3fM77b2Bzrp67T/83Sr/l/uVv8nWvR/Blqcu9tx1/N//w4UsoG0//dc09i2m03xN4z0NHL/q/f5+pIzZ8ul9Nr2/4gYi76BND+xQRlj1/++3m5Zc//v9w9e/zQtP31dWyP3S+/A7e+ZKtQK9xJzs2uXIh7pbRV/cqv+kzb935ObLOOlZ975uN2yNP403mxaH380RiftjpXLEY+1rP+1EW3J2vjExcNnZ+8YnzhePxzGs4OihS9/+miwXfnN9Z9OafnZZ4G9kNb/4MbxjyTN4zWrWy/j+8vD37Rbdvf4Wx///cmr9XTWj7hYqNXOT0T0Jy+vn39k7b1ZPls/jX/s0dbn/0bHf/qZ8HSrgFrUdO/VXz/ffvy7K41/akv1v/XElZszPe3K31z9T9ZTY405m7n+bXYD72XfAQAAAAAAAAAAAAAAAAAAAAAAAMBm5SJiKJJc/lY6l8vnV3/D+8EYzJUr1dqhM5X5uamo/1b2SPTlskddDjc9D3Wi8Tz8LH/kjvyTEfFARHw4sD/JnqM41eHYAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBzoM3v/6d+Huj01gEAu2ZfpzcAANhz2n8A6D7afwDoPtp/AOg+2n8A6D7afwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHbZyRMn0mnlz+WlYpqfurAwP1O5cHiqVJ3Jz84X88WhOJefrlSmy6V8sTJ7t/9XrlTOTcbc/MXxWqlaG68uLJ6arczP1U6dnS1Ml06V+vYkKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYmurC4kyhXC6dl9hGYuX+2IzOJ3oah9MuFJFEROcD3HAL74/N2OFEhy9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP8S/wQAAP//iZYeGw==")
mknod(&(0x7f00000000c0)='./bus\x00', 0x8000, 0x77f8)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r0, &(0x7f0000000080), 0x208e24b)
r1 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000500)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x0, 0x0, 0x3}, {0xffffffff, 0x0, 0x6}]})

1m52.933379268s ago: executing program 0 (id=1411):
syz_mount_image$udf(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x0, &(0x7f0000000580), 0x1, 0x4d3, &(0x7f00000005c0)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x0)

1m51.411171178s ago: executing program 0 (id=1420):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000440)=ANY=[], 0x83, 0x1501, &(0x7f0000002180)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

1m50.965552965s ago: executing program 32 (id=1420):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000440)=ANY=[], 0x83, 0x1501, &(0x7f0000002180)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

1m28.779040211s ago: executing program 3 (id=1521):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
r4 = epoll_create1(0x0)
close(r3)
r5 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x12, 0x4, @tid=r5}, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{}, {0x0, 0x9}}, 0x0)
r6 = epoll_create1(0x0)
r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x1003ffffffc]}, 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000140))
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000000200)={0x40002019})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000c85000))

1m27.389809869s ago: executing program 3 (id=1523):
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file2\x00', 0x2001004c, &(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYRESOCT=0x0, @ANYRES8, @ANYRES16=0x0, @ANYRES8], 0xfe, 0x1516, &(0x7f0000000d80)="$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")
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
utimes(&(0x7f0000000180)='./file0\x00', 0x0)

1m26.648033499s ago: executing program 3 (id=1526):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x4c}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x50, r0, 0x801, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "521e04b77a"}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x50}, 0x1, 0x0, 0x0, 0x4091}, 0x10)

1m26.437185322s ago: executing program 3 (id=1527):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x2020084c, &(0x7f0000000040)=ANY=[], 0x81, 0x1505, &(0x7f0000002180)="$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")
chdir(&(0x7f0000000300)='./file0\x00')
r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
open(&(0x7f0000000040)='./bus\x00', 0x60142, 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0xc1800, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
write$tcp_congestion(r0, &(0x7f0000000480)='lp\x00', 0x3)

1m25.652319723s ago: executing program 3 (id=1531):
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xb635773f04ebbeea, 0x8031, 0xffffffffffffffff, 0xffffc000)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xfffffffffffffffc)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
read$FUSE(r0, &(0x7f0000003980)={0x2020}, 0x2020)

1m25.208969449s ago: executing program 3 (id=1534):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f00000006c0)={0x0, 0x0, 0xac1d})
fcntl$lock(r3, 0x24, &(0x7f00000000c0)={0x2, 0x2, 0x9, 0x2})

1m24.484018599s ago: executing program 33 (id=1534):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f00000006c0)={0x0, 0x0, 0xac1d})
fcntl$lock(r3, 0x24, &(0x7f00000000c0)={0x2, 0x2, 0x9, 0x2})

38.627163463s ago: executing program 1 (id=1732):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f00007be000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f00000001c0)="f20f093636f30f6f7a01baf80c66b8447b888166efbafc0c66ed66b9ad0200000f32ff422ab40d0f017f9e0f8d7f87d234660fe1e1", 0x35}], 0x1, 0x2c, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

37.616914386s ago: executing program 1 (id=1736):
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000000480)=""/108)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1000002, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c646973636172640061727365743d63703835322c757466383d202c6e6f6e756d7461696c3d302c6e6f6e75617461696c3d302c7574663c3d302c696f6368619615f9a9d8bc34fd234143727365743d69736f383835392d322c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c757466383d312c756e695f786c6174653d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c726f6469722c756e695f786c"], 0x1, 0x368, &(0x7f0000000180)="$eJzs3U9oI9UfAPBvOmnSXfj9tjdREKI3Qct2b3qxRbqw2ItK8M9BDG5XJa1Ci8X2sG09KB4Fj3rypqAHD+JRBEW8efDqCrIqHrS3BRefTCaTTJu02y5WKX4+0PTlvfed73cmQzINyetzc9G9PBlXdnevx9RULepzj8zFjVpMRxal7RjVGNMHAJwON1KK31PhiCG1Ey4JADhhvdf/FyKiFdNFz+tfHjY/efUHgFOv//f/mcPmTB008MqJlAQAnLCR9//v3TPc6P3Uy7v1yqcCAIDT6omnn3l0fjHi8VZrKmLlzfX2ejseGo7PX4mXYjmW4nyci5sRxYVCflPr3V68tLhwvtVqbcVP09GOiIl+YLu4UpjPevHNmB2MDK42UkrZxU8WF2ZbPRGxvdXLHyu19fZknO3n//5sLA0vPKbLIqJ3c2lx4UKrv4H2Shm/FbEzfN8ir38mzsW3zw82k1L5CcbFhauzE/07w/j1djMuD47Cge+AAAAAAAAAAAAAAAAAAAAAAADAbZlpDUwP1s9J+e9ipZyZmTHjvfVxivj++kA7xfpAqZkipd9ee6D9VhZ71gfavz7PuoUEAQAAAAAAAAAAAAAAAAAAYGBtoxGd5eWl1bWNzW61sbW6tjEREXnPy19/9MWZGJ1zi0a9SNGMGKRo9dNudjspKyenLGI0PMuTlz0ffDqouDqnOdiLsWU0xw/tRt743z0/vjscujsrt/zncHIW43cwq5Tx8L6kK/8vSjrOgRo0LlR7mqPZr6WUKj1vVMOvPju6wahF1I//wG12J+LgOSlvfHX9xTvLo9/5PBXuu//ck9feef+Xbmc5zxy9R7CxunYzdTu1cvLxDkt+qMueWhSNWvVMqB8WvrO3p5N99+tTd739zdGyp2rPq/n5vG9OVuzOx/vDG0UjLzNvNIZny5lh+GR/J5aXJsec/Ldq3MZjesd7n32Y0g8/HzlFIa9+YuRpo/b3PQMBAAAAAAAAAAAAAAAAAAClynfF+/pf9p08LOrBx06+MgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD45wz//3+lsbMd+3qO0vhja0xUc2l1LaLxb+8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/cX8FAAD//zbhVeI=")
prctl$PR_SET_NAME(0xf, 0xfffffffffffffffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xd}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000c40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000500)=ANY=[], 0x5, 0x6cb, &(0x7f0000001400)="$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")
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000005c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x0, 0x0)
fanotify_init(0x200, 0x0)
unshare(0x22020600)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000000)={'wg0\x00'})

36.188727055s ago: executing program 1 (id=1745):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000280)={0x0, 0x0}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000000203010200000000000000000000000009000200000000010000000008000340000000070800010001"], 0x38}, 0x1, 0x0, 0x0, 0x40050}, 0x4004000)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x3, 0x3, 0x301, 0x0, 0x0, {0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0xe}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x8000}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x7ff}}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x200000c4)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
clock_adjtime(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000b00)=0x6)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$BINDER_CTL_ADD(0xffffffffffffffff, 0xc1086201, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r5, 0xc4c85513, &(0x7f0000001480)={{0x6, 0x6, 0x2, 0xb, '\x00', 0x2}, 0x1, [0x7, 0x9, 0xc, 0x8000, 0xfffffffffffffff7, 0x2, 0xe, 0x3, 0x9, 0xfff, 0x6, 0x8, 0x7, 0x9, 0x9, 0x64c5f289, 0x3000000, 0x0, 0x100, 0x3, 0x5e0d, 0x3, 0x4, 0x5, 0x7fff, 0x7fffffffffffffff, 0x10, 0x2, 0x1ff, 0x0, 0xffff, 0x966a, 0xe, 0x0, 0x20000, 0x0, 0x1, 0x10000, 0x6, 0x74e, 0x100000000, 0x3d, 0x7, 0x4, 0x1ff, 0xe86, 0x5, 0x9, 0x4, 0x96d, 0x4, 0x1, 0x7f80000000000000, 0x7, 0x5, 0x80, 0x17, 0xffffffffffffffff, 0x64, 0x6, 0xc5b6, 0x8, 0x10, 0xb612, 0x5, 0x2, 0x4, 0x1, 0x19125dd8, 0x1, 0x6, 0x3, 0x9, 0x8, 0x7, 0x101, 0x4, 0x1000, 0xe60b, 0x8, 0x0, 0x0, 0x1, 0x6, 0xd, 0x1, 0x6, 0x8000000000000000, 0xd, 0x1000, 0xfffffffffffffff1, 0x2, 0x4, 0x2, 0x4, 0x576, 0x0, 0x5, 0x100000001, 0x9, 0xfffffffffffffffc, 0x3, 0x0, 0xf2, 0x80, 0x6, 0x8d, 0xc, 0x6, 0x7, 0xe, 0x4, 0xffffffffffffffff, 0x6, 0xff, 0x9, 0x4, 0xfffffffffffffffc, 0xc2a, 0xfffffffffffffffc, 0x3, 0xffff, 0x8, 0x4, 0x8001, 0x0, 0x9, 0xfffffffffffffffe]})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]})
r7 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r7, 0x0, 0x8000)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
close_range(r4, 0xffffffffffffffff, 0x0)

34.926834741s ago: executing program 1 (id=1751):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file2\x00', 0x1004800, &(0x7f0000000100)=ANY=[], 0x1, 0x6bb, &(0x7f00000018c0)="$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")
r0 = creat(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x192)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000800)="$eJzs3c9rHFUcAPDvbJKmptXkIGj1EhA0ULoxNbYKHioeRLBQ0LPtstmGmt1syW5KEwJaRPAiqCdBLz37o968+uOq/4UHaamaFiseJDKb2XTb7KabNsmi+/nAa9+bmc2b77yZeW93hpkA+tZ4+k8u4lBEfJREjGbTk4gYauQGI06sL3drdaWYpiTW1t74PWksc3N1pRgtn0kdyAqPR8QP70cczm2ut7a0PFcol0sLWXmyXjk/WVtaPnKuUpgtzZbmj01NTx89/vzxYzsX6J8/Lx+89vGrz3x94u/3Hrvy4Y9JnIiD2ezWOHbKeIxn22Qo3YR3eGWnK+uxpNcrwH1JD82B9aM8DsVoDDRyAMD/2TsRsQYA9JlE/w8Afab5O8DN1ZViM/X2F4m9df3liNi/Hn/z+ub6nMHsmt3+xnXQkZvJHVdGkogY24H6xyPi82/f+jJNsUvXIQHaefdSRJwZG998/k823bOwXc92scz4XWXnP9g736Xjnxfajf9yG+OfaDP+GW5z7N6Pex//uas7UE1H15+MeKnl3rZbLfFnxgay0sONMd9QcvZcuZSe2x6JiIkYGk7LU1vUMXHjnxud5rWO//745O0v0vrT/28vkbs6OHznZ2YK9cKDxNzq+qWIJwbbxZ9stH/SYfx7qss6Xnvxg886zUvjT+Ntps3x7661yxFPt23/23e0JVvenzjZ2B0mmztFG9/88ulIp/pb2z9Naf3N7wJ7IW3/ka3jH0ta79esbb+Ony6Pft9p3r3jb7//70vebOT3ZdMuFur1hamIfcnrm6cfvf3ZrPxQZMun8U881f7432r/T78Tnuky/sFrv311//HvrjT+mW21//YzV27NDXSqv7v2n27kJrIp3Zz/ul3BB9l2AAAAAAAAAAAAAAAAAAAAAAAAANCtXEQcjCSX38jncvn8+ju8H42RXLlaqx8+W12cn4nGu7LHYijXfNTlaMvzUKey5+E3y0fvKj/X8kTBtJwvVsszPY4dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJoOdHj/f+rX4V6vHQCwa/b3egUAgD2n/weA/qP/B4D+o/8HgP6j/weA/qP/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYJedOnkyTWt/ra4U0/LMhaXFueqFIzOl2ly+sljMF6sL5/Oz1epsuZQvViv3+nvlavX8dMwvXpysl2r1ydrS8ulKdXG+fvpcpTBbOl0a2pOoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGB7akvLc4VyubQgIyMjs5Hp9ZkJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4L/h3wAAAP//HxYpBQ==")
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000000)='.\x00', 0x52000775)
chmod(&(0x7f0000000180)='./file0\x00', 0x312)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='tmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x21, &(0x7f0000000140)={[{@nr_blocks={'nr_blocks', 0x3d, [0x30]}}]})
r3 = syz_open_procfs(0x0, &(0x7f0000000580)='mountinfo\x00')
read$FUSE(r3, &(0x7f0000004600)={0x2020}, 0x2020)
ioctl$SNDRV_PCM_IOCTL_PREPARE(r2, 0x4140, 0x0)
ioctl$SNDRV_PCM_IOCTL_START(r0, 0x4142, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x8, 0x3000018, 0xfc42, 0xfff, 0x7, 0x7, 0x0, 0x0, 0x100, 0xfffffffd}}, 0x50)

34.807161693s ago: executing program 6 (id=1752):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

34.757760114s ago: executing program 4 (id=1753):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8000040000000001, 0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

34.529127347s ago: executing program 6 (id=1754):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000003c0)=0x81, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e23, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x2)

34.31238695s ago: executing program 1 (id=1757):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r0, &(0x7f00000006c0)=[{0xe, 0x0, 0x2, 0xfd, @tick, {}, {0xe}, @time=@time={0x5, 0x400}}], 0x1c)

34.122304892s ago: executing program 4 (id=1758):
r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r4, 0x7, &(0x7f0000000280)={0x1, 0x0, 0x2f, 0x9})
fcntl$lock(r4, 0x5, &(0x7f00000007c0)={0x0, 0x2, 0xcb3, 0x7})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)

33.834821316s ago: executing program 6 (id=1760):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
close_range(r0, 0xffffffffffffffff, 0x0)

32.255172357s ago: executing program 4 (id=1764):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
pipe2$9p(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
splice(r0, 0x0, r2, 0x0, 0x1fffffffffff, 0x0)

32.116678948s ago: executing program 6 (id=1765):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
setxattr$trusted_overlay_opaque(&(0x7f0000000280)='./file0/file0\x00', &(0x7f0000000300), 0x0, 0x0, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xa, 0x1000, 0x3fd, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)=@generic={&(0x7f00000000c0)='./file0/file0\x00', r1}, 0x18)

31.897997091s ago: executing program 1 (id=1766):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000009c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd28, 0x4, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {}, {0x7}}, [@filter_kind_options=@f_basic={{0xa}, {0x10, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e0f30fa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

31.355061799s ago: executing program 4 (id=1767):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file2\x00', 0x1004800, &(0x7f0000000100)=ANY=[], 0x1, 0x6bb, &(0x7f00000018c0)="$eJzs3c1vXFfdB/DvHY8dT9ombpq0eR5VqtVIgIhI7FgpmA0BIWSkCqGyYG0lTmNlkhbHRW6FqMPrtov+Ad1kg1ghsWITqbBgA7vukJeVkNh0g1kNujN3XjJ+m+bF45TPJ7pzzj3nnnN/93fvnbfImgD/s5bOp34/RZbOv75Rrm/dW2hu3Vu41a0nOZZkM6knqSUp/t1qtT5OriRFb5piqNzhw9XFNz75bOvTzlq9Wtrb1/YbN6TabnOoebPbNptkoiofwQPzXX3k+Ype5FeSnKtKGLvJJK3WZFo9P/nrs72esvNkp2zsNnr68AIFnpii87pZvhjXBttnkuPVjV6+D+i+8tbGEuQIjo243fA7CAAAAHjajPIZ+OR2trNRnDiEcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOALYbP/+/9FtdS69dkU3d//n6raUtWPllc+3+b3n1QcAAAAAAAAAHCIXtnOdjZyorveKtr/5/9qe+V0+/GZvJM7WclaLmQjy1nPetYyn2RmYKKpjeX19bX5EUZe2nXkpQMCPVaVjcdz3AAAAAAAAADwBfOLLPX//x8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI6CIpnoFCnuDjTPpFZPMp1kqmzYTP7erT/N7o87AAAAADgEJ7eznY2c6K63ipxO8mL7O4DpvJPbWc9q1tPMSq61vxfofOqvbd1baG7dW7hVLjvn/fa/HlidPiCM9ozpfPew+57Ptrdo5HpW2y0XcjVvpZlrqbVHls5W8XRnHYrrbhlT8a3KiAm6VpXlkX9QlTu8P+Jk+xv+MqWx/xcsM+2MTPYyMlfFVmbj+e6Z2f0MDZ2dgwzvaT61XmCnh/Y0FPBD5fx4VZbH85u9cj4Ww5m4NHD1vbh/zpMv//H3P56r6kfnkEYzUZWt9mNjZyYWBjLx0iiZuNG8ffPG9Tvnn7ZM7DDXzsSZ3vpSvpcf5Xxm88OsZTU/zXLWs5LZfLddW65OfjFwe++RqSudYnK33S71E9fN+1R1hU5UrZ8nplfbY09kNT/IW7mWlbzW/ncp8/l6LudyFgfO8Jn9z3D7rq89cNf3XwFaz+2axnNfqSrl095vq3JXe3Y8KWVenx/I6+Bz7ky7b7Cln6VTB2epTMsDz41/2j+U+v9XlXIfvxw49+M3nIn5gUy8sF8muhfynebtm2s3lt8ebXenPhgY/usj9ZRaXi+nypOV7gnqXx1l3wvdvqF8lX2ne321HX1nen2dO3Vzzzt1qnoPt3OmS+2+l3btW2j3nR3o2+391sHv5gAYs+NfPT7V+Gfjb42PGr9q3Gi8Pv2dY9849vJUJv88+c363MSXai8Xf8hH+Xn/8z8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDw7rz73s3lZnNlbajSarXe36Or2TqZ7NH1cJXanmGUlfoBoe6oZPYfz5QDui2t9Lq6P2f2GIM/qPJ/zyajj6p+gSedlvrjzfMYK/9ptVpVS7HHNr/7y85EPTdS6qZGvzYOqExXV3jlSKSuqtQPeadjekICDs3F9VtvX7zz7ntfW721/ObKmyu3Fy9fXpxbvPzawsXrq82Vuc7juKMEnoT+i/64IwEAAAAAAAAAAABGNdrfA+SR/pxg3McIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPN2Wzqd+P0Xm5y7Mletb9xaa5dKt97esJ6klKX6WFB8nV9JZMjMwXbHXfj5cXXzjk8+2Pu3PVS75/tUDxo1ms1oym2SiU959XPNdrcp9FfsdQtE7wjJh57qJg3H7bwAAAP//EOj9JQ==")
r0 = creat(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x192)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000800)="$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")
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000000)='.\x00', 0x52000775)
chmod(&(0x7f0000000180)='./file0\x00', 0x312)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='tmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x21, &(0x7f0000000140)={[{@nr_blocks={'nr_blocks', 0x3d, [0x30]}}]})
r3 = syz_open_procfs(0x0, &(0x7f0000000580)='mountinfo\x00')
read$FUSE(r3, &(0x7f0000004600)={0x2020}, 0x2020)
ioctl$SNDRV_PCM_IOCTL_PREPARE(r2, 0x4140, 0x0)
ioctl$SNDRV_PCM_IOCTL_START(r0, 0x4142, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x8, 0x3000018, 0xfc42, 0xfff, 0x7, 0x7, 0x0, 0x0, 0x100, 0xfffffffd}}, 0x50)

30.696174527s ago: executing program 34 (id=1766):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000009c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd28, 0x4, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {}, {0x7}}, [@filter_kind_options=@f_basic={{0xa}, {0x10, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}]}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e0f30fa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

30.684548077s ago: executing program 6 (id=1771):
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000000480)=""/108)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1000002, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c646973636172640061727365743d63703835322c757466383d202c6e6f6e756d7461696c3d302c6e6f6e75617461696c3d302c7574663c3d302c696f6368619615f9a9d8bc34fd234143727365743d69736f383835392d322c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c757466383d312c756e695f786c6174653d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c726f6469722c756e695f786c"], 0x1, 0x368, &(0x7f0000000180)="$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")
prctl$PR_SET_NAME(0xf, 0xfffffffffffffffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xd}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000c40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000500)=ANY=[], 0x5, 0x6cb, &(0x7f0000001400)="$eJzs3c9vHGf5APBnxrsbb75Rvk6btBEqwkqkArJI/EMumAsGIeRDhapy4GwlDrGycSrbqdwKgQsITkgc+gcUJIsLJyTuQeHcqgd6tThVqsQl4mD1YjSzM7tr79heO/7V8vlEs/POvO+888yz78x4d7PaAP5nzY1F7UkkMTf2+lq2vLkx1drcmLpQVLciIiunEbX2LJKliORpxGxWn7TXZ/Ponfd5f3HmzU+ebX7aXqpFz3bpfttVqGi7XkwxGhFDxbxffdBd7OjvTkQM9zVpDNpX2XC2fLhZLsBZ2+6zfpjND3PeAudMeXdK2vfNPiMRF4v7X/43QXF1SE8vwv396+OjbZcdx+PjDgYAAADOmQ8fnXUEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8MVT/P5/UkxpMY/RSMrf/2+U64ryufPZR4O3fXKSgQAAAAAAAADAKfnaVmzFWlwul7eT/DP/G/nC1fh8O+L/4nGsxEIsx61Yi/lYjdVYjomIGOnpqLE2v7q6PNHZMlO95WTllpOndcQAAAAAAAAA8KX0q5jrfv4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADnQRIx1J7l09WyPBJpLdp1jazdesRHZfkLIqla+eT04wAAAIDnMnyEbf5/K7ZiLS6Xy9tJ/pr/pfz18nA8jqVYjcVYjVYsxN3iNXT2qj/d3JhqbW5MPcym/n6//+9DhZH3WLy/UL3n63mLZtyLxXzNrbiTB3M30nzLzPUynuq43stiSr5XGDCyWpHWbGd/2OtdhGNx2LciRrLgIjoZGS9iy7JxpZ2BJH+jJmJ3Jg58dmq79xRp1Dt7moi0887P1X1zfulIOb9YzLPj+e2J5vywOplII8/EZM/oe6knCxGXou+s+Prf/vLT+62lB/fvrYydn0PqSCvXDu1e0ezdojsmpnoy8fL+5+E5z0TtkO3H80xc6yzPxY/iJzEWo/FGLMdivB3zsRoLsV3UzxfjOXscqc7UetF0dseO3jgokkYxQtvP2SAxjcYP89J83Mi3vRyLkcSjuBsL8Vr+bzIm4tsxHdMx0/MMX9vzGc6PLT/r091nfflM/70y+JvfKArZAPtdd6DN7nfEfaPzmLWv/Vler/TktT3qn3Va/fmbb9e6V+Full4os1Ov7Pwo18baV4pCto9f73nWnoWRPEv1rX9GdO4SZXQvtjNRy+9F/VeEP+bnxkpr6cHy/fm39uh/fdfyq8U8G1YbXx0gwHrn4YRl4+WFGC6uJFd6rpLjed2LnavMlR131UbxiUu7Lu2ru5bXJUl5pv54zzO1UfwN19/TZF73cmXdVF53vadux99b8ShacfcU8gfAcxqJi43mZ80Pmx80f9O833x9+AcXvnPhlUbU/1H/bm186NX0leSv8UH8ovv6HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOLqVd959MN9qLSxXF9K9qw4oHNTzrkJS/KDPkfZ1DgvDEbFjTT1bcephNHeH0VfY/mXEqeen/BHB6ja/zwq1GKTD2YPavHf4CD+/sFdgX8rCUFQPgDO+MAEn7vbqw7dur7zz7rcWH85/vPCzhaX69PTM+Mz0a1O37y22Fsbbj2cdJXASujf9s44EAAAAAAAAAAAAGFTVFwNuXDroSyMDfcfD/ywEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjsXcWNSeRBIT47fGs+XNjalWNpXlbstaRKRpRPLziORpxGy0pxjp6S6JPz2N7Yr9vL848+YnzzY/7fZVa7ePSIv5c1gvphiNiKFiflz93Xnu/pL/lEeYJexmmTg4a/8NAAD//wWP+go=")
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000005c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x0, 0x0)
fanotify_init(0x200, 0x0)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000000)={'wg0\x00'})

30.664638127s ago: executing program 4 (id=1772):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x0, 0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[], 0x80}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20)
chmod(&(0x7f0000000080)='./file0\x00', 0x80)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

30.47513333s ago: executing program 6 (id=1773):
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@userxattr}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x10001, 0x0)

29.957966927s ago: executing program 35 (id=1773):
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@userxattr}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x10001, 0x0)

29.946351827s ago: executing program 4 (id=1776):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
readv(r0, &(0x7f00000003c0)=[{&(0x7f0000000200)=""/101, 0x65}], 0x1)

29.789292849s ago: executing program 36 (id=1776):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
readv(r0, &(0x7f00000003c0)=[{&(0x7f0000000200)=""/101, 0x65}], 0x1)

6.627188943s ago: executing program 7 (id=1890):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x0, 0x0})

5.29911616s ago: executing program 7 (id=1894):
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000680))
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @private0, @mcast2, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in6=@private0, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000048000000ac1e000100000000000000000000000000000000000000000a0040"], 0xb8}}, 0x4000)

5.145913262s ago: executing program 2 (id=1895):
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000080)={0x3, 0x6, {0xffffffffffffffff}, {0xee00}, 0x800, 0x4})
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0285628, &(0x7f0000000080)={0x3, @win={{0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}})

4.952553645s ago: executing program 7 (id=1897):
syz_io_uring_setup(0x64b7, &(0x7f0000002600)={0x0, 0xffffff7c, 0x13580, 0x3, 0x35c}, 0x0, 0x0)
exit(0x1f919)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x6, 0xffff, 0x0, 0x5, 0x4, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2c0, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2e, 0xd, 0x4e2, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x93a, 0x5, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x0, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x5, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

4.859163736s ago: executing program 2 (id=1898):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f0000000140)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_remount}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000580)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, 0x0, 0x0, 0x9000)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000300)={0x17c04, 0xffffffffffffffff, 0x4ea, 0x10001, 0x0, 0x8})

4.463089541s ago: executing program 5 (id=1901):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
r4 = epoll_create1(0x0)
close(r3)
r5 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x12, 0x4, @tid=r5}, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{}, {0x0, 0x9}}, 0x0)
r6 = epoll_create1(0x0)
r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x1003ffffffc]}, 0x8, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000000200)={0x40002019})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000c85000))
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)

3.7546011s ago: executing program 2 (id=1902):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x0, 0x0})

3.430768625s ago: executing program 5 (id=1903):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000280)={0x0, 0x0}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000000203010200000000000000000000000009000200000000010000000008000340000000070800010001"], 0x38}, 0x1, 0x0, 0x0, 0x40050}, 0x4004000)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x3, 0x3, 0x301, 0x0, 0x0, {0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0xe}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x8000}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x7ff}}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x200000c4)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
clock_adjtime(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000b00)=0x6)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$BINDER_CTL_ADD(0xffffffffffffffff, 0xc1086201, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r5, 0xc4c85513, &(0x7f0000001480)={{0x6, 0x6, 0x2, 0xb, '\x00', 0x2}, 0x1, [0x7, 0x9, 0xc, 0x8000, 0xfffffffffffffff7, 0x2, 0xe, 0x3, 0x9, 0xfff, 0x6, 0x8, 0x7, 0x9, 0x9, 0x64c5f289, 0x3000000, 0x0, 0x100, 0x3, 0x5e0d, 0x3, 0x4, 0x5, 0x7fff, 0x7fffffffffffffff, 0x10, 0x2, 0x1ff, 0x0, 0xffff, 0x966a, 0xe, 0x0, 0x20000, 0x0, 0x1, 0x10000, 0x6, 0x74e, 0x100000000, 0x3d, 0x7, 0x4, 0x1ff, 0xe86, 0x5, 0x9, 0x4, 0x96d, 0x4, 0x1, 0x7f80000000000000, 0x7, 0x5, 0x80, 0x17, 0xffffffffffffffff, 0x64, 0x6, 0xc5b6, 0x8, 0x10, 0xb612, 0x5, 0x2, 0x4, 0x1, 0x19125dd8, 0x1, 0x6, 0x3, 0x9, 0x8, 0x7, 0x101, 0x4, 0x1000, 0xe60b, 0x8, 0x0, 0x0, 0x1, 0x6, 0xd, 0x1, 0x6, 0x8000000000000000, 0xd, 0x1000, 0xfffffffffffffff1, 0x2, 0x4, 0x2, 0x4, 0x576, 0x0, 0x5, 0x100000001, 0x9, 0xfffffffffffffffc, 0x3, 0x0, 0xf2, 0x80, 0x6, 0x8d, 0xc, 0x6, 0x7, 0xe, 0x4, 0xffffffffffffffff, 0x6, 0xff, 0x9, 0x4, 0xfffffffffffffffc, 0xc2a, 0xfffffffffffffffc, 0x3, 0xffff, 0x8, 0x4, 0x8001, 0x0, 0x9, 0xfffffffffffffffe]})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]})
r7 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r7, 0x0, 0x8000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x1, 0x0)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
close_range(r4, 0xffffffffffffffff, 0x0)

3.365021606s ago: executing program 7 (id=1904):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x8, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="12"], 0x48)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
io_uring_setup(0x63c5, &(0x7f00000000c0)={0x0, 0x8880, 0x8000, 0x0, 0x2})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0x7, 0x1, 0x4, 0x2, 0x1, 0x1, 0xff, 0x5, 0x0, 0x0, 0x10, 0xa, 0x2, 0xd, 0x4}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x0, 0x180, 0x7, 0x0, 0xf1, 0x0, 0x8000000000000, 0x200000000000005, 0x0, 0x9, 0x1, 0x0, 0x0, 0xbd9], 0x1, 0x3c4210})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.364301846s ago: executing program 9 (id=1905):
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000680))
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @private0, @mcast2, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in6=@private0, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000048000000ac1e000100000000000000000000000000000000000000000a0040"], 0xb8}}, 0x4000)

3.06296537s ago: executing program 9 (id=1906):
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000080)={0x3, 0x6, {0xffffffffffffffff}, {0xee00}, 0x800, 0x4})
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0285628, &(0x7f0000000080)={0x3, @win={{0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}})

2.854532362s ago: executing program 5 (id=1907):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000400)=0x1)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000001c0)={0x6, @raw_data="df25920f0fa7a2345319f2c233536b2c80f764ab68a32d203a22341eec3d1f490981771a01e2bc9409de85edb167af1bc70a09d434f8aff4588b77e2b8b5038e144a07c9477f8df2aa89e243f4e1f9f9c8d35474da15e1f047a69f57f032e5a26344806f593d7475e616cedaa569669f0ca82ac33ef9472c7b618ba03d41165108fc6f5d9daf860179f0878154cd4a3ed8f3a8cd63f7617b053ac8b66366ca5a6df1e00887f94ca5d353835101a2725ccddc05d1cb6e39d597d62c3ae2415ddfe0cccd844a74a841"})

2.839305232s ago: executing program 9 (id=1908):
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x2167c00, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000050400000000000000", @ANYBLOB="ebffffffff"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r1, r2, r1}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = dup(r4)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

2.823309022s ago: executing program 2 (id=1909):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})

2.579306536s ago: executing program 5 (id=1910):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="0000810001000000020014"], 0x86)

2.453426567s ago: executing program 7 (id=1911):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f0000000140)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@errors_remount}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000580)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, 0x0, 0x0, 0x9000)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000300)={0x17c04, 0xffffffffffffffff, 0x4ea, 0x10001, 0x0, 0x8})

2.452350567s ago: executing program 2 (id=1912):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
r4 = epoll_create1(0x0)
close(r3)
r5 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x12, 0x4, @tid=r5}, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{}, {0x0, 0x9}}, 0x0)
r6 = epoll_create1(0x0)
r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x1003ffffffc]}, 0x8, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000000200)={0x40002019})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000c85000))
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)

2.433826218s ago: executing program 9 (id=1913):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}}], {0x14}}, 0x88}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

1.823753606s ago: executing program 9 (id=1914):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000740)=""/67, 0x0, 0xd000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000a40)={0x3, 0x0, [{0xeeee5000, 0xf0, &(0x7f0000000940)=""/240}, {0x4, 0x5a, &(0x7f00000006c0)=""/90}, {0x2, 0x2b, &(0x7f0000000200)=""/43}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.250749663s ago: executing program 2 (id=1915):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000240)={0x8, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000100)=0x1)
ioctl$vim2m_VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000200)=0x1)

1.111050695s ago: executing program 5 (id=1916):
r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet(0x2, 0x2, 0x0)
shutdown(r4, 0x0)
recvmmsg(r4, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)

810.799569ms ago: executing program 7 (id=1917):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000280)={0x0, 0x0}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000000203010200000000000000000000000009000200000000010000000008000340000000070800010001"], 0x38}, 0x1, 0x0, 0x0, 0x40050}, 0x4004000)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x3, 0x3, 0x301, 0x0, 0x0, {0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0xe}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x8000}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x7ff}}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x200000c4)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
clock_adjtime(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000b00)=0x6)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$BINDER_CTL_ADD(0xffffffffffffffff, 0xc1086201, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r5, 0xc4c85513, &(0x7f0000001480)={{0x6, 0x6, 0x2, 0xb, '\x00', 0x2}, 0x1, [0x7, 0x9, 0xc, 0x8000, 0xfffffffffffffff7, 0x2, 0xe, 0x3, 0x9, 0xfff, 0x6, 0x8, 0x7, 0x9, 0x9, 0x64c5f289, 0x3000000, 0x0, 0x100, 0x3, 0x5e0d, 0x3, 0x4, 0x5, 0x7fff, 0x7fffffffffffffff, 0x10, 0x2, 0x1ff, 0x0, 0xffff, 0x966a, 0xe, 0x0, 0x20000, 0x0, 0x1, 0x10000, 0x6, 0x74e, 0x100000000, 0x3d, 0x7, 0x4, 0x1ff, 0xe86, 0x5, 0x9, 0x4, 0x96d, 0x4, 0x1, 0x7f80000000000000, 0x7, 0x5, 0x80, 0x17, 0xffffffffffffffff, 0x64, 0x6, 0xc5b6, 0x8, 0x10, 0xb612, 0x5, 0x2, 0x4, 0x1, 0x19125dd8, 0x1, 0x6, 0x3, 0x9, 0x8, 0x7, 0x101, 0x4, 0x1000, 0xe60b, 0x8, 0x0, 0x0, 0x1, 0x6, 0xd, 0x1, 0x6, 0x8000000000000000, 0xd, 0x1000, 0xfffffffffffffff1, 0x2, 0x4, 0x2, 0x4, 0x576, 0x0, 0x5, 0x100000001, 0x9, 0xfffffffffffffffc, 0x3, 0x0, 0xf2, 0x80, 0x6, 0x8d, 0xc, 0x6, 0x7, 0xe, 0x4, 0xffffffffffffffff, 0x6, 0xff, 0x9, 0x4, 0xfffffffffffffffc, 0xc2a, 0xfffffffffffffffc, 0x3, 0xffff, 0x8, 0x4, 0x8001, 0x0, 0x9, 0xfffffffffffffffe]})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]})
r7 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r7, 0x0, 0x8000)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x1, 0x0)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
close_range(r4, 0xffffffffffffffff, 0x0)

809.912379ms ago: executing program 9 (id=1918):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000a40), 0x1, 0x181000)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000040)={&(0x7f0000000a80)='a', 0x1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000000)={r2})

804.526359ms ago: executing program 8 (id=1774):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, 0x0, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000100)={'full', 0x20, 0x3, 0x20, 0x9}, 0x2f)
socket$netlink(0x10, 0x3, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
r3 = fanotify_init(0x200, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/resume_offset', 0x102, 0x0)
fanotify_mark(r3, 0x39, 0x1a, r4, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r5}, &(0x7f0000000340), &(0x7f0000000380)=r6}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
fanotify_mark(r3, 0x1, 0x4800003e, r2, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=ANY=[@ANYBLOB="300000001300f5d10300"/20, @ANYRES32=r8, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\r'], 0x30}, 0x1, 0x0, 0x0, 0x20040010}, 0x0)

0s ago: executing program 5 (id=1919):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='devices.list\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)

kernel console output (not intermixed with test programs):

led
[  871.581667][ T9796] FAT-fs (loop0): Directory bread(block 69) failed
[  871.591313][ T9796] FAT-fs (loop0): Directory bread(block 70) failed
[  871.599881][ T9796] FAT-fs (loop0): Directory bread(block 71) failed
[  871.609038][ T9796] FAT-fs (loop0): Directory bread(block 72) failed
[  871.618525][ T9796] FAT-fs (loop0): Directory bread(block 73) failed
[  872.019523][ T9804] fuse: Unknown parameter 'group_i00000000000000000000'
[  873.320617][ T9808] overlayfs: unrecognized mount option "U'" or missing value
[  873.752307][ T9813] loop2: detected capacity change from 0 to 256
[  873.853607][ T9813] FAT-fs (loop2): Directory bread(block 64) failed
[  873.860303][ T9813] FAT-fs (loop2): Directory bread(block 65) failed
[  873.963672][ T9813] FAT-fs (loop2): Directory bread(block 66) failed
[  873.987941][ T9813] FAT-fs (loop2): Directory bread(block 67) failed
[  874.068567][ T9813] FAT-fs (loop2): Directory bread(block 68) failed
[  874.142137][ T9813] FAT-fs (loop2): Directory bread(block 69) failed
[  874.613769][ T9813] FAT-fs (loop2): Directory bread(block 70) failed
[  874.620368][ T9813] FAT-fs (loop2): Directory bread(block 71) failed
[  874.647772][ T9813] FAT-fs (loop2): Directory bread(block 72) failed
[  874.751093][ T9813] FAT-fs (loop2): Directory bread(block 73) failed
[  875.001425][ T9818] siw: device registration error -23
[  875.272657][ T9819] overlayfs: unrecognized mount option "U'" or missing value
[  875.703026][ T9824] loop3: detected capacity change from 0 to 256
[  876.134548][ T9824] FAT-fs (loop3): Directory bread(block 64) failed
[  876.153696][ T9824] FAT-fs (loop3): Directory bread(block 65) failed
[  876.170588][ T9824] FAT-fs (loop3): Directory bread(block 66) failed
[  876.213419][ T9824] FAT-fs (loop3): Directory bread(block 67) failed
[  876.254591][ T9824] FAT-fs (loop3): Directory bread(block 68) failed
[  876.271399][ T9824] FAT-fs (loop3): Directory bread(block 69) failed
[  876.291755][ T9824] FAT-fs (loop3): Directory bread(block 70) failed
[  876.298798][ T9824] FAT-fs (loop3): Directory bread(block 71) failed
[  876.313509][ T9824] FAT-fs (loop3): Directory bread(block 72) failed
[  876.326126][ T9824] FAT-fs (loop3): Directory bread(block 73) failed
[  877.672738][ T9836] loop0: detected capacity change from 0 to 256
[  877.753141][ T9836] FAT-fs (loop0): Directory bread(block 64) failed
[  877.819906][ T9836] FAT-fs (loop0): Directory bread(block 65) failed
[  877.943622][ T9836] FAT-fs (loop0): Directory bread(block 66) failed
[  877.950218][ T9836] FAT-fs (loop0): Directory bread(block 67) failed
[  877.993254][ T9836] FAT-fs (loop0): Directory bread(block 68) failed
[  878.025887][ T9836] FAT-fs (loop0): Directory bread(block 69) failed
[  878.032569][ T9836] FAT-fs (loop0): Directory bread(block 70) failed
[  878.039711][ T9836] FAT-fs (loop0): Directory bread(block 71) failed
[  878.046422][ T9836] FAT-fs (loop0): Directory bread(block 72) failed
[  878.052977][ T9836] FAT-fs (loop0): Directory bread(block 73) failed
[  878.371520][ T9848] fuse: Unknown parameter 'group_id00000000000000000000'
[  879.149344][ T9849] overlayfs: unrecognized mount option "U'" or missing value
[  881.203615][ T9868] loop4: detected capacity change from 0 to 256
[  881.211574][ T9868] exfat: Bad value for 'uid'
[  881.265801][ T9772] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  881.283593][ T9868] 9pnet: p9_errstr2errno: server reported unknown error ª4Ñ:χ+»ü[³½‹,þM¹ƒŽ”01777777777777777777777
[  881.775993][ T9883] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  881.822589][ T9883] capability: warning: `syz.0.1371' uses 32-bit capabilities (legacy support in use)
[  882.580731][ T9888] loop3: detected capacity change from 0 to 1024
[  882.843464][ T4302] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  882.896609][   T46] hfsplus: b-tree write err: -5, ino 4
[  883.000336][ T9894] loop0: detected capacity change from 0 to 1024
[  883.037807][ T9894] EXT4-fs: Ignoring removed bh option
[  883.044841][ T4302] usb 2-1: Using ep0 maxpacket: 32
[  883.060674][ T4302] usb 2-1: unable to get BOS descriptor or descriptor too short
[  883.097266][ T4302] usb 2-1: config 54 has an invalid interface number: 104 but max is 0
[  883.112576][ T9900] loop4: detected capacity change from 0 to 512
[  883.128265][ T4302] usb 2-1: config 54 has no interface number 0
[  883.136493][ T9900] EXT4-fs: quotafile must be on filesystem root
[  883.143723][ T4302] usb 2-1: config 54 interface 104 has no altsetting 0
[  883.160620][ T4302] usb 2-1: New USB device found, idVendor=257a, idProduct=3603, bcdDevice=43.56
[  883.170158][ T9894] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  883.180746][ T4302] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  883.191493][ T4302] usb 2-1: Product: syz
[  883.196175][ T4302] usb 2-1: Manufacturer: syz
[  883.200821][ T4302] usb 2-1: SerialNumber: syz
[  883.233676][ T9771] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  883.314940][ T9900] loop4: detected capacity change from 0 to 512
[  883.319982][ T9905] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  883.403024][ T4269] EXT4-fs (loop0): unmounting filesystem.
[  883.426161][ T4302] option 2-1:54.104: GSM modem (1-port) converter detected
[  883.497093][ T4302] usb 2-1: USB disconnect, device number 2
[  883.550388][ T4302] option 2-1:54.104: device disconnected
[  883.598327][ T9913] loop0: detected capacity change from 0 to 732
[  883.692230][ T9910] loop3: detected capacity change from 0 to 4096
[  883.806204][ T9910] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  883.949318][ T9922] loop2: detected capacity change from 0 to 512
[  883.955882][ T9921] lo speed is unknown, defaulting to 1000
[  883.986645][ T9922] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  883.986665][ T9922] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  884.012172][ T9922] EXT4-fs (loop2): 1 truncate cleaned up
[  884.012211][ T9922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  884.050875][ T9910] EXT4-fs error (device loop3): ext4_get_first_dir_block:3603: inode #12: block 80: comm syz.3.1383: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  884.096186][ T9910] EXT4-fs error (device loop3): ext4_get_first_dir_block:3605: inode #12: comm syz.3.1383: directory missing '..'
[  884.208943][ T4254] EXT4-fs (loop3): unmounting filesystem.
[  884.381844][ T9929] device veth0_to_hsr entered promiscuous mode
[  884.476185][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  884.524911][ T9929] device veth0_to_hsr left promiscuous mode
[  884.812428][ T9944] loop4: detected capacity change from 0 to 256
[  884.825962][ T9941] loop1: detected capacity change from 0 to 1024
[  884.866759][ T9941] EXT4-fs: Ignoring removed orlov option
[  884.872522][ T9941] EXT4-fs: Ignoring removed nomblk_io_submit option
[  884.975138][ T9941] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  885.120849][ T9951] process 'syz.1.1394' launched './file1' with NULL argv: empty string added
[  885.199564][ T9950] loop4: detected capacity change from 0 to 4096
[  885.295778][ T9950] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  885.322203][ T9938] loop3: detected capacity change from 0 to 32768
[  885.371851][ T9938]  loop3: p1 p3 < p5 p6 >
[  885.414198][ T9950] EXT4-fs (loop4): Online resizing not supported with bigalloc
[  885.497578][ T4252] EXT4-fs (loop1): unmounting filesystem.
[  885.504567][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  886.215183][ T9968] loop0: detected capacity change from 0 to 2048
[  886.307485][ T9771] udevd[9771]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  886.307614][ T9758] udevd[9758]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[  886.322500][ T9908] udevd[9908]: inotify_add_watch(7, /dev/loop3p6, 10) failed: No such file or directory
[  886.370920][ T9968] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  886.426383][ T9769] udevd[9769]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  886.692967][ T9980] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1404'.
[  886.748910][ T9982] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1406'.
[  886.950068][ T4269] EXT4-fs error (device loop0): ext4_map_blocks:635: inode #2: block 16: comm syz-executor: lblock 0 mapped to illegal pblock 16 (length 1)
[  887.074386][ T4269] EXT4-fs (loop0): unmounting filesystem.
[  887.309392][ T9997] loop3: detected capacity change from 0 to 2048
[  887.581506][ T9997]  loop3: p1 < > p3
[  887.590567][T10006] loop2: detected capacity change from 0 to 2048
[  887.597203][ T9997] loop3: p3 size 134217728 extends beyond EOD, truncated
[  888.279001][T10008] loop1: detected capacity change from 0 to 256
[  888.318661][T10006] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  888.789146][ T4477] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  888.822663][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  888.987742][ T9771] udevd[9771]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  888.996348][ T9772] udevd[9772]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  889.061228][T10024] loop2: detected capacity change from 0 to 512
[  889.081549][ T4477] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.160325][T10024] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002]
[  889.215121][T10024] System zones: 0-2, 18-18, 34-35
[  889.270054][ T4477] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.270847][T10024] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  889.305683][T10033] loop1: detected capacity change from 0 to 128
[  889.318551][T10032] loop3: detected capacity change from 0 to 1024
[  889.324247][T10024] ext4 filesystem being mounted at /296/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  889.371668][T10033] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  889.457040][T10033] ext4 filesystem being mounted at /291/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  889.548898][   T26] audit: type=1800 audit(1747774633.120:2): pid=10032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1426" name="file1" dev="loop3" ino=20 res=0 errno=0
[  889.580608][T10036] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  889.591581][T10036] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  889.599528][T10036] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  889.602180][ T4477] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.607556][T10036] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  889.625820][T10036] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  889.633134][T10036] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  889.651400][T10033] fscrypt (loop1, inode 12): Unsupported encryption modes (contents 0, filenames 0)
[  889.741662][ T4252] EXT4-fs (loop1): unmounting filesystem.
[  889.806067][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  889.906039][T10035] lo speed is unknown, defaulting to 1000
[  890.025946][T10046] loop1: detected capacity change from 0 to 128
[  890.038435][T10043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1430'.
[  890.064937][T10046] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  890.172942][T10046] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  890.236684][T10049] loop4: detected capacity change from 0 to 128
[  890.293948][T10049] EXT4-fs: Ignoring removed nobh option
[  890.336972][T10049] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  890.364736][T10054] loop3: detected capacity change from 0 to 512
[  890.378886][T10049] ext4 filesystem being mounted at /291/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  890.383110][T10053] loop2: detected capacity change from 0 to 512
[  890.442167][T10054] ext4: Unknown parameter 'nouser_xattr'
[  890.475216][T10053] EXT4-fs (loop2): orphan cleanup on readonly fs
[  890.509066][   T26] audit: type=1326 audit(1747774634.080:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.4.1432" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5e6ab8e969 code=0x0
[  890.543859][T10053] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #4: comm syz.2.1434: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  890.644381][T10053] EXT4-fs error (device loop2): ext4_quota_enable:7013: comm syz.2.1434: Bad quota inode: 4, type: 1
[  890.683231][T10053] EXT4-fs warning (device loop2): ext4_enable_quotas:7054: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  890.739306][T10053] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  890.750194][T10053] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  890.806674][ T4484] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  891.117086][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  891.193514][ T4302] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  891.415712][ T4302] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  891.658234][ T4302] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  891.710355][T10036] Bluetooth: hci4: command 0x0409 tx timeout
[  891.742395][ T4302] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  891.752065][ T4302] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  891.810475][ T4302] hub 2-1:4.0: USB hub found
[  891.908862][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  892.051927][T10035] chnl_net:caif_netlink_parms(): no params data found
[  892.064638][ T4302] hub 2-1:4.0: 12 ports detected
[  892.069664][ T4302] usb 2-1: selecting invalid altsetting 1
[  892.077821][ T4302] hub 2-1:4.0: Using single TT (err -22)
[  892.084580][ T4302] hub 2-1:4.0: insufficient power available to use all downstream ports
[  892.278594][ T4302] hub 2-1:4.0: hub_hub_status failed (err = -71)
[  892.299522][ T4302] hub 2-1:4.0: config failed, can't get hub status (err -71)
[  892.366698][ T4302] usb 2-1: USB disconnect, device number 3
[  892.563521][T10097] support for the xor transformation has been removed.
[  892.687679][T10035] bridge0: port 1(bridge_slave_0) entered blocking state
[  892.709552][T10035] bridge0: port 1(bridge_slave_0) entered disabled state
[  892.741883][T10035] device bridge_slave_0 entered promiscuous mode
[  892.767882][T10035] bridge0: port 2(bridge_slave_1) entered blocking state
[  892.776874][T10035] bridge0: port 2(bridge_slave_1) entered disabled state
[  892.916503][T10035] device bridge_slave_1 entered promiscuous mode
[  893.087247][T10109] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  893.264976][ T6121] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  893.493825][ T6121] usb 3-1: Using ep0 maxpacket: 8
[  893.516247][ T6121] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  893.692262][ T6121] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  893.739981][ T6121] usb 3-1: config 0 descriptor??
[  893.773889][T10036] Bluetooth: hci4: command 0x041b tx timeout
[  893.880510][T10115] loop3: detected capacity change from 0 to 1024
[  893.944832][T10035] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  894.012520][T10035] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  894.132039][T10115] hfsplus: xattr search failed
[  894.214048][ T6121] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  894.245532][ T6121] asix 3-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[  894.246138][T10125] loop1: detected capacity change from 0 to 512
[  894.274143][ T6121] asix: probe of 3-1:0.0 failed with error -32
[  894.559526][T10035] team0: Port device team_slave_0 added
[  894.592105][T10115] lo speed is unknown, defaulting to 1000
[  894.627748][T10035] team0: Port device team_slave_1 added
[  894.655921][ T4477] device hsr_slave_0 left promiscuous mode
[  894.674123][ T4477] device hsr_slave_1 left promiscuous mode
[  894.685784][ T4477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  894.698333][ T4477] batman_adv: batadv0: Removing interface: batadv_slave_0
[  894.707663][ T4477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  894.726185][ T4477] batman_adv: batadv0: Removing interface: batadv_slave_1
[  894.741905][ T4477] device bridge_slave_1 left promiscuous mode
[  894.755010][ T4477] bridge0: port 2(bridge_slave_1) entered disabled state
[  894.768032][ T4477] device bridge_slave_0 left promiscuous mode
[  894.775109][ T4477] bridge0: port 1(bridge_slave_0) entered disabled state
[  894.788131][T10125] EXT4-fs (loop1): Test dummy encryption mode enabled
[  894.820293][T10125] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz.1.1451: inline data xattr refers to an external xattr inode
[  894.837577][T10125] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1451: couldn't read orphan inode 12 (err -117)
[  894.851983][ T4477] device veth1_macvtap left promiscuous mode
[  894.854354][T10125] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  894.859313][ T4477] device veth0_macvtap left promiscuous mode
[  894.874553][ T4477] device veth1_vlan left promiscuous mode
[  894.880685][ T4477] device veth0_vlan left promiscuous mode
[  894.897532][T10125] EXT4-fs (loop1): unmounting filesystem.
[  894.932392][T10141] loop2: detected capacity change from 0 to 512
[  894.943793][ T3519] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  895.100332][T10141] EXT4-fs (loop2): 1 orphan inode deleted
[  895.108224][   T46] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  895.135661][ T3519] usb 5-1: config 9 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  895.144616][   T46] EXT4-fs error (device loop2): ext4_release_dquot:6838: comm kworker/u4:3: Failed to release dquot type 1
[  895.151579][T10141] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  895.178033][ T3519] usb 5-1: config 9 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  895.189462][T10141] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  895.219819][ T3519] usb 5-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  895.242130][ T3519] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  895.818553][ T4477] team0 (unregistering): Port device team_slave_1 removed
[  895.853498][T10036] Bluetooth: hci4: command 0x040f tx timeout
[  895.878334][ T4477] team0 (unregistering): Port device team_slave_0 removed
[  895.933206][ T4477] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  895.988675][ T4477] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  896.099216][ T3519] hid-led: probe of 0003:27B8:01ED.0001 failed with error -71
[  896.119148][ T3519] usb 5-1: USB disconnect, device number 2
[  896.495692][ T4477] bond0 (unregistering): Released all slaves
[  896.689090][ T4254] hfsplus: node 4:3 still has 2 user(s)!
[  896.726604][ T6308] usb 3-1: USB disconnect, device number 2
[  896.750629][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  896.815318][T10156] loop4: detected capacity change from 0 to 8
[  896.917479][T10160] loop2: detected capacity change from 0 to 1024
[  896.936704][T10160] EXT4-fs: Invalid want_extra_isize 136960
[  897.019147][T10035] batman_adv: batadv0: Adding interface: batadv_slave_0
[  897.084110][T10035] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  897.206081][T10163] loop3: detected capacity change from 0 to 512
[  897.213245][T10035] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  897.243159][T10167] loop4: detected capacity change from 0 to 512
[  897.259061][T10163] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  897.290817][T10035] batman_adv: batadv0: Adding interface: batadv_slave_1
[  897.317966][T10167] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1459: casefold flag without casefold feature
[  897.367565][T10035] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  897.418584][T10163] EXT4-fs (loop3): 1 truncate cleaned up
[  897.451120][T10163] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  897.527344][T10035] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  897.538108][   T26] audit: type=1800 audit(1747774641.100:4): pid=10163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1461" name="file1" dev="loop3" ino=15 res=0 errno=0
[  897.566753][T10163] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.1461: corrupted in-inode xattr
[  897.585818][T10167] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1459: couldn't read orphan inode 15 (err -117)
[  897.588429][T10174] loop1: detected capacity change from 0 to 512
[  897.643664][T10167] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  897.684943][T10163] EXT4-fs warning (device loop3): ext4_xattr_set_entry:1732: inode #15: comm syz.3.1461: unable to update i_inline_off
[  897.713181][T10035] device hsr_slave_0 entered promiscuous mode
[  897.716943][T10178] EXT4-fs error (device loop3): ext4_xattr_ibody_list:748: inode #15: comm syz.3.1461: corrupted in-inode xattr
[  897.744351][T10174] EXT4-fs: Ignoring removed nomblk_io_submit option
[  897.773001][T10174] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  897.783871][T10035] device hsr_slave_1 entered promiscuous mode
[  897.810934][T10163] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.1461: corrupted in-inode xattr
[  897.823154][T10035] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  897.837406][T10035] Cannot create hsr debugfs directory
[  897.874260][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  897.895103][T10174] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #16: comm syz.1.1463: corrupted inode contents
[  897.933445][T10036] Bluetooth: hci4: command 0x0419 tx timeout
[  898.044215][T10174] EXT4-fs error (device loop1): ext4_dirty_inode:6118: inode #16: comm syz.1.1463: mark_inode_dirty error
[  898.081951][ T4254] EXT4-fs (loop3): unmounting filesystem.
[  898.202308][T10188] loop4: detected capacity change from 0 to 512
[  898.231932][T10174] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #16: comm syz.1.1463: corrupted inode contents
[  898.295335][T10174] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.1463: mark_inode_dirty error
[  898.310313][T10191] loop3: detected capacity change from 0 to 128
[  898.343367][T10174] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #16: comm syz.1.1463: corrupted inode contents
[  898.383145][T10188] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  898.456913][T10174] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  898.457660][T10188] ext4 filesystem being mounted at /302/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  898.492773][T10174] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #16: comm syz.1.1463: corrupted inode contents
[  898.580692][T10174] EXT4-fs error (device loop1): ext4_truncate:4312: inode #16: comm syz.1.1463: mark_inode_dirty error
[  898.595135][T10188] EXT4-fs error (device loop4): ext4_generic_delete_entry:2729: inode #12: block 32: comm syz.4.1465: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[  898.636261][T10188] EXT4-fs error (device loop4) in ext4_delete_entry:2800: Corrupt filesystem
[  898.649916][T10174] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  898.699108][T10035] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  898.717845][T10174] EXT4-fs (loop1): 1 truncate cleaned up
[  898.743368][ T8804] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  898.757764][T10174] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  898.770502][ T4724] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  898.782504][T10201] loop3: detected capacity change from 0 to 1024
[  898.786796][T10035] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  898.802731][ T4724] EXT4-fs error (device loop1): ext4_release_dquot:6838: comm kworker/u4:18: Failed to release dquot type 1
[  898.822656][T10174] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  898.835778][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  898.892030][T10174] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  898.908977][T10035] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  898.946034][T10174] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  898.958106][ T8804] usb 3-1: Using ep0 maxpacket: 16
[  898.985532][ T8804] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  899.008229][T10174] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.1463: Failed to acquire dquot type 1
[  899.041713][ T8804] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  899.085274][ T8804] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  899.104084][T10208] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  899.129149][ T8804] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  899.144072][T10208] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  899.157474][ T8804] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  899.167029][T10208] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.1463: Failed to acquire dquot type 1
[  899.188196][ T8804] usb 3-1: config 0 descriptor??
[  899.204538][T10035] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  899.395220][ T4252] EXT4-fs (loop1): unmounting filesystem.
[  899.522055][T10214] loop3: detected capacity change from 0 to 1024
[  899.608067][ T8804] HID 045e:07da: Invalid code 65791 type 1
[  899.630184][ T8804] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0002/input/input5
[  899.667708][ T8804] microsoft 0003:045E:07DA.0002: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  899.847679][T10035] 8021q: adding VLAN 0 to HW filter on device bond0
[  899.854908][ T4315] hfsplus: b-tree write err: -5, ino 4
[  899.971292][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  900.020913][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  900.059189][ T8804] usb 3-1: USB disconnect, device number 3
[  900.109565][T10229] loop3: detected capacity change from 0 to 256
[  900.143772][T10035] 8021q: adding VLAN 0 to HW filter on device team0
[  900.194445][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  900.228939][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  900.273638][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[  900.280796][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[  900.290844][T10224] loop4: detected capacity change from 0 to 4096
[  900.325186][T10220] fido_id[10220]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  900.345323][T10224] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  900.363620][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  900.379439][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  900.391628][T10224] EXT4-fs (loop4): Test dummy encryption mode enabled
[  900.413827][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[  900.420960][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[  900.455875][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  900.532657][T10224] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  900.549330][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  900.594500][T10235] loop3: detected capacity change from 0 to 1024
[  900.604852][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  900.664756][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  900.724969][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  900.808480][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  900.822725][T10224] fscrypt (loop4): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))")
[  900.868375][ T4477] hfsplus: b-tree write err: -5, ino 8
[  900.905534][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  900.960314][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  901.034165][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  901.074008][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  901.095956][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  901.328281][T10035] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  901.431889][T10035] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  901.509061][T10259] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  902.062723][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  902.076307][T10261] loop2: detected capacity change from 0 to 1024
[  902.084237][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  902.144368][   T26] audit: type=1800 audit(1747774645.720:5): pid=10261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1482" name="file1" dev="loop2" ino=20 res=0 errno=0
[  902.198257][T10261] syz.2.1482: attempt to access beyond end of device
[  902.198257][T10261] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  902.237859][   T26] audit: type=1800 audit(1747774645.740:6): pid=10261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1482" name="file1" dev="loop2" ino=20 res=0 errno=0
[  902.313839][T10261] Buffer I/O error on dev loop2, logical block 2889, async page read
[  902.354977][T10257] syz.2.1482: attempt to access beyond end of device
[  902.354977][T10257] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  902.463524][T10257] Buffer I/O error on dev loop2, logical block 2889, async page read
[  902.486036][T10261] syz.2.1482: attempt to access beyond end of device
[  902.486036][T10261] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  902.623427][T10261] Buffer I/O error on dev loop2, logical block 2889, async page read
[  902.652785][T10257] syz.2.1482: attempt to access beyond end of device
[  902.652785][T10257] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  902.708671][T10276] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1484'.
[  902.792159][T10257] Buffer I/O error on dev loop2, logical block 2889, async page read
[  902.826861][T10282] 9pnet: p9_errstr2errno: server reported unknown error J7œÍÉJ5ºÊ
[  902.860086][T10261] syz.2.1482: attempt to access beyond end of device
[  902.860086][T10261] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  902.918783][T10261] Buffer I/O error on dev loop2, logical block 2889, async page read
[  902.943717][T10261] syz.2.1482: attempt to access beyond end of device
[  902.943717][T10261] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  903.023337][T10261] Buffer I/O error on dev loop2, logical block 2889, async page read
[  903.063198][T10287] loop4: detected capacity change from 0 to 256
[  903.079429][T10289] loop3: detected capacity change from 0 to 512
[  903.093533][T10257] syz.2.1482: attempt to access beyond end of device
[  903.093533][T10257] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  903.115020][T10289] EXT4-fs: Ignoring removed nobh option
[  903.128100][T10289] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  903.166068][T10287] FAT-fs (loop4): Directory bread(block 64) failed
[  903.175272][T10257] Buffer I/O error on dev loop2, logical block 2889, async page read
[  903.186733][T10287] FAT-fs (loop4): Directory bread(block 65) failed
[  903.208398][T10289] EXT4-fs (loop3): 1 truncate cleaned up
[  903.219135][T10289] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  903.222165][T10261] syz.2.1482: attempt to access beyond end of device
[  903.222165][T10261] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  903.228445][T10287] FAT-fs (loop4): Directory bread(block 66) failed
[  903.263425][T10287] FAT-fs (loop4): Directory bread(block 67) failed
[  903.270198][T10287] FAT-fs (loop4): Directory bread(block 68) failed
[  903.325509][T10287] FAT-fs (loop4): Directory bread(block 69) failed
[  903.332197][T10287] FAT-fs (loop4): Directory bread(block 70) failed
[  903.334278][T10261] Buffer I/O error on dev loop2, logical block 2889, async page read
[  903.347244][T10257] syz.2.1482: attempt to access beyond end of device
[  903.347244][T10257] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  903.360869][T10257] Buffer I/O error on dev loop2, logical block 2889, async page read
[  903.369237][T10261] syz.2.1482: attempt to access beyond end of device
[  903.369237][T10261] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  903.383959][ T6121] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  903.394675][T10287] FAT-fs (loop4): Directory bread(block 71) failed
[  903.401330][T10287] FAT-fs (loop4): Directory bread(block 72) failed
[  903.408524][T10261] Buffer I/O error on dev loop2, logical block 2889, async page read
[  903.417947][T10287] FAT-fs (loop4): Directory bread(block 73) failed
[  903.469427][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  903.484052][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  903.538645][T10035] 8021q: adding VLAN 0 to HW filter on device batadv0
[  903.595376][ T6121] usb 2-1: config 0 has an invalid interface number: 52 but max is 0
[  903.613776][ T6121] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  903.655130][ T6121] usb 2-1: config 0 has no interface number 0
[  903.665285][ T6121] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  903.819612][ T4254] EXT4-fs (loop3): unmounting filesystem.
[  903.904048][ T6121] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  903.914897][ T6121] usb 2-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  903.928525][ T6121] usb 2-1: config 0 interface 52 has no altsetting 0
[  903.938531][ T6121] usb 2-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  903.947957][ T6121] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  903.956421][ T6121] usb 2-1: SerialNumber: syz
[  903.964242][ T6121] usb 2-1: config 0 descriptor??
[  904.226990][ T6121] synaptics_usb 2-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  904.550184][ T6121] synaptics_usb: probe of 2-1:0.52 failed with error -5
[  904.730946][T10308] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1489'.
[  904.770007][ T6121] usb 2-1: USB disconnect, device number 4
[  905.069385][ T9757] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  905.243638][ T6697] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  905.306082][ T9757] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  905.330066][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  905.343357][ T9757] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  905.349620][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  905.374036][ T9757] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  905.383150][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  905.383156][ T9757] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  905.407148][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  905.448630][ T9757] usb 4-1: SerialNumber: syz
[  905.455181][T10035] device veth0_vlan entered promiscuous mode
[  905.462381][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  905.471851][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  905.479148][ T6697] usb 5-1: Using ep0 maxpacket: 32
[  905.489324][ T6697] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  905.493021][T10035] device veth1_vlan entered promiscuous mode
[  905.549267][ T6697] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  905.566795][ T6697] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  905.578786][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  905.586491][ T6697] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  905.586521][ T6697] usb 5-1: Product: syz
[  905.625584][T10036] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  905.634259][T10036] Bluetooth: hci2: Injecting HCI hardware error event
[  905.641676][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  905.642930][T10036] Bluetooth: hci2: hardware error 0x00
[  905.676107][ T6697] usb 5-1: Manufacturer: syz
[  905.679352][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  905.681009][ T6697] usb 5-1: SerialNumber: syz
[  905.711679][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  905.732133][ T9757] usb 4-1: 0:2 : does not exist
[  905.756283][T10035] device veth0_macvtap entered promiscuous mode
[  905.760368][ T9757] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  905.866814][ T9757] usb 4-1: USB disconnect, device number 2
[  905.879249][T10035] device veth1_macvtap entered promiscuous mode
[  905.950093][ T6697] usb 5-1: Audio class v2/v3 interfaces need an interface association
[  905.986989][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  906.003649][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.018522][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  906.047746][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.065671][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  906.066619][ T6697] snd-usb-audio: probe of 5-1:1.0 failed with error -22
[  906.087019][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.099352][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  906.106284][ T9772] udevd[9772]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  906.129068][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.149659][T10035] batman_adv: batadv0: Interface activated: batadv_slave_0
[  906.172482][ T6697] usb 5-1: USB disconnect, device number 3
[  906.190130][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  906.201597][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  906.218756][ T9769] udevd[9769]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  906.219456][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  906.254562][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  906.271457][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.308664][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.316170][   T22] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  906.328904][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.369993][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.413678][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.434552][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.471286][T10035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.488240][T10035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.521367][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  906.538532][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  906.544821][T10035] batman_adv: batadv0: Interface activated: batadv_slave_1
[  906.566869][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  906.580322][   T22] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  906.599674][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  906.623535][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  906.642784][   T22] usb 3-1: config 0 descriptor??
[  906.644508][T10035] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  906.667425][T10035] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  906.687076][T10035] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  906.703766][T10349] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1499'.
[  906.713394][T10035] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  906.957175][ T4309] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  907.008805][ T4309] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  907.049273][T10354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1502'.
[  907.094639][ T4793] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  907.106952][   T22] hid-led 0003:0FC5:B080.0003: item fetching failed at offset 0/3
[  907.131289][ T4309] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  907.131986][   T22] hid-led: probe of 0003:0FC5:B080.0003 failed with error -22
[  907.153496][ T4309] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  907.192662][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  907.321955][   T22] usb 3-1: USB disconnect, device number 4
[  907.431158][T10368] netlink: 'syz.5.1422': attribute type 4 has an invalid length.
[  907.546473][T10371] loop3: detected capacity change from 0 to 512
[  907.621347][T10371] EXT4-fs (loop3): orphan cleanup on readonly fs
[  907.629100][T10371] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  907.704406][T10374] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  907.773764][T10036] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  907.857398][T10370] netlink: 'syz.5.1422': attribute type 4 has an invalid length.
[  907.903933][T10371] EXT4-fs (loop3): 1 truncate cleaned up
[  908.294051][T10371] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  908.404560][T10369] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[  908.691371][T10390] loop1: detected capacity change from 0 to 512
[  908.826154][ T8804] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  908.834075][T10390] EXT4-fs: Ignoring removed nobh option
[  908.888513][T10390] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1509: invalid indirect mapped block 256 (level 2)
[  908.917580][T10396] loop4: detected capacity change from 0 to 256
[  908.922168][T10383] kvm [10382]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0
[  908.979273][T10390] EXT4-fs (loop1): 2 truncates cleaned up
[  908.986079][T10383] kvm [10382]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0
[  909.012465][T10390] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  909.019900][T10383] kvm [10382]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0
[  909.032302][ T8804] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  909.073367][ T8804] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  909.094063][   T26] audit: type=1800 audit(1747774652.670:7): pid=10390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1509" name="file1" dev="loop1" ino=15 res=0 errno=0
[  909.100909][T10383] kvm [10382]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0
[  909.124290][T10396] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  909.151367][ T8804] usb 3-1: config 0 interface 0 has no altsetting 0
[  909.194313][T10386] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.1509: bg 0: block 5: invalid block bitmap
[  909.219125][ T8804] usb 3-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  909.258752][ T8804] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  909.285962][T10383] kvm [10382]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0
[  909.305094][ T8804] usb 3-1: config 0 descriptor??
[  909.311015][T10381] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  909.352067][ T4254] EXT4-fs (loop3): unmounting filesystem.
[  909.650666][T10404] loop4: detected capacity change from 0 to 512
[  909.736716][T10404] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  909.745780][ T8804] logitech 0003:046D:C24F.0004: unbalanced delimiter at end of report description
[  909.772037][ T4252] EXT4-fs (loop1): unmounting filesystem.
[  909.818962][T10404] EXT4-fs (loop4): 1 truncate cleaned up
[  909.839734][ T8804] logitech 0003:046D:C24F.0004: parse failed
[  909.942778][T10404] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  910.019031][ T8804] logitech: probe of 0003:046D:C24F.0004 failed with error -22
[  910.450503][ T8804] usb 3-1: USB disconnect, device number 5
[  910.872009][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  910.987568][T10423] loop2: detected capacity change from 0 to 512
[  911.053960][T10423] EXT4-fs: Ignoring removed nobh option
[  911.142533][T10423] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1517: invalid indirect mapped block 256 (level 2)
[  911.409088][T10423] EXT4-fs (loop2): 2 truncates cleaned up
[  912.247298][T10036] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  912.265773][T10036] Bluetooth: hci1: Injecting HCI hardware error event
[  912.275813][ T4256] Bluetooth: hci1: hardware error 0x00
[  912.531297][T10423] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  912.703580][T10443] loop3: detected capacity change from 0 to 256
[  912.783043][T10443] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000e8a4, chksum : 0x7bc75166, utbl_chksum : 0xe619d30d)
[  912.931340][T10451] usb usb8: usbfs: process 10451 (syz.4.1525) did not claim interface 0 before use
[  912.976154][T10443] exFAT-fs (loop3): error, found bogus dentry(11) beyond unused empty group(10) (start_clu : 5, cur_clu : 5)
[  913.086779][T10443] exFAT-fs (loop3): Filesystem has been set read-only
[  913.313362][ T8804] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  913.388392][T10435] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  913.506999][ T8804] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  913.558269][ T8804] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  913.602531][T10472] loop3: detected capacity change from 0 to 256
[  913.609094][ T8804] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  913.609126][ T8804] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  913.609148][ T8804] usb 3-1: SerialNumber: syz
[  913.741942][T10472] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  913.839727][T10472] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  913.952307][   T26] audit: type=1800 audit(1747774657.520:8): pid=10472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1527" name="file1" dev="loop3" ino=1048626 res=0 errno=0
[  914.471434][ T8804] usb 3-1: 0:2 : does not exist
[  914.528024][ T8804] usb 3-1: USB disconnect, device number 6
[  914.534992][T10487] loop4: detected capacity change from 0 to 2048
[  914.619630][T10487] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  914.738401][T10487] UDF-fs: error (device loop4): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1328)
[  914.744068][ T4256] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  914.817562][T10487] UDF-fs: error (device loop4): udf_verify_fi: directory (ino 1328) has too big (1064) entry at pos 0
[  914.829029][T10379] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  914.864573][    T9] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.097490][    T9] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.110347][ T4366] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 200 with error 28
[  915.182544][ T4366] EXT4-fs (loop2): This should not happen!! Data will be lost
[  915.182544][ T4366] 
[  915.212325][ T4366] EXT4-fs (loop2): Total free blocks count 0
[  915.263355][ T4366] EXT4-fs (loop2): Free/Dirty block details
[  915.269367][ T4366] EXT4-fs (loop2): free_blocks=0
[  915.276583][    T9] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.303641][ T4366] EXT4-fs (loop2): dirty_blocks=204
[  915.325794][ T4366] EXT4-fs (loop2): Block reservation details
[  915.343696][ T4366] EXT4-fs (loop2): i_reserved_data_blocks=204
[  915.384755][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  915.450641][    T9] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.570062][T10504] loop4: detected capacity change from 0 to 512
[  915.645506][T10504] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  915.707056][T10504] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  915.739264][T10504] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  915.772339][T10504] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  915.798983][T10504] System zones: 0-2, 18-18, 34-35
[  915.838086][T10504] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  915.852271][T10511] loop5: detected capacity change from 0 to 512
[  915.887664][T10511] EXT4-fs (loop5): Test dummy encryption mode enabled
[  915.949773][T10504] EXT4-fs (loop4): unmounting filesystem.
[  915.958565][T10511] EXT4-fs error (device loop5): ext4_find_inline_data_nolock:164: inode #12: comm syz.5.1539: inline data xattr refers to an external xattr inode
[  916.005317][T10511] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1539: couldn't read orphan inode 12 (err -117)
[  916.081763][T10511] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  916.139416][T10511] EXT4-fs (loop5): unmounting filesystem.
[  916.470016][T10528] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  916.593431][ T4261] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  916.606242][ T4261] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  916.620443][ T4261] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  916.630807][ T4261] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  916.649972][ T4261] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  916.659310][ T4261] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  917.311414][T10550] loop2: detected capacity change from 0 to 512
[  917.393896][T10551] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  917.454386][ T4261] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  917.467136][ T4261] Bluetooth: hci4: Injecting HCI hardware error event
[  917.479219][ T4256] Bluetooth: hci4: hardware error 0x00
[  918.295272][T10558] loop2: detected capacity change from 0 to 1024
[  918.303042][T10558] EXT4-fs: Ignoring removed bh option
[  918.319772][T10558] ext4: Unknown parameter 'rootcontext'
[  918.610914][T10562] loop4: detected capacity change from 0 to 256
[  918.677278][T10562] FAT-fs (loop4): Directory bread(block 64) failed
[  918.700281][T10562] FAT-fs (loop4): Directory bread(block 65) failed
[  918.714730][T10562] FAT-fs (loop4): Directory bread(block 66) failed
[  918.721405][T10562] FAT-fs (loop4): Directory bread(block 67) failed
[  918.729229][T10562] FAT-fs (loop4): Directory bread(block 68) failed
[  918.735902][T10562] FAT-fs (loop4): Directory bread(block 69) failed
[  918.740829][ T4261] Bluetooth: hci2: command 0x0409 tx timeout
[  918.742538][T10562] FAT-fs (loop4): Directory bread(block 70) failed
[  918.756283][T10562] FAT-fs (loop4): Directory bread(block 71) failed
[  918.764458][T10562] FAT-fs (loop4): Directory bread(block 72) failed
[  918.771032][T10562] FAT-fs (loop4): Directory bread(block 73) failed
[  919.623685][ T4256] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  920.813439][ T4256] Bluetooth: hci2: command 0x041b tx timeout
[  922.739658][T10531] lo speed is unknown, defaulting to 1000
[  922.893355][ T4256] Bluetooth: hci2: command 0x040f tx timeout
[  923.218144][T10597] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  923.426835][T10599] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  924.536171][T10604] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1566'.
[  924.545683][T10612] loop5: detected capacity change from 0 to 512
[  924.565323][T10612] EXT4-fs: Ignoring removed mblk_io_submit option
[  926.091245][ T4256] Bluetooth: hci2: command 0x0419 tx timeout
[  926.478412][T10612] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1568: invalid indirect mapped block 10 (level 1)
[  926.563755][T10612] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1568: invalid indirect mapped block 8 (level 1)
[  926.597170][T10612] EXT4-fs (loop5): 1 truncate cleaned up
[  926.623113][T10612] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  926.642368][T10627] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1570'.
[  926.671304][T10531] chnl_net:caif_netlink_parms(): no params data found
[  926.864053][T10035] EXT4-fs (loop5): unmounting filesystem.
[  927.243530][T10531] bridge0: port 1(bridge_slave_0) entered blocking state
[  927.284756][T10531] bridge0: port 1(bridge_slave_0) entered disabled state
[  927.302145][T10531] device bridge_slave_0 entered promiscuous mode
[  927.390526][T10531] bridge0: port 2(bridge_slave_1) entered blocking state
[  927.410641][T10531] bridge0: port 2(bridge_slave_1) entered disabled state
[  927.422886][T10531] device bridge_slave_1 entered promiscuous mode
[  927.748205][T10664] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  928.468874][T10531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  928.512025][T10531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  928.528563][T10666] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1579'.
[  928.739251][T10676] loop5: detected capacity change from 0 to 512
[  928.759083][T10676] journal_path: Lookup failure for './file0'
[  928.765551][ T9033] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  928.784978][T10676] EXT4-fs: error: could not find journal device path
[  928.937518][T10531] team0: Port device team_slave_0 added
[  928.994941][ T9033] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  929.004706][T10531] team0: Port device team_slave_1 added
[  929.020189][T10682] loop2: detected capacity change from 0 to 256
[  929.036690][ T9033] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  929.078206][ T9033] usb 5-1: New USB device found, idVendor=05ac, idProduct=4262, bcdDevice= 0.00
[  929.099728][T10682] FAT-fs (loop2): Directory bread(block 64) failed
[  929.115851][ T9033] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  929.131114][T10682] FAT-fs (loop2): Directory bread(block 65) failed
[  929.139354][   T26] audit: type=1326 audit(1747774672.710:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10684 comm="syz.5.1587" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff0ae38e969 code=0x0
[  929.156007][ T9033] usb 5-1: config 0 descriptor??
[  929.178558][T10682] FAT-fs (loop2): Directory bread(block 66) failed
[  929.195273][T10682] FAT-fs (loop2): Directory bread(block 67) failed
[  929.201955][T10682] FAT-fs (loop2): Directory bread(block 68) failed
[  929.215090][T10531] batman_adv: batadv0: Adding interface: batadv_slave_0
[  929.224073][T10531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  929.252312][T10682] FAT-fs (loop2): Directory bread(block 69) failed
[  929.259879][T10682] FAT-fs (loop2): Directory bread(block 70) failed
[  929.266889][T10682] FAT-fs (loop2): Directory bread(block 71) failed
[  929.273904][T10682] FAT-fs (loop2): Directory bread(block 72) failed
[  929.280630][T10531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  929.294535][T10682] FAT-fs (loop2): Directory bread(block 73) failed
[  929.312127][    T9] device hsr_slave_0 left promiscuous mode
[  929.335449][    T9] device hsr_slave_1 left promiscuous mode
[  929.595129][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  929.602584][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  929.617143][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  929.629305][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  929.838445][T10694] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  930.578742][    T9] device bridge_slave_1 left promiscuous mode
[  930.605380][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  930.684031][    T9] device bridge_slave_0 left promiscuous mode
[  930.732556][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  930.748958][ T9033] hid-generic 0003:05AC:4262.0005: unbalanced delimiter at end of report description
[  930.760006][ T9033] hid-generic: probe of 0003:05AC:4262.0005 failed with error -22
[  930.865801][T10696] loop2: detected capacity change from 0 to 1024
[  930.881082][T10699] loop5: detected capacity change from 0 to 512
[  930.892687][    T9] device veth1_macvtap left promiscuous mode
[  930.899205][    T9] device veth0_macvtap left promiscuous mode
[  930.907909][    T9] device veth1_vlan left promiscuous mode
[  930.920240][T10699] EXT4-fs: Ignoring removed i_version option
[  930.923784][    T9] device veth0_vlan left promiscuous mode
[  930.961842][ T9033] usb 5-1: USB disconnect, device number 4
[  931.040437][T10699] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  931.254798][T10035] EXT4-fs (loop5): unmounting filesystem.
[  931.292637][T10708] loop1: detected capacity change from 0 to 1024
[  931.375898][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  931.382323][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  931.825650][T10716] loop1: detected capacity change from 0 to 256
[  931.857817][ T4261] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  931.868530][ T4261] Bluetooth: hci3: Injecting HCI hardware error event
[  931.877182][ T4256] Bluetooth: hci3: hardware error 0x00
[  932.046333][T10716] FAT-fs (loop1): Directory bread(block 64) failed
[  932.113322][T10716] FAT-fs (loop1): Directory bread(block 65) failed
[  932.120092][T10716] FAT-fs (loop1): Directory bread(block 66) failed
[  932.173530][T10716] FAT-fs (loop1): Directory bread(block 67) failed
[  932.180215][T10716] FAT-fs (loop1): Directory bread(block 68) failed
[  932.188497][T10716] FAT-fs (loop1): Directory bread(block 69) failed
[  932.223587][T10716] FAT-fs (loop1): Directory bread(block 70) failed
[  932.230181][T10716] FAT-fs (loop1): Directory bread(block 71) failed
[  932.265689][T10716] FAT-fs (loop1): Directory bread(block 72) failed
[  932.272296][T10716] FAT-fs (loop1): Directory bread(block 73) failed
[  932.435303][T10721] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input7
[  932.569872][T10716] bio_check_eod: 310 callbacks suppressed
[  932.569972][T10716] syz.1.1597: attempt to access beyond end of device
[  932.569972][T10716] loop1: rw=2049, sector=1224, nr_sectors = 100 limit=256
[  932.774018][    T9] team0 (unregistering): Port device team_slave_1 removed
[  932.875229][    T9] team0 (unregistering): Port device team_slave_0 removed
[  932.954296][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  933.099043][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  933.580315][T10733] loop1: detected capacity change from 0 to 8
[  933.947798][ T4256] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  934.176310][    T9] bond0 (unregistering): Released all slaves
[  934.310636][T10531] batman_adv: batadv0: Adding interface: batadv_slave_1
[  934.335128][T10531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  934.380243][T10531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  934.405858][ T8804] lo speed is unknown, defaulting to 1000
[  934.731175][T10531] device hsr_slave_0 entered promiscuous mode
[  934.750829][T10531] device hsr_slave_1 entered promiscuous mode
[  934.766251][T10531] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  934.803478][T10531] Cannot create hsr debugfs directory
[  934.951208][T10742] loop1: detected capacity change from 0 to 512
[  935.026231][T10742] EXT4-fs (loop1): Test dummy encryption mode enabled
[  935.132439][T10742] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz.1.1605: inline data xattr refers to an external xattr inode
[  935.281613][T10742] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1605: couldn't read orphan inode 12 (err -117)
[  935.310205][T10751] loop4: detected capacity change from 0 to 1024
[  935.319433][T10742] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  935.401343][T10531] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  935.450916][ T4252] EXT4-fs (loop1): unmounting filesystem.
[  935.455803][T10751] syz.4.1607: attempt to access beyond end of device
[  935.455803][T10751] loop4: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  935.515549][T10531] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  935.556863][T10531] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  935.573374][T10751] buffer_io_error: 310 callbacks suppressed
[  935.573390][T10751] Buffer I/O error on dev loop4, logical block 2889, async page read
[  935.602430][T10531] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  935.639986][T10751] syz.4.1607: attempt to access beyond end of device
[  935.639986][T10751] loop4: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  935.671834][T10756] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  935.680221][T10751] Buffer I/O error on dev loop4, logical block 2889, async page read
[  935.699887][   T26] audit: type=1800 audit(1747774679.270:10): pid=10751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1607" name="file1" dev="loop4" ino=20 res=0 errno=0
[  936.082429][T10531] 8021q: adding VLAN 0 to HW filter on device bond0
[  936.134485][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  936.144357][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  936.182556][T10531] 8021q: adding VLAN 0 to HW filter on device team0
[  936.242525][ T4557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  937.724369][ T4557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  937.769316][ T4557] bridge0: port 1(bridge_slave_0) entered blocking state
[  937.776512][ T4557] bridge0: port 1(bridge_slave_0) entered forwarding state
[  937.804039][T10774] usb usb9: usbfs: process 10774 (syz.2.1613) did not claim interface 50 before use
[  937.818215][ T4557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  937.849628][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  937.884679][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  937.905538][ T4724] bridge0: port 2(bridge_slave_1) entered blocking state
[  937.912687][ T4724] bridge0: port 2(bridge_slave_1) entered forwarding state
[  937.960164][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  937.999281][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  938.036028][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  938.072775][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  938.123493][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  938.124185][T10784] loop2: detected capacity change from 0 to 1024
[  938.150273][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  938.191059][T10531] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  938.218725][T10531] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  938.252323][T10784] hfsplus: xattr searching failed
[  938.278065][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  938.289752][T10784] hfsplus: xattr searching failed
[  938.300030][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  938.324687][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  938.370137][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  938.409816][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  938.461039][ T4724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  938.695467][T10791] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  939.529253][T10793] loop2: detected capacity change from 0 to 1764
[  940.193419][ T3519] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  940.234232][T10813] loop4: detected capacity change from 0 to 1024
[  940.257145][T10816] loop5: detected capacity change from 0 to 16
[  940.298014][T10816] erofs: (device loop5): mounted with root inode @ nid 36.
[  940.314527][T10813] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  940.362163][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  940.373587][T10813] ext4 filesystem being mounted at /346/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  940.386249][ T3519] usb 3-1: Using ep0 maxpacket: 16
[  940.394314][ T3519] usb 3-1: config 0 interface 0 has no altsetting 0
[  940.402127][ T3519] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  940.405566][T10816] erofs: (device loop5): z_erofs_readahead: readahead error at page 2 @ nid 89
[  940.441987][ T3519] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  940.453105][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  940.460795][   T26] audit: type=1800 audit(1747774684.030:11): pid=10813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1623" name="file1" dev="loop4" ino=15 res=0 errno=0
[  940.468357][T10813] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1623: bg 0: block 393: padding at end of block bitmap is not set
[  940.501610][T10531] 8021q: adding VLAN 0 to HW filter on device batadv0
[  940.506734][ T3519] usb 3-1: config 0 descriptor??
[  940.628325][T10816] syz.5.1614: attempt to access beyond end of device
[  940.628325][T10816] loop5: rw=524288, sector=524296, nr_sectors = 8 limit=16
[  940.731278][T10816] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096]
[  940.789372][   T26] audit: type=1800 audit(1747774684.340:12): pid=10816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1614" name="file2" dev="loop5" ino=89 res=0 errno=0
[  940.827716][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  940.907723][T10830] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  940.908075][T10830] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  940.990195][T10816] syz.5.1614 (10816) used greatest stack depth: 20392 bytes left
[  941.411556][T10844] loop5: detected capacity change from 0 to 1764
[  941.863061][ T3519] usbhid 3-1:0.0: can't add hid device: -71
[  941.878536][ T3519] usbhid: probe of 3-1:0.0 failed with error -71
[  941.912274][   T26] audit: type=1326 audit(1747774685.480:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10852 comm="syz.5.1632" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff0ae38e969 code=0x0
[  941.949614][ T3519] usb 3-1: USB disconnect, device number 7
[  942.240955][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  942.270358][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  942.336761][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  942.364584][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  942.380314][T10531] device veth0_vlan entered promiscuous mode
[  942.395201][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  942.407700][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  942.439070][T10531] device veth1_vlan entered promiscuous mode
[  942.556350][T10531] device veth0_macvtap entered promiscuous mode
[  942.572747][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  942.599429][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  942.632255][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  942.666748][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  942.697066][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  942.739676][T10531] device veth1_macvtap entered promiscuous mode
[  942.827791][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  942.871233][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  942.898974][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  942.925613][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  942.958218][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  943.035528][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  943.067199][T10531] batman_adv: batadv0: Interface activated: batadv_slave_0
[  943.087220][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  943.115639][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  943.154831][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  943.192377][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  943.220915][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  943.263981][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  943.313313][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  943.347105][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  943.374983][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  943.403452][T10531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  943.437947][T10531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  943.488088][T10531] batman_adv: batadv0: Interface activated: batadv_slave_1
[  943.515474][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  943.561313][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  943.596858][T10531] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  943.614086][T10531] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  943.630829][T10531] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  943.647747][T10531] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  944.695514][ T4484] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  944.751934][ T4484] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  944.816565][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  944.844127][ T4460] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  944.870283][ T4460] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  944.935694][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  945.261848][T10931] loop1: detected capacity change from 0 to 256
[  945.340821][T10931] FAT-fs (loop1): Directory bread(block 64) failed
[  945.383484][T10931] FAT-fs (loop1): Directory bread(block 65) failed
[  945.423577][T10931] FAT-fs (loop1): Directory bread(block 66) failed
[  945.454388][T10931] FAT-fs (loop1): Directory bread(block 67) failed
[  945.461074][T10931] FAT-fs (loop1): Directory bread(block 68) failed
[  945.488766][T10931] FAT-fs (loop1): Directory bread(block 69) failed
[  945.515809][T10931] FAT-fs (loop1): Directory bread(block 70) failed
[  945.539453][T10931] FAT-fs (loop1): Directory bread(block 71) failed
[  945.590937][T10931] FAT-fs (loop1): Directory bread(block 72) failed
[  945.642082][T10931] FAT-fs (loop1): Directory bread(block 73) failed
[  946.473902][T10954] overlayfs: unrecognized mount option "verity=on" or missing value
[  947.183514][ T4303] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  947.386098][ T4303] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  947.423324][ T4303] usb 3-1: config 0 interface 0 has no altsetting 0
[  947.463040][ T4303] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  947.518679][ T4303] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  947.543339][ T4303] usb 3-1: Product: syz
[  947.561517][ T4303] usb 3-1: Manufacturer: syz
[  947.581792][ T4303] usb 3-1: SerialNumber: syz
[  947.623013][ T4303] usb 3-1: config 0 descriptor??
[  947.661356][ T4303] usb 3-1: selecting invalid altsetting 0
[  947.957938][T10985] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  948.312255][ T4303] usb 3-1: USB disconnect, device number 8
[  949.110292][T10998] loop4: detected capacity change from 0 to 256
[  949.216902][T10998] FAT-fs (loop4): Directory bread(block 64) failed
[  949.240056][T10998] FAT-fs (loop4): Directory bread(block 65) failed
[  949.283702][T10998] FAT-fs (loop4): Directory bread(block 66) failed
[  949.290632][T10998] FAT-fs (loop4): Directory bread(block 67) failed
[  949.302681][T11004] binder: BINDER_SET_CONTEXT_MGR already set
[  949.323463][T11004] binder: 11003:11004 ioctl 4018620d 200000000040 returned -16
[  949.334980][T10998] FAT-fs (loop4): Directory bread(block 68) failed
[  949.341608][T10998] FAT-fs (loop4): Directory bread(block 69) failed
[  949.383676][T10998] FAT-fs (loop4): Directory bread(block 70) failed
[  949.413446][T10998] FAT-fs (loop4): Directory bread(block 71) failed
[  949.450938][T10998] FAT-fs (loop4): Directory bread(block 72) failed
[  949.487599][T10998] FAT-fs (loop4): Directory bread(block 73) failed
[  949.732297][T11017] loop1: detected capacity change from 0 to 512
[  949.998953][T11017] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  950.164265][T11020] loop5: detected capacity change from 0 to 512
[  950.335056][T11017] EXT4-fs (loop1): 1 truncate cleaned up
[  950.351089][T11017] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  950.539138][T11020] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  950.660271][T11028] loop4: detected capacity change from 0 to 256
[  950.844101][T11028] FAT-fs (loop4): Directory bread(block 64) failed
[  950.850717][T11028] FAT-fs (loop4): Directory bread(block 65) failed
[  950.873942][T11020] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  950.882962][T11020] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  950.911375][ T4252] EXT4-fs (loop1): unmounting filesystem.
[  950.953796][T11028] FAT-fs (loop4): Directory bread(block 66) failed
[  950.964112][T11028] FAT-fs (loop4): Directory bread(block 67) failed
[  950.970965][T11028] FAT-fs (loop4): Directory bread(block 68) failed
[  951.013642][T11028] FAT-fs (loop4): Directory bread(block 69) failed
[  951.063471][T11028] FAT-fs (loop4): Directory bread(block 70) failed
[  951.070069][T11028] FAT-fs (loop4): Directory bread(block 71) failed
[  951.193678][T11028] FAT-fs (loop4): Directory bread(block 72) failed
[  951.200299][T11028] FAT-fs (loop4): Directory bread(block 73) failed
[  951.322704][T11020] EXT4-fs (loop5): shut down requested (1)
[  953.232036][T10035] EXT4-fs (loop5): unmounting filesystem.
[  953.758760][T11065] binder: BINDER_SET_CONTEXT_MGR already set
[  953.776473][T11067] loop2: detected capacity change from 0 to 256
[  953.805083][T11065] binder: 11064:11065 ioctl 4018620d 200000000040 returned -16
[  953.852901][T11065] binder: 11064:11065 ioctl c0306201 200000000240 returned -11
[  953.883502][T11067] FAT-fs (loop2): Directory bread(block 64) failed
[  953.891861][T11067] FAT-fs (loop2): Directory bread(block 65) failed
[  953.932515][T11067] FAT-fs (loop2): Directory bread(block 66) failed
[  953.965751][T11067] FAT-fs (loop2): Directory bread(block 67) failed
[  953.972432][T11067] FAT-fs (loop2): Directory bread(block 68) failed
[  954.030011][T11067] FAT-fs (loop2): Directory bread(block 69) failed
[  954.073593][T11067] FAT-fs (loop2): Directory bread(block 70) failed
[  954.091138][T11067] FAT-fs (loop2): Directory bread(block 71) failed
[  954.123497][T11067] FAT-fs (loop2): Directory bread(block 72) failed
[  954.163481][T11067] FAT-fs (loop2): Directory bread(block 73) failed
[  954.260327][T11079] loop4: detected capacity change from 0 to 512
[  954.384293][T11079] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  954.394719][ T4302] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  954.895767][T11079] EXT4-fs (loop4): 1 truncate cleaned up
[  954.901670][T11079] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  955.123638][ T4302] usb 2-1: Using ep0 maxpacket: 32
[  955.140241][ T4302] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[  955.176424][ T4302] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  955.205684][ T4302] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  955.250707][ T4302] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  955.276601][ T4302] usb 2-1: config 0 interface 0 has no altsetting 0
[  955.292755][ T4302] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  955.303209][ T4302] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  955.313293][ T4302] usb 2-1: Product: syz
[  955.317493][ T4302] usb 2-1: Manufacturer: syz
[  955.322154][ T4302] usb 2-1: SerialNumber: syz
[  955.343908][ T4302] usb 2-1: config 0 descriptor??
[  955.361176][ T4302] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  955.389240][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  955.487381][ T4302] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  955.677907][ T3519] usb 2-1: USB disconnect, device number 5
[  955.683879][    C1] ldusb 2-1:0.0: usb_submit_urb failed (-19)
[  955.710154][ T3519] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[  955.753641][ T6308] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  955.860288][T11100] loop5: detected capacity change from 0 to 256
[  955.953325][ T6308] usb 3-1: Using ep0 maxpacket: 8
[  955.960813][ T6308] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  955.976074][ T6308] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  955.993357][ T6308] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  956.032335][ T6308] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  956.117739][ T6308] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  956.266783][ T6308] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  956.482580][ T6308] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  956.640817][T11100] FAT-fs (loop5): Directory bread(block 64) failed
[  956.858048][T11100] FAT-fs (loop5): Directory bread(block 65) failed
[  956.943895][T11100] FAT-fs (loop5): Directory bread(block 66) failed
[  956.983884][T11100] FAT-fs (loop5): Directory bread(block 67) failed
[  957.000812][T11100] FAT-fs (loop5): Directory bread(block 68) failed
[  957.033495][T11100] FAT-fs (loop5): Directory bread(block 69) failed
[  957.040212][T11100] FAT-fs (loop5): Directory bread(block 70) failed
[  957.060501][ T6308] usb 3-1: usb_control_msg returned -32
[  957.074998][ T6308] usbtmc 3-1:16.0: can't read capabilities
[  957.078995][T11100] FAT-fs (loop5): Directory bread(block 71) failed
[  957.123572][T11100] FAT-fs (loop5): Directory bread(block 72) failed
[  957.148194][T11100] FAT-fs (loop5): Directory bread(block 73) failed
[  957.563201][T11119] binder: 11118:11119 ioctl c0306201 200000000240 returned -11
[  958.317620][T11131] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1707'.
[  958.383546][ T4302] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  958.551960][ T9033] usb 3-1: USB disconnect, device number 9
[  958.593590][ T4302] usb 2-1: Using ep0 maxpacket: 8
[  958.602019][ T4302] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  958.664016][ T4302] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  958.706356][ T4302] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  958.750703][ T4302] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  958.812186][ T4302] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  958.853958][ T4302] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  959.071417][ T4302] usb 2-1: GET_CAPABILITIES returned 0
[  959.077561][ T4302] usbtmc 2-1:16.0: can't read capabilities
[  959.226520][T11153] loop2: detected capacity change from 0 to 7
[  959.262946][T11153]  loop2: [POWERTEC] p1
[  959.267552][T11153] loop2: p1 size 3014656 extends beyond EOD, truncated
[  959.279402][ T3519] usb 2-1: USB disconnect, device number 6
[  959.307194][T11157] loop6: detected capacity change from 0 to 256
[  959.351440][T11160] sch_tbf: burst 21990 is lower than device lo mtu (11337746) !
[  959.406374][T11157] FAT-fs (loop6): Directory bread(block 64) failed
[  959.412974][T11157] FAT-fs (loop6): Directory bread(block 65) failed
[  959.489598][T11157] FAT-fs (loop6): Directory bread(block 66) failed
[  959.500707][ T9772] udevd[9772]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  959.529067][T11157] FAT-fs (loop6): Directory bread(block 67) failed
[  959.557156][T11157] FAT-fs (loop6): Directory bread(block 68) failed
[  959.603908][T11157] FAT-fs (loop6): Directory bread(block 69) failed
[  959.610804][T11157] FAT-fs (loop6): Directory bread(block 70) failed
[  959.667250][T11157] FAT-fs (loop6): Directory bread(block 71) failed
[  959.697959][T11157] FAT-fs (loop6): Directory bread(block 72) failed
[  959.722997][T11157] FAT-fs (loop6): Directory bread(block 73) failed
[  962.153521][ T4302] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  962.356706][ T4302] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  962.400569][T11223] loop1: detected capacity change from 0 to 256
[  962.401701][ T4302] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  962.446900][ T4302] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  962.473487][ T4302] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  962.501716][T11202] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  962.540646][T11223] FAT-fs (loop1): Directory bread(block 64) failed
[  962.558927][T11223] FAT-fs (loop1): Directory bread(block 65) failed
[  962.589213][T11223] FAT-fs (loop1): Directory bread(block 66) failed
[  962.620946][T11223] FAT-fs (loop1): Directory bread(block 67) failed
[  962.645768][T11223] FAT-fs (loop1): Directory bread(block 68) failed
[  962.691313][T11223] FAT-fs (loop1): Directory bread(block 69) failed
[  962.727214][T11223] FAT-fs (loop1): Directory bread(block 70) failed
[  962.753511][T11223] FAT-fs (loop1): Directory bread(block 71) failed
[  962.769534][T11223] FAT-fs (loop1): Directory bread(block 72) failed
[  962.785277][T11223] FAT-fs (loop1): Directory bread(block 73) failed
[  962.856675][ T4302] usb 3-1: USB disconnect, device number 10
[  963.031250][   T26] audit: type=1326 audit(1747774706.600:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.4.1742" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5e6ab8e969 code=0x0
[  963.908221][T11254] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1745'.
[  964.823925][T11267] Bluetooth: MGMT ver 1.22
[  964.828960][T11267] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  964.916534][T11269] overlayfs: failed to clone upperpath
[  964.971720][T11269] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1748'.
[  965.137585][T11278] loop1: detected capacity change from 0 to 1024
[  965.592473][ T4252] hfsplus: request for non-existent node 33554434 in B*Tree
[  965.645429][ T4252] hfsplus: request for non-existent node 33554434 in B*Tree
[  966.776846][   T26] audit: type=1326 audit(1747774710.350:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11301 comm="syz.6.1760" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffb5b58e969 code=0x0
[  967.562469][T11318] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1762'.
[  967.886587][ T4643] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  968.656308][ T4643] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  968.668747][T11331] loop4: detected capacity change from 0 to 1024
[  968.875868][ T4643] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.001314][ T4253] hfsplus: request for non-existent node 33554434 in B*Tree
[  969.033664][ T4643] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.052228][ T4253] hfsplus: request for non-existent node 33554434 in B*Tree
[  970.012883][   T26] audit: type=1326 audit(1747774713.580:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11351 comm="syz.5.1775" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff0ae38e969 code=0x0
[  970.078767][ T4261] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  970.108691][ T4261] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  970.118745][ T4261] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  970.128337][ T4261] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  970.136138][ T4261] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  970.153740][ T4261] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  970.652686][ T4261] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  970.664314][ T4261] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  970.682457][ T4261] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  970.691387][T10036] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  970.701223][T10036] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  970.708739][ T4261] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  971.196140][T11353] chnl_net:caif_netlink_parms(): no params data found
[  971.241882][ T4256] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  971.258420][T10036] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  971.268906][ T4256] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  971.280038][T10036] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  971.288582][ T4256] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  971.296323][T10036] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  971.321026][T11379] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1780'.
[  972.173495][T10036] Bluetooth: hci0: command 0x0409 tx timeout
[  972.455646][ T4643] device hsr_slave_0 left promiscuous mode
[  972.464518][ T4643] device hsr_slave_1 left promiscuous mode
[  972.499102][ T4643] batman_adv: batadv0: Removing interface: batadv_slave_0
[  972.527561][ T4643] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  972.550035][ T4643] batman_adv: batadv0: Removing interface: batadv_slave_1
[  972.562451][ T4643] device bridge_slave_1 left promiscuous mode
[  972.569098][ T4643] bridge0: port 2(bridge_slave_1) entered disabled state
[  972.590681][ T4643] device bridge_slave_0 left promiscuous mode
[  972.610528][ T4643] bridge0: port 1(bridge_slave_0) entered disabled state
[  972.650991][ T4643] device veth1_macvtap left promiscuous mode
[  972.664566][ T4643] device veth0_macvtap left promiscuous mode
[  972.670846][ T4643] device veth1_vlan left promiscuous mode
[  972.689965][ T4643] device veth0_vlan left promiscuous mode
[  972.733837][T10036] Bluetooth: hci1: command 0x0409 tx timeout
[  973.131922][   T26] audit: type=1326 audit(1747774716.700:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11409 comm="syz.5.1787" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff0ae38e969 code=0x0
[  973.389537][T10036] Bluetooth: hci2: command 0x0409 tx timeout
[  973.472401][ T4643] team0 (unregistering): Port device team_slave_1 removed
[  973.527102][ T4643] team0 (unregistering): Port device team_slave_0 removed
[  973.574953][ T4643] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  973.632331][ T4643] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  974.159476][ T4643] bond0 (unregistering): Released all slaves
[  974.253800][T10036] Bluetooth: hci0: command 0x041b tx timeout
[  974.316743][T11353] bridge0: port 1(bridge_slave_0) entered blocking state
[  974.360475][T11353] bridge0: port 1(bridge_slave_0) entered disabled state
[  974.384111][T11353] device bridge_slave_0 entered promiscuous mode
[  974.468133][T11353] bridge0: port 2(bridge_slave_1) entered blocking state
[  974.482417][T11353] bridge0: port 2(bridge_slave_1) entered disabled state
[  974.520821][T11353] device bridge_slave_1 entered promiscuous mode
[  974.579528][T11353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  974.598644][T11353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  974.647105][T11353] team0: Port device team_slave_0 added
[  974.670076][T11353] team0: Port device team_slave_1 added
[  974.759807][T11362] chnl_net:caif_netlink_parms(): no params data found
[  974.825224][T10036] Bluetooth: hci1: command 0x041b tx timeout
[  975.442596][T11353] batman_adv: batadv0: Adding interface: batadv_slave_0
[  975.463653][T10036] Bluetooth: hci2: command 0x041b tx timeout
[  975.482680][T11353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  975.556213][T11353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  975.576147][T11353] batman_adv: batadv0: Adding interface: batadv_slave_1
[  975.583132][T11353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  975.614263][T11353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  975.640931][T11375] chnl_net:caif_netlink_parms(): no params data found
[  975.822065][   T26] audit: type=1326 audit(1747774719.390:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11431 comm="syz.2.1795" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f411cb8e969 code=0x0
[  975.901218][T11353] device hsr_slave_0 entered promiscuous mode
[  975.922415][T11353] device hsr_slave_1 entered promiscuous mode
[  975.929732][T11353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  975.945347][T11353] Cannot create hsr debugfs directory
[  976.065154][T11362] bridge0: port 1(bridge_slave_0) entered blocking state
[  976.084353][T11362] bridge0: port 1(bridge_slave_0) entered disabled state
[  976.107191][T11362] device bridge_slave_0 entered promiscuous mode
[  976.120077][T11362] bridge0: port 2(bridge_slave_1) entered blocking state
[  976.131988][T11362] bridge0: port 2(bridge_slave_1) entered disabled state
[  976.144734][T11362] device bridge_slave_1 entered promiscuous mode
[  976.153019][T11375] bridge0: port 1(bridge_slave_0) entered blocking state
[  976.161085][T11375] bridge0: port 1(bridge_slave_0) entered disabled state
[  976.175898][T11375] device bridge_slave_0 entered promiscuous mode
[  976.194584][T11375] bridge0: port 2(bridge_slave_1) entered blocking state
[  976.204128][T11375] bridge0: port 2(bridge_slave_1) entered disabled state
[  976.218889][T11375] device bridge_slave_1 entered promiscuous mode
[  976.280807][ T4643] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  976.333430][T10036] Bluetooth: hci0: command 0x040f tx timeout
[  976.391417][T11362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  976.488652][ T4643] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  976.519225][T11362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  976.535267][T11375] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  976.596535][T11375] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  976.623752][ T4643] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  976.765128][T11362] team0: Port device team_slave_0 added
[  976.822961][ T4643] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  976.868932][T11375] team0: Port device team_slave_0 added
[  976.882635][T11362] team0: Port device team_slave_1 added
[  976.893418][T10036] Bluetooth: hci1: command 0x040f tx timeout
[  976.915897][T11375] team0: Port device team_slave_1 added
[  977.142409][T11375] batman_adv: batadv0: Adding interface: batadv_slave_0
[  977.152721][T11375] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  977.212132][T11375] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  977.290353][T11375] batman_adv: batadv0: Adding interface: batadv_slave_1
[  977.312891][T11375] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  977.373315][T11375] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  977.399016][T11362] batman_adv: batadv0: Adding interface: batadv_slave_0
[  977.421619][T11362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  977.459513][T11362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  977.533826][T10036] Bluetooth: hci2: command 0x040f tx timeout
[  977.570049][T11362] batman_adv: batadv0: Adding interface: batadv_slave_1
[  977.577435][T11362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  977.612786][T11362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  977.788201][T11353] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  977.819617][T11375] device hsr_slave_0 entered promiscuous mode
[  977.831265][T11375] device hsr_slave_1 entered promiscuous mode
[  977.839027][T11375] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  977.880087][T11375] Cannot create hsr debugfs directory
[  977.927861][T11353] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  977.993918][T11484] Bluetooth: MGMT ver 1.22
[  978.019825][ T4643] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.085234][T11362] device hsr_slave_0 entered promiscuous mode
[  978.141041][T11362] device hsr_slave_1 entered promiscuous mode
[  978.154050][T11362] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  978.161655][T11362] Cannot create hsr debugfs directory
[  978.194434][T11353] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  978.235684][ T4643] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.272505][T11492] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  978.392621][T11353] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  978.413662][T10036] Bluetooth: hci0: command 0x0419 tx timeout
[  978.511792][ T4643] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.690001][ T4643] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.973555][T10036] Bluetooth: hci1: command 0x0419 tx timeout
[  979.045796][T11353] 8021q: adding VLAN 0 to HW filter on device bond0
[  979.170457][T11353] 8021q: adding VLAN 0 to HW filter on device team0
[  979.186884][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  979.204882][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  979.248521][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  979.276693][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  979.323996][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  979.331156][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  979.467121][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  979.482039][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  979.550165][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  979.559546][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  979.566741][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  979.576001][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  979.585634][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  979.605173][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  979.623674][T10036] Bluetooth: hci2: command 0x0419 tx timeout
[  979.633907][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  979.650753][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  979.664624][T11375] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  979.682192][T11375] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  979.693854][T11375] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  979.710003][T11375] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  979.941802][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  979.965065][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  979.989900][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  980.017806][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  980.162068][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  980.189173][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  980.219858][T11353] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  980.422366][T11362] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  980.450776][T11362] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  980.686211][T11362] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  980.709083][T11362] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  980.820527][T11566] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1828'.
[  980.911049][T11375] 8021q: adding VLAN 0 to HW filter on device bond0
[  981.095689][ T4484] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  981.111566][ T4484] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  981.128044][   T26] audit: type=1326 audit(1747774724.700:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11576 comm="syz.2.1831" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f411cb8e969 code=0x0
[  981.156892][T11375] 8021q: adding VLAN 0 to HW filter on device team0
[  981.249812][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  981.271159][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  981.280295][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  981.298946][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  981.309726][ T4460] bridge0: port 1(bridge_slave_0) entered blocking state
[  981.316903][ T4460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  981.333703][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  981.350157][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  981.360137][ T4460] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.367333][ T4460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  981.399342][T11353] 8021q: adding VLAN 0 to HW filter on device batadv0
[  981.514395][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  981.529526][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  981.635806][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  981.645106][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  981.663068][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  981.683506][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  981.692569][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  981.712467][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  981.741891][T11375] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  981.775698][T11375] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  981.974325][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  981.990024][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  981.999020][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  982.035316][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  982.070805][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  982.117357][T11600] binder: 11599:11600 ioctl c0306201 200000000240 returned -11
[  982.325680][T11362] 8021q: adding VLAN 0 to HW filter on device bond0
[  982.401277][T11362] 8021q: adding VLAN 0 to HW filter on device team0
[  982.443700][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  982.452366][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  982.688449][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  982.716563][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  982.764769][ T4351] bridge0: port 1(bridge_slave_0) entered blocking state
[  982.771924][ T4351] bridge0: port 1(bridge_slave_0) entered forwarding state
[  982.848801][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  982.864277][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  982.882531][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  982.891419][ T4351] bridge0: port 2(bridge_slave_1) entered blocking state
[  982.898616][ T4351] bridge0: port 2(bridge_slave_1) entered forwarding state
[  982.957240][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  983.179739][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  983.200244][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  983.235998][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  983.358318][ T4643] device hsr_slave_0 left promiscuous mode
[  983.365860][ T4643] device hsr_slave_1 left promiscuous mode
[  983.378513][ T4643] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  983.424091][ T4643] batman_adv: batadv0: Removing interface: batadv_slave_0
[  983.448298][ T4643] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  983.461337][ T4643] batman_adv: batadv0: Removing interface: batadv_slave_1
[  983.476403][ T4643] device bridge_slave_1 left promiscuous mode
[  983.492911][ T4643] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.511989][ T4643] device bridge_slave_0 left promiscuous mode
[  983.528877][ T4643] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.593761][ T4643] device hsr_slave_0 left promiscuous mode
[  983.611510][ T4643] device hsr_slave_1 left promiscuous mode
[  983.632898][ T4643] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  983.634649][T11642] overlayfs: overlapping lowerdir path
[  983.648757][ T4643] batman_adv: batadv0: Removing interface: batadv_slave_0
[  983.669087][ T4643] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  983.679054][ T4643] batman_adv: batadv0: Removing interface: batadv_slave_1
[  983.700153][ T4643] device bridge_slave_1 left promiscuous mode
[  983.726588][ T4643] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.760191][ T4643] device bridge_slave_0 left promiscuous mode
[  983.805847][ T4643] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.968176][ T4643] device veth1_macvtap left promiscuous mode
[  983.988000][ T4643] device veth0_macvtap left promiscuous mode
[  983.999949][ T4643] device veth1_vlan left promiscuous mode
[  984.009422][ T4643] device veth0_vlan left promiscuous mode
[  984.041797][ T4643] device veth1_macvtap left promiscuous mode
[  984.067816][ T4643] device veth0_macvtap left promiscuous mode
[  984.081076][ T4643] device veth1_vlan left promiscuous mode
[  984.087523][ T4643] device veth0_vlan left promiscuous mode
[  984.963656][T11660] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1857'.
[  985.145508][T11666] overlayfs: overlapping lowerdir path
[  988.505574][T11690] overlayfs: failed to clone lowerpath
[  988.552755][ T4643] team0 (unregistering): Port device team_slave_1 removed
[  988.612561][ T4643] team0 (unregistering): Port device team_slave_0 removed
[  988.672288][ T4643] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  988.745585][ T4643] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  989.319010][ T4643] bond0 (unregistering): Released all slaves
[  989.813718][T11708] overlayfs: failed to clone lowerpath
[  990.094754][ T4643] team0 (unregistering): Port device team_slave_1 removed
[  990.142479][ T4643] team0 (unregistering): Port device team_slave_0 removed
[  990.197310][ T4643] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  990.245558][ T4643] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  990.721975][   T26] audit: type=1326 audit(1747774734.290:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11715 comm="syz.5.1880" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff0ae38e969 code=0x0
[  990.796961][ T4643] bond0 (unregistering): Released all slaves
[  990.905775][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  990.917067][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  990.926298][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  990.934581][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  990.948914][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  990.966087][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  990.981406][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  990.989898][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  991.027671][T11375] 8021q: adding VLAN 0 to HW filter on device batadv0
[  991.037495][T11353] device veth0_vlan entered promiscuous mode
[  991.057850][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  991.089960][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  991.103703][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  991.125160][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  991.144355][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  991.185313][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  991.199868][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  991.222472][T11353] device veth1_vlan entered promiscuous mode
[  991.268410][T11362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  991.357548][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  991.377678][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  991.410739][T11353] device veth0_macvtap entered promiscuous mode
[  991.454654][T11353] device veth1_macvtap entered promiscuous mode
[  991.529520][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  991.564832][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.597160][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  991.644759][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.685213][T11353] batman_adv: batadv0: Interface activated: batadv_slave_0
[  991.693851][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  991.713730][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  991.734503][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  991.799960][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  991.822162][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  991.836246][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.847455][T11353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  991.869415][T11353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.890873][T11353] batman_adv: batadv0: Interface activated: batadv_slave_1
[  991.921494][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  991.950985][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  991.995641][T11353] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  992.009148][T11353] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  992.049162][T11353] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  992.085281][T11747] overlayfs: failed to clone lowerpath
[  992.093423][T11353] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  992.317468][T11327] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  992.344024][T11327] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  992.442271][ T4460] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  992.471633][T11327] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  992.491855][T11327] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  992.521093][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  992.540559][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  992.591260][T11362] 8021q: adding VLAN 0 to HW filter on device batadv0
[  992.644663][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  992.714227][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  992.751584][ T5280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  992.825430][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  992.831795][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  992.842279][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  992.910831][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  992.937860][T11375] device veth0_vlan entered promiscuous mode
[  992.977617][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  993.014573][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  993.034616][T11375] device veth1_vlan entered promiscuous mode
[  993.057046][   T26] audit: type=1326 audit(1747774736.630:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11768 comm="syz.5.1889" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff0ae38e969 code=0x0
[  993.152271][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  993.188952][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  993.229078][T11375] device veth0_macvtap entered promiscuous mode
[  993.256003][T11375] device veth1_macvtap entered promiscuous mode
[  993.334722][T11375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  993.377857][T11375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.409817][T11375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  993.447646][T11375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.482286][T11375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  993.521033][T11375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.588748][T11375] batman_adv: batadv0: Interface activated: batadv_slave_0
[  993.663042][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  993.680347][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  993.696403][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  993.845523][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  993.877527][T11375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  993.890504][T11375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.903746][T11375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  993.915835][T11375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.927004][T11375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  993.942650][T11375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  993.960312][T11375] batman_adv: batadv0: Interface activated: batadv_slave_1
[  994.098437][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  994.142608][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  994.399801][T11375] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  994.409070][T11375] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  994.417914][T11375] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  994.426754][T11375] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  994.611433][ T4351] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  994.683389][ T4351] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  994.764012][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  994.814539][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  994.822898][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  994.896426][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  995.095879][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  995.128147][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  995.159715][T11806] loop2: detected capacity change from 0 to 512
[  995.198040][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  995.211420][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  995.233856][T11806] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  995.244745][T11362] device veth0_vlan entered promiscuous mode
[  995.255500][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  995.280595][T11327] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  995.302336][T11806] EXT4-fs (loop2): 1 truncate cleaned up
[  995.323320][T11806] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  995.341443][T11362] device veth1_vlan entered promiscuous mode
[  995.632783][   T26] audit: type=1326 audit(1747774739.200:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.9.1900" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9f34b8e969 code=0x0
[  996.129011][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  996.228647][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  996.324369][ T4260] EXT4-fs (loop2): unmounting filesystem.
[  996.352220][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  996.459795][ T4934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  996.471542][T11362] device veth0_macvtap entered promiscuous mode
[  996.566117][T11362] device veth1_macvtap entered promiscuous mode
[  996.606526][T11831] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1903'.
[  996.667915][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.725872][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.741984][T11832] kvm: pic: non byte read
[  996.755341][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.776408][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.784959][T11832] kvm: pic: non byte read
[  996.795813][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.801626][T11832] kvm: pic: non byte read
[  996.838501][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.841790][T11832] kvm: pic: non byte read
[  996.859515][T11832] kvm: pic: non byte read
[  996.865089][T11832] kvm: pic: level sensitive irq not supported
[  996.865313][T11832] kvm: pic: non byte read
[  996.870689][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  996.872922][T11832] kvm: pic: non byte read
[  996.881659][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  996.908060][T11832] kvm: pic: non byte read
[  996.913039][T11832] kvm: pic: non byte read
[  996.942552][T11362] batman_adv: batadv0: Interface activated: batadv_slave_0
[  996.966717][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  996.979199][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  997.024894][ T4351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  997.052348][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.103459][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.152865][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.176527][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.193435][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.204526][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.217826][T11362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  997.228729][T11362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  997.240678][T11362] batman_adv: batadv0: Interface activated: batadv_slave_1
[  997.270430][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  997.301691][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  997.339533][T11362] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  997.364692][T11362] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  997.398456][T11856] syz.5.1910 uses obsolete (PF_INET,SOCK_PACKET)
[  997.399775][T11362] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  997.483299][T11362] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  997.616750][T11862] loop7: detected capacity change from 0 to 512
[  997.762404][T11862] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  998.114735][T11862] EXT4-fs (loop7): 1 truncate cleaned up
[  998.545688][T11862] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  998.667869][ T5280] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  998.700055][ T5280] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  998.778531][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  998.831463][ T5280] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  998.850910][ T5280] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  998.900611][ T4484] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  999.082623][T11353] EXT4-fs (loop7): unmounting filesystem.
[  999.970240][T11890] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1774'.
[  999.988590][   T26] audit: type=1800 audit(1747774743.560:23): pid=11894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1919" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1000.045321][T11890] ------------[ cut here ]------------
[ 1000.051382][T11890] WARNING: CPU: 0 PID: 11890 at kernel/softirq.c:383 __local_bh_enable_ip+0x176/0x1b0
[ 1000.060992][T11890] Modules linked in:
[ 1000.064911][T11890] CPU: 0 PID: 11890 Comm: syz.8.1774 Not tainted 6.1.139-syzkaller #0
[ 1000.073169][T11890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1000.083251][T11890] RIP: 0010:__local_bh_enable_ip+0x176/0x1b0
[ 1000.089267][T11890] Code: 48 8b 04 25 28 00 00 00 48 3b 44 24 48 75 4e 48 8d 65 e0 5b 41 5c 41 5e 41 5f 5d c3 0f 0b e9 ff fe ff ff e8 3c 00 00 00 eb a5 <0f> 0b e9 2c ff ff ff 48 c7 c1 64 b2 fe 8d 80 e1 07 80 c1 03 38 c1
[ 1000.108916][T11890] RSP: 0018:ffffc900050ce9c0 EFLAGS: 00010046
[ 1000.115018][T11890] RAX: 0000000000000000 RBX: 0000000000000201 RCX: 0000000000000000
[ 1000.122994][T11890] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff882ae022
[ 1000.130984][T11890] RBP: ffffc900050cea58 R08: dffffc0000000000 R09: ffffed100fac20b2
[ 1000.138971][T11890] R10: ffffed100fac20b2 R11: 1ffff1100fac20b1 R12: ffff88807d610680
[ 1000.146966][T11890] R13: ffffea0001f9b600 R14: dffffc0000000000 R15: 1ffff92000a19d38
[ 1000.154975][T11890] FS:  00007fd3abbed6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1000.163929][T11890] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1000.170522][T11890] CR2: 00007f34459ffd58 CR3: 000000007cf20000 CR4: 00000000003526f0
[ 1000.178593][T11890] DR0: 0000000010000007 DR1: 400000000000000c DR2: 000000000000000d
[ 1000.186573][T11890] DR3: 00000000000000ff DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1000.194561][T11890] Call Trace:
[ 1000.197850][T11890]  <TASK>
[ 1000.200799][T11890]  ? _local_bh_enable+0xa0/0xa0
[ 1000.205678][T11890]  ? do_raw_spin_unlock+0x11d/0x230
[ 1000.210895][T11890]  ? page_pool_put_defragged_page+0x592/0x8c0
[ 1000.216977][T11890]  page_pool_put_defragged_page+0x592/0x8c0
[ 1000.222884][T11890]  tun_device_event+0xa62/0x1020
[ 1000.227853][T11890]  raw_notifier_call_chain+0xcb/0x160
[ 1000.233243][T11890]  dev_change_tx_queue_len+0x11d/0x260
[ 1000.238987][T11890]  ? dev_set_mtu+0xc0/0xc0
[ 1000.243418][T11890]  ? printk_sprint+0x460/0x460
[ 1000.248280][T11890]  ? validate_linkmsg+0x3db/0x4c0
[ 1000.253380][T11890]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1000.259294][T11890]  do_setlink+0xf4e/0x3c40
[ 1000.263748][T11890]  ? nlmsg_parse_deprecated_strict+0x110/0x110
[ 1000.269928][T11890]  ? load_image+0x3b0/0x3b0
[ 1000.274448][T11890]  ? rcu_is_watching+0x11/0xa0
[ 1000.279253][T11890]  ? do_trace_netlink_extack+0x9c/0x220
[ 1000.284816][T11890]  ? __nla_validate_parse+0x20db/0x2990
[ 1000.290390][T11890]  ? __nla_validate+0x50/0x50
[ 1000.295082][T11890]  ? kernel_text_address+0x9c/0xd0
[ 1000.300208][T11890]  ? unwind_get_return_address+0x49/0x80
[ 1000.305873][T11890]  ? __nla_parse+0x3c/0x50
[ 1000.310300][T11890]  rtnl_setlink+0x35b/0x450
[ 1000.314999][T11890]  ? rtnl_dump_ifinfo+0x1260/0x1260
[ 1000.320275][T11890]  ? rtnl_dump_ifinfo+0x1260/0x1260
[ 1000.325489][T11890]  ? rtnetlink_rcv_msg+0x1d8/0xed0
[ 1000.330621][T11890]  rtnetlink_rcv_msg+0x79b/0xed0
[ 1000.335844][T11890]  ? rtnetlink_bind+0x80/0x80
[ 1000.340538][T11890]  ? __local_bh_enable_ip+0x12a/0x1b0
[ 1000.345928][T11890]  ? lockdep_hardirqs_on+0x94/0x140
[ 1000.351154][T11890]  ? __local_bh_enable_ip+0x12a/0x1b0
[ 1000.356544][T11890]  ? _local_bh_enable+0xa0/0xa0
[ 1000.361432][T11890]  ? __dev_queue_xmit+0x26f/0x3760
[ 1000.366550][T11890]  ? __dev_queue_xmit+0x26f/0x3760
[ 1000.371674][T11890]  ? __dev_queue_xmit+0x15c9/0x3760
[ 1000.376913][T11890]  ? __dev_queue_xmit+0x26f/0x3760
[ 1000.382043][T11890]  ? netdev_core_pick_tx+0x340/0x340
[ 1000.387342][T11890]  ? ref_tracker_free+0x630/0x7c0
[ 1000.392389][T11890]  ? refcount_inc+0x70/0x70
[ 1000.396910][T11890]  ? __copy_skb_header+0x417/0x5a0
[ 1000.402045][T11890]  ? __skb_clone+0x480/0x790
[ 1000.406657][T11890]  netlink_rcv_skb+0x1de/0x420
[ 1000.411449][T11890]  ? rtnetlink_bind+0x80/0x80
[ 1000.416146][T11890]  ? netlink_ack+0x1100/0x1100
[ 1000.420944][T11890]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1000.426175][T11890]  netlink_unicast+0x74c/0x8c0
[ 1000.430964][T11890]  netlink_sendmsg+0x89e/0xbc0
[ 1000.435759][T11890]  ? netlink_getsockopt+0x540/0x540
[ 1000.440976][T11890]  ? aa_sock_msg_perm+0x94/0x150
[ 1000.445938][T11890]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1000.451231][T11890]  ? security_socket_sendmsg+0x7c/0xa0
[ 1000.456731][T11890]  ? netlink_getsockopt+0x540/0x540
[ 1000.461946][T11890]  ____sys_sendmsg+0x59b/0x970
[ 1000.466739][T11890]  ? __sys_sendmsg_sock+0x30/0x30
[ 1000.471777][T11890]  ? __import_iovec+0x315/0x500
[ 1000.476644][T11890]  ? import_iovec+0x6f/0xa0
[ 1000.481175][T11890]  ___sys_sendmsg+0x21c/0x290
[ 1000.485901][T11890]  ? __sys_sendmsg+0x270/0x270
[ 1000.490704][T11890]  ? put_user_ifreq+0x81/0xb0
[ 1000.495414][T11890]  ? __fdget+0x17c/0x200
[ 1000.499677][T11890]  __se_sys_sendmsg+0x19e/0x270
[ 1000.504545][T11890]  ? __se_sys_futex+0x14a/0x440
[ 1000.509415][T11890]  ? __x64_sys_sendmsg+0x80/0x80
[ 1000.514388][T11890]  ? lockdep_hardirqs_on+0x94/0x140
[ 1000.519606][T11890]  do_syscall_64+0x4c/0xa0
[ 1000.524073][T11890]  ? clear_bhb_loop+0x60/0xb0
[ 1000.528766][T11890]  ? clear_bhb_loop+0x60/0xb0
[ 1000.533453][T11890]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1000.539365][T11890] RIP: 0033:0x7fd3aad8e969
[ 1000.543798][T11890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1000.563428][T11890] RSP: 002b:00007fd3abbed038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1000.571851][T11890] RAX: ffffffffffffffda RBX: 00007fd3aafb5fa0 RCX: 00007fd3aad8e969
[ 1000.579830][T11890] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 000000000000000c
[ 1000.587811][T11890] RBP: 00007fd3aae10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1000.595785][T11890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1000.603759][T11890] R13: 0000000000000000 R14: 00007fd3aafb5fa0 R15: 00007fff8288c818
[ 1000.611758][T11890]  </TASK>
[ 1000.614796][T11890] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1000.622205][T11890] CPU: 0 PID: 11890 Comm: syz.8.1774 Not tainted 6.1.139-syzkaller #0
[ 1000.630366][T11890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1000.640429][T11890] Call Trace:
[ 1000.643719][T11890]  <TASK>
[ 1000.646662][T11890]  dump_stack_lvl+0x168/0x22e
[ 1000.651359][T11890]  ? memcpy+0x3c/0x60
[ 1000.655347][T11890]  ? show_regs_print_info+0x12/0x12
[ 1000.660584][T11890]  ? load_image+0x3b0/0x3b0
[ 1000.665146][T11890]  panic+0x2c9/0x710
[ 1000.669062][T11890]  ? bpf_jit_dump+0xd0/0xd0
[ 1000.673597][T11890]  __warn+0x2f8/0x4f0
[ 1000.677593][T11890]  ? __local_bh_enable_ip+0x176/0x1b0
[ 1000.682997][T11890]  ? __local_bh_enable_ip+0x176/0x1b0
[ 1000.688439][T11890]  report_bug+0x2ba/0x4f0
[ 1000.692795][T11890]  ? __local_bh_enable_ip+0x176/0x1b0
[ 1000.698204][T11890]  handle_bug+0x3a/0x70
[ 1000.702381][T11890]  exc_invalid_op+0x16/0x40
[ 1000.706899][T11890]  asm_exc_invalid_op+0x16/0x20
[ 1000.711766][T11890] RIP: 0010:__local_bh_enable_ip+0x176/0x1b0
[ 1000.717769][T11890] Code: 48 8b 04 25 28 00 00 00 48 3b 44 24 48 75 4e 48 8d 65 e0 5b 41 5c 41 5e 41 5f 5d c3 0f 0b e9 ff fe ff ff e8 3c 00 00 00 eb a5 <0f> 0b e9 2c ff ff ff 48 c7 c1 64 b2 fe 8d 80 e1 07 80 c1 03 38 c1
[ 1000.737385][T11890] RSP: 0018:ffffc900050ce9c0 EFLAGS: 00010046
[ 1000.743455][T11890] RAX: 0000000000000000 RBX: 0000000000000201 RCX: 0000000000000000
[ 1000.751432][T11890] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff882ae022
[ 1000.759420][T11890] RBP: ffffc900050cea58 R08: dffffc0000000000 R09: ffffed100fac20b2
[ 1000.767397][T11890] R10: ffffed100fac20b2 R11: 1ffff1100fac20b1 R12: ffff88807d610680
[ 1000.775375][T11890] R13: ffffea0001f9b600 R14: dffffc0000000000 R15: 1ffff92000a19d38
[ 1000.783365][T11890]  ? page_pool_put_defragged_page+0x592/0x8c0
[ 1000.789451][T11890]  ? _local_bh_enable+0xa0/0xa0
[ 1000.794318][T11890]  ? do_raw_spin_unlock+0x11d/0x230
[ 1000.799532][T11890]  ? page_pool_put_defragged_page+0x592/0x8c0
[ 1000.805617][T11890]  page_pool_put_defragged_page+0x592/0x8c0
[ 1000.811521][T11890]  tun_device_event+0xa62/0x1020
[ 1000.816651][T11890]  raw_notifier_call_chain+0xcb/0x160
[ 1000.822075][T11890]  dev_change_tx_queue_len+0x11d/0x260
[ 1000.827557][T11890]  ? dev_set_mtu+0xc0/0xc0
[ 1000.831990][T11890]  ? printk_sprint+0x460/0x460
[ 1000.836793][T11890]  ? validate_linkmsg+0x3db/0x4c0
[ 1000.841849][T11890]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1000.847766][T11890]  do_setlink+0xf4e/0x3c40
[ 1000.852212][T11890]  ? nlmsg_parse_deprecated_strict+0x110/0x110
[ 1000.858383][T11890]  ? load_image+0x3b0/0x3b0
[ 1000.862893][T11890]  ? rcu_is_watching+0x11/0xa0
[ 1000.867676][T11890]  ? do_trace_netlink_extack+0x9c/0x220
[ 1000.873254][T11890]  ? __nla_validate_parse+0x20db/0x2990
[ 1000.878843][T11890]  ? __nla_validate+0x50/0x50
[ 1000.883566][T11890]  ? kernel_text_address+0x9c/0xd0
[ 1000.888703][T11890]  ? unwind_get_return_address+0x49/0x80
[ 1000.894353][T11890]  ? __nla_parse+0x3c/0x50
[ 1000.898780][T11890]  rtnl_setlink+0x35b/0x450
[ 1000.903305][T11890]  ? rtnl_dump_ifinfo+0x1260/0x1260
[ 1000.908578][T11890]  ? rtnl_dump_ifinfo+0x1260/0x1260
[ 1000.913796][T11890]  ? rtnetlink_rcv_msg+0x1d8/0xed0
[ 1000.918926][T11890]  rtnetlink_rcv_msg+0x79b/0xed0
[ 1000.923902][T11890]  ? rtnetlink_bind+0x80/0x80
[ 1000.928596][T11890]  ? __local_bh_enable_ip+0x12a/0x1b0
[ 1000.933995][T11890]  ? lockdep_hardirqs_on+0x94/0x140
[ 1000.939218][T11890]  ? __local_bh_enable_ip+0x12a/0x1b0
[ 1000.944610][T11890]  ? _local_bh_enable+0xa0/0xa0
[ 1000.949487][T11890]  ? __dev_queue_xmit+0x26f/0x3760
[ 1000.954631][T11890]  ? __dev_queue_xmit+0x26f/0x3760
[ 1000.959761][T11890]  ? __dev_queue_xmit+0x15c9/0x3760
[ 1000.964973][T11890]  ? __dev_queue_xmit+0x26f/0x3760
[ 1000.970097][T11890]  ? netdev_core_pick_tx+0x340/0x340
[ 1000.975516][T11890]  ? ref_tracker_free+0x630/0x7c0
[ 1000.980559][T11890]  ? refcount_inc+0x70/0x70
[ 1000.985079][T11890]  ? __copy_skb_header+0x417/0x5a0
[ 1000.990230][T11890]  ? __skb_clone+0x480/0x790
[ 1000.994836][T11890]  netlink_rcv_skb+0x1de/0x420
[ 1000.999720][T11890]  ? rtnetlink_bind+0x80/0x80
[ 1001.004412][T11890]  ? netlink_ack+0x1100/0x1100
[ 1001.009192][T11890]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1001.014429][T11890]  netlink_unicast+0x74c/0x8c0
[ 1001.019272][T11890]  netlink_sendmsg+0x89e/0xbc0
[ 1001.024074][T11890]  ? netlink_getsockopt+0x540/0x540
[ 1001.029293][T11890]  ? aa_sock_msg_perm+0x94/0x150
[ 1001.034241][T11890]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1001.039538][T11890]  ? security_socket_sendmsg+0x7c/0xa0
[ 1001.045006][T11890]  ? netlink_getsockopt+0x540/0x540
[ 1001.050219][T11890]  ____sys_sendmsg+0x59b/0x970
[ 1001.055007][T11890]  ? __sys_sendmsg_sock+0x30/0x30
[ 1001.060072][T11890]  ? __import_iovec+0x315/0x500
[ 1001.064945][T11890]  ? import_iovec+0x6f/0xa0
[ 1001.069456][T11890]  ___sys_sendmsg+0x21c/0x290
[ 1001.074156][T11890]  ? __sys_sendmsg+0x270/0x270
[ 1001.078954][T11890]  ? put_user_ifreq+0x81/0xb0
[ 1001.083663][T11890]  ? __fdget+0x17c/0x200
[ 1001.087924][T11890]  __se_sys_sendmsg+0x19e/0x270
[ 1001.092785][T11890]  ? __se_sys_futex+0x14a/0x440
[ 1001.097655][T11890]  ? __x64_sys_sendmsg+0x80/0x80
[ 1001.102625][T11890]  ? lockdep_hardirqs_on+0x94/0x140
[ 1001.107847][T11890]  do_syscall_64+0x4c/0xa0
[ 1001.112275][T11890]  ? clear_bhb_loop+0x60/0xb0
[ 1001.116957][T11890]  ? clear_bhb_loop+0x60/0xb0
[ 1001.121640][T11890]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1001.127543][T11890] RIP: 0033:0x7fd3aad8e969
[ 1001.131960][T11890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1001.151575][T11890] RSP: 002b:00007fd3abbed038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1001.160024][T11890] RAX: ffffffffffffffda RBX: 00007fd3aafb5fa0 RCX: 00007fd3aad8e969
[ 1001.167999][T11890] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 000000000000000c
[ 1001.175975][T11890] RBP: 00007fd3aae10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1001.183957][T11890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1001.191929][T11890] R13: 0000000000000000 R14: 00007fd3aafb5fa0 R15: 00007fff8288c818
[ 1001.200010][T11890]  </TASK>
[ 1001.203387][T11890] Kernel Offset: disabled
[ 1001.207838][T11890] Rebooting in 86400 seconds..