last executing test programs:

53.528122191s ago: executing program 2 (id=284):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x200000, &(0x7f0000003180)={[{@nodioread_nolock}, {@mblk_io_submit}]}, 0x1, 0x574, &(0x7f0000001980)="$eJzs3c9rHFUcAPDvbJI2/aFJoRT1IIEerNRumsQfFTzUk4gWC3qvS7INJZtuyW5KEwu2B3vxIkUQsSB69+6x+A/4VxS0UKQEPXiJzGY2XZPZNNlumm3384Fp35uZzZvvvvm+fbOzywbQt8bSfwoRL0fEN0nESMu2wcg2jq3tt/Lw+nS6JLG6+ulfSSTZuub+Sfb/oazyUkT89lXEycLmdmtLy3OlSqW8kNXH6/NXxmtLy6cuzZdmy7Ply5NTU2fempp89523uxbr6+f/+f6Tux+e+fr4yne/3D9yO4mzcTjb1hrHE7jRWhmLsew5GYqzG3ac6EJjvSTZ6wOgIwNZng9FOgaMxECW9blWR57moQG77Ms0rYE+lch/6FPNeUDz2r5L18HPjAfvr10AbY5/cO29kRhuXBsdXEn+d2WUXu+OdqH9tI1f/7xzO12i3fsQ+7vQEMAGN25GxOnBwc3jX5KNf507vY19NrbRb68/sJfupvOfN/LmP4X1+U/kzH8O5eRuJx6f/4X7XWimrXT+917u/Hf9ptXoQFZ7oTHnG0ouXqqU07HtxYg4EUP70/pERHyQfxPk88LKvdV27bfO/9Ilbb85F8yO4/7ghvnfTKleevLI1zy4GfFK7vw3We//JKf/0+fj/DbbOFa+82q7bY+Pf3et/hTxWm7/P+rMZOv7k+ON82G8eVZs9vetY7+3a3+v40/7/+DW8Y8mrfdraztv48fhf8vttnV6/u9LPmuU92XrrpXq9YWJiH3Jx5vXTz56bLPe3D+N/8Txrce/vPP/QJrY24z/1tFbrbsO7yz+3ZXGP7Oj/t954d5HX/zQrv3t9f+bjdKJbM12xr/tHuCTPHcAAAAAAADQawoRcTiSQnG9XCgUi2uf7zgaBwuVaq1+8mJ18fJMNL4rOxpDhead7pGWz0NMZJ+HbdYnN9SnIuJIRHw7cKBRL05XKzN7HTwAAAAAAAAAAAAAAAAAAAD0iEMRw3nf/0/9MZD/mDargWfRFj/5DTzn2ud/tqUbv/QE9CSv/9C/5D/0L/kP/Uv+Q/+S/9C/5D/0L/kP/Wsn+f/zuV08EAAAAAAAAAAAAAAAAAAAAAAAAAAAAHg+nD93Ll1WVx5en07rM1eXFueqV0/NlGtzxfnF6eJ0deFKcbZana2Ui9PV+cf9vUq1emViMhavjdfLtfp4bWn5wnx18XL9wqX50mz5QnnoqUQFAAAAAAAAAAAAAAAAAAAAz5ba0vJcqVIpLygodFQY7I3D6MFCoTcOo8PCXo9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDIfwEAAP//wGE62g==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
mprotect(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x8)
pwritev2(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)='s', 0x1}], 0x1, 0xe7b, 0x0, 0x0)
ioctl$BLKRAGET(0xffffffffffffffff, 0x1263, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x43, 0x19c)
ftruncate(r1, 0x6)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r2, 0x20, 0x0, 0x8000)

50.245572296s ago: executing program 2 (id=290):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
syz_usb_connect(0x0, 0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000f3c7c820da059a009562010203010902"], 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

46.590140921s ago: executing program 2 (id=296):
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x48000)
recvmmsg$unix(r5, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

45.074556503s ago: executing program 2 (id=299):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1001a, &(0x7f0000000280)={[{@quota}, {@nolazytime}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000000940)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x3829410, 0x0)
r0 = open(&(0x7f0000000240)='./bus\x00', 0x187102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000010008500000022000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x224e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

42.317996825s ago: executing program 2 (id=306):
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
syz_open_procfs(r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sndseq(0xffffffffffffff9c, 0x0, 0xe0c81)
socket$inet_udp(0x2, 0x2, 0x0)
dup(0xffffffffffffffff)
r4 = memfd_create(&(0x7f00000009c0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x3)
ftruncate(r4, 0xffff)
fcntl$addseals(r4, 0x409, 0x7)
r5 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000100)={r4, 0x0, 0x1000, 0xa000})
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0xc0086202, &(0x7f0000000000)=0x3)

40.469985275s ago: executing program 2 (id=310):
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="5c0000002400010028bd7000ffdbdf25040000000600040080ff0000060003"], 0x5c}, 0x1, 0x0, 0x0, 0x24004800}, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setresuid(0x0, 0x0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0)
sendmsg$key(r6, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x8, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x100f, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x2df3, 0x0, 0x5, 0x4, 0x0, 0x9, 0x3c5b, 0x1, 0x24, 0x6, 0x1, 0x5, 0xffffffff, 0xe661, 0x4, 0xb, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x7, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0x9, 0x10000, 0x6, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x9, 0x420, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0xba68, 0xd, 0x4e0, 0x2, 0x2, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x103, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x1, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x2, 0x0, 0x5, 0xb, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x5, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0xfffff800, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x0, 0x3, 0x7ff, 0x12b, 0x4, 0x8, 0x0, 0x0, 0x2, 0x1c, 0x120000, 0x3, 0x2006, 0x1, 0x4, 0x25], [0x800009, 0xbb33, 0x7, 0x80b, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0xf142, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x6, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff002, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x10000226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c17, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x1fd, 0xffff343e, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
setreuid(0xffffffffffffffff, 0xee00)

40.315207877s ago: executing program 32 (id=310):
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="5c0000002400010028bd7000ffdbdf25040000000600040080ff0000060003"], 0x5c}, 0x1, 0x0, 0x0, 0x24004800}, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setresuid(0x0, 0x0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0)
sendmsg$key(r6, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x8, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x100f, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x2df3, 0x0, 0x5, 0x4, 0x0, 0x9, 0x3c5b, 0x1, 0x24, 0x6, 0x1, 0x5, 0xffffffff, 0xe661, 0x4, 0xb, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x7, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0x9, 0x10000, 0x6, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x9, 0x420, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0xba68, 0xd, 0x4e0, 0x2, 0x2, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x103, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x1, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x2, 0x0, 0x5, 0xb, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x5, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0xfffff800, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x0, 0x3, 0x7ff, 0x12b, 0x4, 0x8, 0x0, 0x0, 0x2, 0x1c, 0x120000, 0x3, 0x2006, 0x1, 0x4, 0x25], [0x800009, 0xbb33, 0x7, 0x80b, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0xf142, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x6, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff002, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x10000226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c17, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x1fd, 0xffff343e, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
setreuid(0xffffffffffffffff, 0xee00)

8.462680497s ago: executing program 1 (id=372):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000003980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000003a80)={[{@time_offset={'time_offset', 0x3d, 0xc}}, {@discard}, {@gid}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@discard}, {@gid}, {@gid}, {@sys_tz}, {@errors_continue}, {@errors_remount}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}]}, 0x1, 0x1524, &(0x7f0000002280)="$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")
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x24, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000500)=""/45, 0x2d)

8.238227975s ago: executing program 1 (id=373):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000100)=r4, 0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x5, 0x200, &(0x7f0000003c40)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a73090000000000001b0f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413f4afbcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff416e5a8c25f9555da5ca6fdf75b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a25978b463dc961416c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6dccbe2ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df2cd7344aa8a9f3432b96fb889c02f484f635a0cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000000000000000f800"})

8.149162262s ago: executing program 0 (id=374):
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x14, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000611800000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000480)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8}, 0x3b)

7.208756978s ago: executing program 1 (id=375):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x1f, 0x3, &(0x7f0000000000)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x28}}, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

7.130614954s ago: executing program 0 (id=376):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000200)='./file0\x00', 0xa00010, &(0x7f0000000840)=ANY=[@ANYBLOB='nodecompose,decompose,nobarrier,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6c733d69736f383835392d310000000072726965722c00bcd0f0b5c4e2957974ff5d7ea3c3dcee087e4983684e8a4c4e4e87b134e30ce77162b12885b964b3506ff3eae0f3599447b17861d19be78079e5dd7bdc7f1eb36e31ac14de48349767164f5f6431bbdeaef96a4f2bce64b5cfa76ce3a2c4302374bc5535d7e2eb8dfb2e5d58a37b7e37836597c21f51bcdf6df4cad825cfd9ef5ee9e89e04b15cd3cea9e152d67b9a7eedc5dfe6d85a3ce7c342da8cc969b552197cb8bcc4a1009f38f4a85b7c742101ba5bc03115feca2b994c699812"], 0x6, 0x635, &(0x7f0000000c80)="$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")
r0 = creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
write$UHID_INPUT(r0, &(0x7f0000001680)={0x8, {"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", 0x1000}}, 0x1006)
unlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
close(r0)

7.130324934s ago: executing program 4 (id=377):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@perf_event={0x1}}, 0x18)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/246, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800000f}, 0x94)

6.939600159s ago: executing program 1 (id=378):
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r5, 0x0, 0x48000)
recvmmsg$unix(r5, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

6.786670062s ago: executing program 0 (id=380):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000073113900000000008510000002000000850000009a00000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

6.786395042s ago: executing program 4 (id=381):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000000), 0x0)

5.81487787s ago: executing program 1 (id=382):
openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x8200, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x7, 0xfffffffe, 0x30314247, 0x0, 0x8, [{}, {}, {0x6}, {}, {}, {0x80000001}, {0x0, 0x40000000}, {0x0, 0xfffffffe}], 0x0, 0x0, 0x4, 0x2, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="14080000", @ANYRES16=r3, @ANYBLOB="0700000000000000000002000000"], 0x14}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
syz_open_dev$usbfs(&(0x7f0000000480), 0xd, 0x141341)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
r7 = socket(0x10, 0x80002, 0x0)
connect$inet6(r7, 0x0, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x44}}, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x19)
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0x9}}}, 0x24}}, 0x0)

5.306562891s ago: executing program 0 (id=384):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x5, 0x200, &(0x7f0000003c40)="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"})

5.306266421s ago: executing program 4 (id=385):
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
syz_read_part_table(0x5d4, &(0x7f0000000000)="$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")
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc018aec0, 0x0)
syz_usb_connect(0x3, 0xf5, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402"], 0x0)

4.304263332s ago: executing program 0 (id=386):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x1f, 0x3, &(0x7f0000000000)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x28}}, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

4.067699741s ago: executing program 0 (id=387):
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
keyctl$dh_compute(0x17, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha1-ssse3\x00'}})
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x18, 0x0, 0x500)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
sendmmsg(r1, &(0x7f000000bec0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f000000aa40)=[{0xc, 0x1}], 0xc}}], 0x2, 0x40840)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
add_key(&(0x7f00000013c0)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000100)='[', 0xfe95, 0xffffffffffffffff)
request_key(0x0, &(0x7f0000001400)={'syz', 0x0}, &(0x7f0000000000)='/\x00', 0x0)
connect$unix(r2, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f0000000000)="10", 0x5e0, 0x20008040, &(0x7f0000000080)={0x11, 0x8100, r5, 0x1, 0x6, 0x6, @broadcast}, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4c, 0x9, 0x6, 0x0, 0x3}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@fallback, 0xffffffffffffffff, 0x2f, 0x5}, 0x20)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r6, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002980)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x1400}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xcc540, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
preadv2(r8, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)

3.282646185s ago: executing program 3 (id=389):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000060000b000000000000000008500000008000000850000002300000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.189957692s ago: executing program 3 (id=390):
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r5, 0x0, 0x48000)
recvmmsg$unix(r5, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

2.140175167s ago: executing program 3 (id=391):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff)

1.962298441s ago: executing program 4 (id=392):
socket$inet6_udplite(0xa, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
syz_emit_ethernet(0x56, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x400000bce)
syz_emit_vhci(0x0, 0xe)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r3=>0xffffffffffffffff})
getsockopt$sock_int(r3, 0x1, 0x28, 0x0, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x34}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6}, 0x70)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x17, 0x55, 0x1e5, 0x0, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x0, {@ip4=@broadcast}}}]}, 0x38}}, 0x0)

1.962029081s ago: executing program 3 (id=393):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r1], 0x4c}}, 0x0)

1.23132876s ago: executing program 4 (id=394):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x5, 0x200, &(0x7f0000003c40)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a73090000000000001b0f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413f4afbcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff416e5a8c25f9555da5ca6fdf75b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a25978b463dc961416c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6dccbe2ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df2cd7344aa8a9f3432b96fb889c02f484f635a0cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000000000000000f800"})

960.816452ms ago: executing program 3 (id=395):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x1f, 0x3, &(0x7f0000000000)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x28}}, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{}], 0x1)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

158.428966ms ago: executing program 4 (id=396):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r0, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)

16.370238ms ago: executing program 1 (id=397):
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setresuid(0x0, 0x0, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={0x0, r6, 0x0, 0x8}, 0x18)
sendmsg$ETHTOOL_MSG_WOL_GET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0x2c, r5, 0x1, 0x70bd2d, 0x0, {0x1b}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}}, 0x4000000)

0s ago: executing program 3 (id=398):
r0 = socket(0x840000000002, 0x3, 0xff)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000440)={<r1=>0x0, <r2=>0x0, <r3=>0x0}, &(0x7f0000000400)=0xc)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000000240)='./file1\x00', 0x2000084c, &(0x7f0000000300)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r2, @ANYRES64=r1, @ANYRES8=r3, @ANYRES16=r1, @ANYRES64=r1, @ANYBLOB="2c6469736361726459ad809e1eb82c00fb278330ab3b4884d36adf6908d11f5783dc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14fc, &(0x7f0000002a80)="$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")
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@auto_da_alloc}, {@noload}, {@stripe={'stripe', 0x3d, 0x9}}, {@resgid={'resgid', 0x3d, r3}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@bsdgroups}, {@nomblk_io_submit}, {@debug}], [{@uid_gt={'uid>', r2}}, {@fowner_gt={'fowner>', r2}}, {@fowner_lt={'fowner<', r2}}, {@obj_user={'obj_user', 0x3d, 'auto_da_alloc'}}, {@fowner_lt={'fowner<', r2}}, {@obj_type={'obj_type', 0x3d, '!!@+%*-'}}, {@fsuuid={'fsuuid', 0x3d, {[0x1, 0x33, 0x32, 0x30, 0x34, 0x36, 0x50, 0x38], 0x2d, [0x55, 0x35, 0x39, 0x38], 0x2d, [0x35, 0x30, 0x34, 0x38], 0x2d, [0x30, 0x36, 0x64, 0x32], 0x2d, [0x32, 0x64, 0x33, 0x63, 0x37, 0x32, 0x63, 0x63]}}}, {@dont_hash}, {@fowner_gt={'fowner>', r2}}, {@seclabel}]}, 0xfa, 0x477, &(0x7f0000001a40)="$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")
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

kernel console output (not intermixed with test programs):

no interfaces have a carrier
[   54.585876][ T5453] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.608330][ T5453] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting crond: OK
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.35' (ED25519) to the list of known hosts.
syzkaller login: [   80.716625][ T5775] cgroup: Unknown subsys name 'net'
[   80.865592][ T5775] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.874231][ T5775] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   84.484106][ T5789] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   84.493309][ T5789] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   84.503206][ T5795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   84.511611][ T5795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   84.532874][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   84.541834][ T5797] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   84.566074][ T5789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   84.575916][ T5797] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   84.577171][ T5789] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   84.588585][ T5797] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   84.607638][ T5797] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   84.618413][ T5789] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   84.622534][ T5799] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   84.646349][ T5799] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   84.648904][ T5789] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   84.661653][ T5789] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   84.662376][   T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   84.676656][   T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   84.678235][ T5789] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   84.684638][   T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   84.691902][ T5789] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   84.706841][ T5789] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   84.723967][ T5795] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   84.734374][ T5795] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   85.203098][ T5792] chnl_net:caif_netlink_parms(): no params data found
[   85.331901][ T5786] chnl_net:caif_netlink_parms(): no params data found
[   85.365388][ T5790] chnl_net:caif_netlink_parms(): no params data found
[   85.421144][ T5791] chnl_net:caif_netlink_parms(): no params data found
[   85.493668][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.501285][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.510265][ T5792] bridge_slave_0: entered allmulticast mode
[   85.517520][ T5792] bridge_slave_0: entered promiscuous mode
[   85.545703][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.553565][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.561261][ T5792] bridge_slave_1: entered allmulticast mode
[   85.568203][ T5792] bridge_slave_1: entered promiscuous mode
[   85.650794][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.658240][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.665731][ T5786] bridge_slave_0: entered allmulticast mode
[   85.674601][ T5786] bridge_slave_0: entered promiscuous mode
[   85.718072][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.725314][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.732724][ T5786] bridge_slave_1: entered allmulticast mode
[   85.741728][ T5786] bridge_slave_1: entered promiscuous mode
[   85.748723][ T5790] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.755842][ T5790] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.763793][ T5790] bridge_slave_0: entered allmulticast mode
[   85.770918][ T5790] bridge_slave_0: entered promiscuous mode
[   85.779798][ T5790] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.787712][ T5790] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.795618][ T5790] bridge_slave_1: entered allmulticast mode
[   85.803500][ T5790] bridge_slave_1: entered promiscuous mode
[   85.812695][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.826079][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.916984][ T5790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.930130][ T5790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.952809][ T5792] team0: Port device team_slave_0 added
[   85.959356][ T5791] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.967539][ T5791] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.975080][ T5791] bridge_slave_0: entered allmulticast mode
[   85.983104][ T5791] bridge_slave_0: entered promiscuous mode
[   85.993338][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.006445][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.028610][ T5792] team0: Port device team_slave_1 added
[   86.046292][ T5791] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.054320][ T5791] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.062363][ T5791] bridge_slave_1: entered allmulticast mode
[   86.071353][ T5791] bridge_slave_1: entered promiscuous mode
[   86.116918][ T5790] team0: Port device team_slave_0 added
[   86.155309][ T5786] team0: Port device team_slave_0 added
[   86.166283][ T5786] team0: Port device team_slave_1 added
[   86.174887][ T5790] team0: Port device team_slave_1 added
[   86.193271][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.200899][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.227732][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.277777][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.285439][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.312933][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.329389][ T5791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.352169][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.359576][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.389770][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.403558][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.411132][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.438092][ T5790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.451982][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.459782][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.487868][ T5790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.509621][ T5791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.520252][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.527910][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.554723][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.689094][ T5792] hsr_slave_0: entered promiscuous mode
[   86.696107][ T5792] hsr_slave_1: entered promiscuous mode
[   86.703116][ T5795] Bluetooth: hci2: command tx timeout
[   86.712050][ T5791] team0: Port device team_slave_0 added
[   86.721376][ T5791] team0: Port device team_slave_1 added
[   86.730862][ T5786] hsr_slave_0: entered promiscuous mode
[   86.738240][ T5786] hsr_slave_1: entered promiscuous mode
[   86.744600][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.752927][ T5786] Cannot create hsr debugfs directory
[   86.775067][ T5790] hsr_slave_0: entered promiscuous mode
[   86.781549][ T5795] Bluetooth: hci3: command tx timeout
[   86.787945][ T5793] Bluetooth: hci0: command tx timeout
[   86.793075][ T5795] Bluetooth: hci1: command tx timeout
[   86.800705][ T5790] hsr_slave_1: entered promiscuous mode
[   86.807830][ T5790] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.815795][ T5790] Cannot create hsr debugfs directory
[   86.937694][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.944970][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.971623][ T5791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.986353][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.993399][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.020271][ T5791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.185262][ T5791] hsr_slave_0: entered promiscuous mode
[   87.193035][ T5791] hsr_slave_1: entered promiscuous mode
[   87.200331][ T5791] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   87.208477][ T5791] Cannot create hsr debugfs directory
[   87.405062][ T5792] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   87.432923][ T5792] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   87.445226][ T5792] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   87.466614][ T5792] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   87.531171][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.543910][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.554121][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.569271][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   87.669189][ T5790] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   87.690308][ T5790] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   87.704787][ T5790] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   87.733844][ T5790] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   87.809407][ T5791] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   87.848468][ T5791] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   87.862271][ T5791] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   87.873076][ T5791] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   87.984479][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.003010][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.063599][ T5786] 8021q: adding VLAN 0 to HW filter on device team0
[   88.105564][ T1078] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.113336][ T1078] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.124152][ T1078] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.131448][ T1078] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.151210][ T5792] 8021q: adding VLAN 0 to HW filter on device team0
[   88.172642][ T5790] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.186353][ T1078] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.194090][ T1078] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.236016][ T5786] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   88.250595][ T5786] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   88.265947][ T1078] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.273499][ T1078] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.310772][ T5790] 8021q: adding VLAN 0 to HW filter on device team0
[   88.336443][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.403461][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.411054][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.446760][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.454377][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.486376][ T5791] 8021q: adding VLAN 0 to HW filter on device team0
[   88.524701][ T1078] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.532238][ T1078] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.630309][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.637942][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.765086][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.777698][ T5795] Bluetooth: hci2: command tx timeout
[   88.858362][ T5795] Bluetooth: hci0: command tx timeout
[   88.858574][ T5793] Bluetooth: hci1: command tx timeout
[   88.864142][ T5789] Bluetooth: hci3: command tx timeout
[   88.984090][ T5786] veth0_vlan: entered promiscuous mode
[   89.009625][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.032964][ T5786] veth1_vlan: entered promiscuous mode
[   89.172946][ T5786] veth0_macvtap: entered promiscuous mode
[   89.205454][ T5790] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.216722][ T5786] veth1_macvtap: entered promiscuous mode
[   89.261686][ T5792] veth0_vlan: entered promiscuous mode
[   89.289479][ T5792] veth1_vlan: entered promiscuous mode
[   89.317870][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.332778][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.354470][ T5790] veth0_vlan: entered promiscuous mode
[   89.366819][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.384704][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.394206][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.404226][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.413830][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.469954][ T5792] veth0_macvtap: entered promiscuous mode
[   89.508093][ T5790] veth1_vlan: entered promiscuous mode
[   89.519076][ T5792] veth1_macvtap: entered promiscuous mode
[   89.574574][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.586802][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.604374][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.639821][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.650611][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.663032][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.685016][ T5791] veth0_vlan: entered promiscuous mode
[   89.715000][ T5792] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.723964][ T5792] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.735066][ T5792] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.745107][ T5792] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.765769][ T5790] veth0_macvtap: entered promiscuous mode
[   89.783470][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.793217][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.806686][ T5790] veth1_macvtap: entered promiscuous mode
[   89.820963][ T5791] veth1_vlan: entered promiscuous mode
[   89.890720][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.892072][ T3468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.908753][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.923225][ T3468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.930489][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.941928][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.954233][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.993685][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.004769][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.015134][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.025860][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.039180][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.058036][ T3468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.066036][ T3468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.090973][ T5790] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.104474][ T5790] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.114330][ T5790] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.123794][ T5790] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.185719][ T2908] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.198413][ T2908] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.214965][ T5791] veth0_macvtap: entered promiscuous mode
[   90.280520][ T5791] veth1_macvtap: entered promiscuous mode
[   90.398819][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.406490][ T5877] mmap: syz.0.1 (5877) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   90.414209][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.433147][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.444227][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.453661][ T5877] syz.0.1[5877]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   90.465634][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.477462][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.486138][ T5851] kernel write not supported for file /3/net/ip6_tables_targets (pid: 5851 comm: kworker/1:5)
[   90.489556][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.586206][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.598328][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.622003][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.629837][ T5877] loop0: detected capacity change from 0 to 4096
[   90.633424][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.659947][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.672693][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.704251][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.721449][ T4504] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.729920][ T4504] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.772279][ T5791] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.784778][ T5877] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.786254][ T5791] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.808836][ T5791] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.818664][ T5791] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.858396][ T5789] Bluetooth: hci2: command tx timeout
[   90.960326][ T5789] Bluetooth: hci3: command tx timeout
[   90.965921][ T5789] Bluetooth: hci1: command tx timeout
[   90.972182][ T5793] Bluetooth: hci0: command tx timeout
[   91.033507][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.085830][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.241362][ T5888] rtc_cmos 00:00: Alarms can be up to one day in the future
[   92.088681][ T4504] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.100030][ T4504] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.165124][ T4504] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.194519][ T4504] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.373673][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.393824][  T786] cfg80211: failed to load regulatory.db
[   92.469674][ T5899] loop3: detected capacity change from 0 to 8
[   92.487562][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.835217][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   92.836294][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[   92.836943][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[   93.032963][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   93.033965][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   93.034704][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   93.034945][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   93.035124][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   93.035286][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   94.428592][ T5789] Bluetooth: hci2: command tx timeout
[   94.428673][ T5789] Bluetooth: hci1: command tx timeout
[   94.428706][ T5789] Bluetooth: hci0: command tx timeout
[   94.429154][ T5793] Bluetooth: hci3: command tx timeout
[   94.485678][ T5899] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4'.
[   94.801358][ T5909] loop1: detected capacity change from 0 to 16
[   94.839314][ T5909] erofs: (device loop1): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 66300)
[   97.208082][ T5875] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   97.397214][ T5875] usb 2-1: Using ep0 maxpacket: 32
[   97.414855][ T5875] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[   97.446008][ T5875] usb 2-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[   97.466789][ T5875] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.494728][ T5875] usb 2-1: Product: syz
[   97.512313][ T5875] usb 2-1: Manufacturer: syz
[   97.523290][ T5875] usb 2-1: SerialNumber: syz
[   97.635813][ T5875] usb 2-1: config 0 descriptor??
[   97.656216][ T5918] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   98.133522][ T5875] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[   98.523475][ T5875] usb 2-1: USB disconnect, device number 2
[   98.886369][ T5937] udevd[5937]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   99.821842][ T5947] loop2: detected capacity change from 0 to 512
[   99.895307][ T5947] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.20: invalid indirect mapped block 10 (level 1)
[   99.930508][ T5943] loop3: detected capacity change from 0 to 512
[   99.954591][ T5947] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.20: invalid indirect mapped block 8 (level 1)
[  100.071087][ T5943] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  100.080444][ T5947] EXT4-fs (loop2): 1 truncate cleaned up
[  100.123792][ T5947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.551972][ T5956] loop1: detected capacity change from 0 to 1024
[  101.167968][ T5943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.190454][ T5943] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.745670][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.989006][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.049666][ T5970] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  103.129223][ T5975] loop0: detected capacity change from 0 to 128
[  104.886892][ T5975] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  104.923752][ T5975] ext4 filesystem being mounted at /4/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  105.097490][ T5789] Bluetooth: hci3: command tx timeout
[  105.143113][ T5979] loop3: detected capacity change from 0 to 4096
[  105.190908][ T5987] loop1: detected capacity change from 0 to 1024
[  105.216580][ T5979] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.313759][ T5975] EXT4-fs (loop0): shut down requested (1)
[  105.416168][ T5970] fscrypt (loop0, inode 12): Error -5 getting encryption context
[  105.491174][ T5975] fscrypt (loop0, inode 12): Error -5 getting encryption context
[  105.513046][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.552266][ T5993] loop2: detected capacity change from 0 to 1024
[  105.608359][ T5993] =======================================================
[  105.608359][ T5993] WARNING: The mand mount option has been deprecated and
[  105.608359][ T5993]          and is ignored by this kernel. Remove the mand
[  105.608359][ T5993]          option from the mount to silence this warning.
[  105.608359][ T5993] =======================================================
[  105.722587][ T5993] EXT4-fs: Ignoring removed oldalloc option
[  105.746715][ T5993] EXT4-fs: Ignoring removed orlov option
[  105.899357][ T5993] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  106.807771][ T5993] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.058092][ T5795] Bluetooth: hci2: command tx timeout
[  108.882020][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  108.901245][ T6011] loop3: detected capacity change from 0 to 1024
[  108.971391][ T6013] Bluetooth: MGMT ver 1.22
[  109.115976][   T12] hfsplus: b-tree write err: -5, ino 4
[  109.176543][ T5993] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.30: Allocating blocks 481-513 which overlap fs metadata
[  109.288295][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.481001][ T6021] ICMPv6: NA: aa:aa:aa:aa:aa:bb advertised our address fe80::aa on syz_tun!
[  111.672140][ T6036] loop0: detected capacity change from 0 to 256
[  112.143793][ T6040] loop3: detected capacity change from 0 to 128
[  113.088857][ T6039] loop2: detected capacity change from 0 to 1024
[  115.461358][ T6051] loop2: detected capacity change from 0 to 1024
[  115.527253][ T6051] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  115.619663][ T6051] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.733529][ T6051] EXT4-fs warning (device loop2): empty_inline_dir:1846: bad inline directory (dir #12) - no `..'
[  115.855647][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.258869][ T6062] netlink: 12 bytes leftover after parsing attributes in process `syz.1.47'.
[  118.160432][ T6073] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  118.168163][ T6073] IPv6: NLM_F_CREATE should be set when creating new route
[  118.316977][ T6076] loop3: detected capacity change from 0 to 8
[  118.422433][ T6078] loop2: detected capacity change from 0 to 256
[  118.450284][ T6078] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  118.450365][ T6078] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  118.532881][ T6078] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  118.834013][ T6081] loop0: detected capacity change from 0 to 1024
[  118.837277][ T6084] netlink: 32 bytes leftover after parsing attributes in process `syz.2.58'.
[  119.418413][ T5900] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  120.127195][ T5900] usb 3-1: Using ep0 maxpacket: 16
[  120.135686][ T5900] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[  120.167057][ T5900] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  120.225063][ T5900] usb 3-1: config 0 has no interface number 0
[  120.253789][ T5900] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  120.280209][ T5900] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.294935][ T5900] usb 3-1: Product: syz
[  120.303544][ T5900] usb 3-1: Manufacturer: syz
[  120.313351][ T5900] usb 3-1: SerialNumber: syz
[  120.336292][ T5900] usb 3-1: config 0 descriptor??
[  120.375150][ T5900] usb 3-1: Found UVC 0.00 device syz (046d:08f3)
[  120.383951][ T5900] usb 3-1: No valid video chain found.
[  120.640172][ T5900] usb 3-1: USB disconnect, device number 2
[  121.926195][ T6106] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  121.933658][ T6106] IPv6: NLM_F_CREATE should be set when creating new route
[  122.231439][ T5795] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  122.858644][ T5795] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  122.858769][ T5795] Bluetooth: hci0: Injecting HCI hardware error event
[  122.859975][ T5795] Bluetooth: hci0: hardware error 0x00
[  123.061892][ T6118] capability: warning: `syz.1.67' uses deprecated v2 capabilities in a way that may be insecure
[  125.378410][ T5795] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  125.640380][ T6139] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  126.037265][ T6149] loop1: detected capacity change from 0 to 1024
[  126.176649][ T6151] loop2: detected capacity change from 0 to 1024
[  126.204247][ T6151] EXT4-fs: Ignoring removed oldalloc option
[  126.229924][ T6151] EXT4-fs: Ignoring removed orlov option
[  126.251086][ T6151] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  126.291526][ T6151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.172059][ T6159] loop3: detected capacity change from 0 to 8
[  127.487604][ T6159] SQUASHFS error: zlib decompression failed, data probably corrupt
[  127.496437][ T6159] SQUASHFS error: Failed to read block 0x9b: -5
[  127.503738][ T6159] SQUASHFS error: Unable to read metadata cache entry [99]
[  127.511457][ T6159] SQUASHFS error: Unable to read inode 0x127
[  128.708769][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.174237][ T6173] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  129.377191][ T5851] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  129.557244][ T5851] usb 4-1: Using ep0 maxpacket: 32
[  129.566379][ T5851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.585996][ T5851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.027990][ T5795] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  131.036654][ T5795] Bluetooth: hci2: Injecting HCI hardware error event
[  131.044882][ T5795] Bluetooth: hci2: hardware error 0x00
[  131.152050][ T5851] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  131.170532][ T5851] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.212691][ T5851] usb 4-1: config 0 descriptor??
[  133.157016][    C0] sched: RT throttling activated
[  133.211876][ T5795] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  133.315994][ T5851] usbhid 4-1:0.0: can't add hid device: -71
[  133.327596][ T5851] usbhid: probe of 4-1:0.0 failed with error -71
[  133.344561][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  133.357447][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  133.394661][ T5851] usb 4-1: USB disconnect, device number 2
[  133.479342][ T6195] loop2: detected capacity change from 0 to 256
[  133.496395][ T6195] exfat: Deprecated parameter 'namecase'
[  133.528253][ T6195] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  133.548688][ T6195] exFAT-fs (loop2): Invalid exboot-signature(sector = 1): 0xaa000000
[  133.567602][ T6195] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1219aba6)
[  133.599622][ T6195] exFAT-fs (loop2): invalid boot region
[  133.605249][ T6195] exFAT-fs (loop2): failed to recognize exfat type
[  135.079312][ T6199] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  138.084926][ T6228] loop3: detected capacity change from 0 to 8
[  138.136576][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.156230][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.165355][   T28] audit: type=1800 audit(1756497077.622:2): pid=6228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.103" name="file1" dev="loop3" ino=5 res=0 errno=0
[  138.195748][ T6228] SQUASHFS error: zlib decompression failed, data probably corrupt
[  138.206722][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.220720][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.229728][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.238411][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.245260][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.252507][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.260539][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.267967][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.274992][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.283130][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.293115][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.311981][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.322059][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.333895][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.344089][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.368170][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.387235][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.411625][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.422016][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.437253][ T6228] SQUASHFS error: Failed to read block 0x4de: -5
[  138.477939][ T6228] SQUASHFS error: Failed to read block 0x535f2: -5
[  138.498428][ T6228] SQUASHFS error: Failed to read block 0x535f2: -5
[  138.506416][ T6228] SQUASHFS error: Failed to read block 0x535f2: -5
[  138.520224][ T6228] SQUASHFS error: Failed to read block 0x535f2: -5
[  138.666667][ T6236] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  138.674066][ T6236] IPv6: NLM_F_CREATE should be set when creating new route
[  138.952483][ T6242] loop3: detected capacity change from 0 to 1024
[  138.973822][ T6242] EXT4-fs: Ignoring removed oldalloc option
[  138.985119][ T6242] EXT4-fs: Ignoring removed orlov option
[  139.002389][ T6242] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  139.052942][ T6242] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.209566][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.382707][ T6259] loop3: detected capacity change from 0 to 164
[  142.454212][ T6270] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  143.167145][ T5900] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  143.417708][ T5900] usb 1-1: device descriptor read/64, error -71
[  143.730143][ T5900] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  143.780230][ T6281] Invalid ELF header len 16
[  143.917222][ T5900] usb 1-1: device descriptor read/64, error -71
[  144.091703][ T5900] usb usb1-port1: attempt power cycle
[  144.577178][ T5900] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  144.621433][ T5900] usb 1-1: device descriptor read/8, error -71
[  144.640132][ T6297] loop3: detected capacity change from 0 to 256
[  144.693484][ T6297] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  144.738841][ T5795] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  144.750478][ T5795] CPU: 0 PID: 5795 Comm: kworker/u5:4 Not tainted syzkaller #0
[  144.758100][ T5795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  144.768464][ T5795] Workqueue: hci1 hci_rx_work
[  144.773303][ T5795] Call Trace:
[  144.776613][ T5795]  <TASK>
[  144.779583][ T5795]  dump_stack_lvl+0x16c/0x230
[  144.784330][ T5795]  ? show_regs_print_info+0x20/0x20
[  144.789579][ T5795]  ? load_image+0x3b0/0x3b0
[  144.794132][ T5795]  sysfs_create_dir_ns+0x256/0x280
[  144.799302][ T5795]  ? hci_rx_work+0x43a/0xd80
[  144.803946][ T5795]  ? sysfs_warn_dup+0xa0/0xa0
[  144.808685][ T5795]  ? do_raw_spin_unlock+0x121/0x230
[  144.813933][ T5795]  kobject_add_internal+0x6b8/0xc70
[  144.819217][ T5795]  kobject_add+0x156/0x220
[  144.823705][ T5795]  ? __rwlock_init+0x150/0x150
[  144.828526][ T5795]  ? kobject_init+0x1e0/0x1e0
[  144.833252][ T5795]  ? _raw_spin_unlock+0x28/0x40
[  144.838159][ T5795]  ? get_device_parent+0x366/0x390
[  144.843321][ T5795]  device_add+0x408/0xc20
[  144.847711][ T5795]  hci_conn_add_sysfs+0xd5/0x1e0
[  144.852887][ T5795]  le_conn_complete_evt+0xc37/0x1220
[  144.858241][ T5795]  ? hci_event_packet+0x4a7/0x1210
[  144.863524][ T5795]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  144.869818][ T5795]  ? __copy_skb_header+0xa7/0x550
[  144.874909][ T5795]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  144.880695][ T5795]  ? skb_pull_data+0xfb/0x200
[  144.885435][ T5795]  hci_le_conn_complete_evt+0x187/0x440
[  144.891042][ T5795]  ? hci_remote_host_features_evt+0x160/0x160
[  144.897170][ T5795]  hci_event_packet+0x795/0x1210
[  144.902355][ T5795]  ? bis_list+0x290/0x290
[  144.906755][ T5795]  ? lockdep_hardirqs_on+0x98/0x150
[  144.912026][ T5795]  ? hci_send_to_monitor+0xd7/0x4f0
[  144.917289][ T5795]  hci_rx_work+0x43a/0xd80
[  144.921952][ T5795]  ? process_scheduled_works+0x957/0x15b0
[  144.927807][ T5795]  process_scheduled_works+0xa45/0x15b0
[  144.933438][ T5795]  ? assign_work+0x400/0x400
[  144.938090][ T5795]  ? assign_work+0x39e/0x400
[  144.942826][ T5795]  worker_thread+0xa55/0xfc0
[  144.947492][ T5795]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  144.953527][ T5795]  ? _raw_spin_unlock+0x40/0x40
[  144.958428][ T5795]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  144.964396][ T5795]  kthread+0x2fa/0x390
[  144.968502][ T5795]  ? pr_cont_work+0x560/0x560
[  144.973217][ T5795]  ? kthread_blkcg+0xd0/0xd0
[  144.977842][ T5795]  ret_from_fork+0x48/0x80
[  144.982395][ T5795]  ? kthread_blkcg+0xd0/0xd0
[  144.987050][ T5795]  ret_from_fork_asm+0x11/0x20
[  144.991874][ T5795]  </TASK>
[  145.006453][ T5795] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  145.021465][ T5795] Bluetooth: hci1: failed to register connection device
[  145.182459][ T5900] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  145.417264][ T5900] usb 1-1: device not accepting address 5, error -71
[  145.417686][ T6304] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  145.456567][ T6304] netlink: 8 bytes leftover after parsing attributes in process `syz.3.128'.
[  145.457122][ T5900] usb usb1-port1: unable to enumerate USB device
[  146.182633][ T6317] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  148.995289][ T6327] loop2: detected capacity change from 0 to 8192
[  149.001891][  T786] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  149.066352][ T6327] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  149.237131][  T786] usb 1-1: device descriptor read/64, error -71
[  149.495549][ T6336] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  149.506670][ T6336] netlink: 8 bytes leftover after parsing attributes in process `syz.2.141'.
[  149.521469][  T786] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  149.687319][  T786] usb 1-1: device descriptor read/64, error -71
[  149.812787][  T786] usb usb1-port1: attempt power cycle
[  149.816154][ T6342] loop1: detected capacity change from 0 to 512
[  149.836187][ T6342] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  149.887142][ T6342] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  149.952940][ T6342] EXT4-fs (loop1): 1 truncate cleaned up
[  149.973359][ T6342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.197828][ T6342] EXT4-fs error (device loop1): __ext4_iget:5053: inode #12: block 2: comm syz.1.136: invalid block
[  150.227300][  T786] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  150.235710][ T6342] EXT4-fs (loop1): Remounting filesystem read-only
[  150.268428][  T786] usb 1-1: device descriptor read/8, error -71
[  150.512190][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.552661][  T786] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  150.603328][  T786] usb 1-1: device descriptor read/8, error -71
[  150.661539][ T6363] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  150.670919][ T6363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.150'.
[  150.731360][  T786] usb usb1-port1: unable to enumerate USB device
[  150.968274][ T6370] loop3: detected capacity change from 0 to 1024
[  150.976243][ T6370] EXT4-fs: Ignoring removed oldalloc option
[  150.982830][ T6370] EXT4-fs: Ignoring removed orlov option
[  150.996944][ T6370] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  151.022809][ T6370] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.177524][ T5793] Bluetooth: hci1: command 0x0406 tx timeout
[  151.817430][ T5793] Bluetooth: hci3: command tx timeout
[  151.826151][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.350389][ T6394] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  154.437304][ T6396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.160'.
[  155.367203][ T5900] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  155.589076][ T5900] usb 4-1: device descriptor read/64, error -71
[  157.269944][ T5900] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  160.545585][ T6430] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  160.568964][ T6430] netlink: 8 bytes leftover after parsing attributes in process `syz.1.171'.
[  164.339684][ T6456] loop2: detected capacity change from 0 to 128
[  164.537816][  T786] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  165.557117][  T786] usb 4-1: device descriptor read/64, error -71
[  165.847397][  T786] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  166.057099][  T786] usb 4-1: device descriptor read/64, error -71
[  166.207348][  T786] usb usb4-port1: attempt power cycle
[  167.008791][ T6466] loop1: detected capacity change from 0 to 1024
[  167.107100][  T786] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  167.787635][ T5903] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  168.443341][ T6473] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  168.450709][ T6473] IPv6: NLM_F_CREATE should be set when creating new route
[  168.556623][ T6474] netlink: 8 bytes leftover after parsing attributes in process `syz.0.181'.
[  169.367483][ T6478] loop2: detected capacity change from 0 to 2048
[  172.240682][  T786] usb 4-1: device descriptor read/8, error -71
[  173.571090][ T6492] ICMPv6: NA: aa:aa:aa:aa:aa:bb advertised our address fe80::aa on syz_tun!
[  173.886782][ T6500] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  173.906149][ T6500] netlink: 8 bytes leftover after parsing attributes in process `syz.3.193'.
[  173.943508][ T6496] loop2: detected capacity change from 0 to 2048
[  174.209987][ T6496] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  174.573682][ T6504] loop3: detected capacity change from 0 to 1024
[  174.592384][ T6504] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  174.646716][ T6504] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  174.717072][ T6504] EXT4-fs error (device loop3): ext4_get_journal_inode:5807: inode #32: comm syz.3.195: iget: special inode unallocated
[  174.790786][ T6504] EXT4-fs (loop3): no journal found
[  174.796148][ T6504] EXT4-fs (loop3): can't get journal size
[  174.863513][ T6504] EXT4-fs (loop3): filesystem is read-only
[  174.903484][ T6504] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  176.219487][ T6504] EXT4-fs (loop3): shut down requested (2)
[  176.289213][ T5791] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.315229][ T6518] loop2: detected capacity change from 0 to 512
[  176.396839][ T6518] EXT4-fs: Ignoring removed nobh option
[  176.442295][ T6518] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  176.492365][ T6518] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.200: iget: bad i_size value: 38620345925642
[  176.515084][ T6518] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.200: couldn't read orphan inode 15 (err -117)
[  176.528260][ T6518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.647232][  T786] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  176.683935][ T6518] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.200: iget: bad i_size value: 38620345925642
[  176.763526][ T6525] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.200: iget: bad i_size value: 38620345925642
[  176.857524][  T786] usb 2-1: device descriptor read/64, error -71
[  176.903369][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.137320][  T786] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  177.155458][ T6529] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  177.200480][ T6529] netlink: 8 bytes leftover after parsing attributes in process `syz.2.203'.
[  177.317694][  T786] usb 2-1: device descriptor read/64, error -71
[  177.477254][  T786] usb usb2-port1: attempt power cycle
[  177.927331][  T786] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  177.968276][  T786] usb 2-1: device descriptor read/8, error -71
[  179.117393][  T786] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  179.158046][  T786] usb 2-1: device descriptor read/8, error -71
[  179.197177][ T5875] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  179.237327][ T6556] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  179.282551][  T786] usb usb2-port1: unable to enumerate USB device
[  180.259755][ T5875] usb 3-1: config 1 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 255
[  180.287503][ T5875] usb 3-1: config 1 has an invalid descriptor of length 88, skipping remainder of the config
[  180.319783][ T5875] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  180.357139][ T5875] usb 3-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  180.367347][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.376874][ T6561] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  180.401254][ T5875] usb-storage 3-1:1.0: USB Mass Storage device detected
[  180.434768][ T6561] netlink: 8 bytes leftover after parsing attributes in process `syz.1.214'.
[  180.440833][ T5875] usb-storage 3-1:1.0: Quirks match for vid 1908 pid 1315: 20000
[  180.695115][ T5875] usb 3-1: USB disconnect, device number 3
[  180.977295][ T2128] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  182.642778][ T2128] usb 2-1: Using ep0 maxpacket: 16
[  182.648624][ T6582] netlink: 12 bytes leftover after parsing attributes in process `syz.0.215'.
[  182.689786][ T2128] usb 2-1: config 0 has no interfaces?
[  182.716322][ T2128] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  182.738308][ T2128] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  182.747459][ T6582] netlink: 20 bytes leftover after parsing attributes in process `syz.0.215'.
[  182.754162][ T2128] usb 2-1: SerialNumber: syz
[  182.775136][ T2128] usb 2-1: config 0 descriptor??
[  183.050622][  T786] usb 2-1: USB disconnect, device number 7
[  183.158168][ T6591] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  183.208314][ T6591] netlink: 4 bytes leftover after parsing attributes in process `syz.2.223'.
[  183.507070][ T6593] 9pnet_fd: Insufficient options for proto=fd
[  187.836870][ T6613] loop3: detected capacity change from 0 to 256
[  187.901700][ T6613] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  188.184523][ T6617] loop2: detected capacity change from 0 to 256
[  188.216323][ T6617] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  188.257342][ T5793] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  188.277148][ T5793] CPU: 0 PID: 5793 Comm: kworker/u5:3 Not tainted syzkaller #0
[  188.284766][ T5793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  188.294871][ T5793] Workqueue: hci3 hci_rx_work
[  188.299614][ T5793] Call Trace:
[  188.302928][ T5793]  <TASK>
[  188.305892][ T5793]  dump_stack_lvl+0x16c/0x230
[  188.310709][ T5793]  ? show_regs_print_info+0x20/0x20
[  188.315950][ T5793]  ? load_image+0x3b0/0x3b0
[  188.320518][ T5793]  sysfs_create_dir_ns+0x256/0x280
[  188.325765][ T5793]  ? hci_rx_work+0x43a/0xd80
[  188.330408][ T5793]  ? sysfs_warn_dup+0xa0/0xa0
[  188.335130][ T5793]  ? do_raw_spin_unlock+0x121/0x230
[  188.340383][ T5793]  kobject_add_internal+0x6b8/0xc70
[  188.345742][ T5793]  kobject_add+0x156/0x220
[  188.350297][ T5793]  ? __rwlock_init+0x150/0x150
[  188.355118][ T5793]  ? kobject_init+0x1e0/0x1e0
[  188.360027][ T5793]  ? _raw_spin_unlock+0x28/0x40
[  188.364928][ T5793]  ? get_device_parent+0x366/0x390
[  188.370092][ T5793]  device_add+0x408/0xc20
[  188.374478][ T5793]  hci_conn_add_sysfs+0xd5/0x1e0
[  188.379466][ T5793]  le_conn_complete_evt+0xc37/0x1220
[  188.384799][ T5793]  ? hci_event_packet+0x4a7/0x1210
[  188.390160][ T5793]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[  188.396451][ T5793]  ? __copy_skb_header+0xa7/0x550
[  188.401631][ T5793]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  188.407319][ T5793]  ? skb_pull_data+0xfb/0x200
[  188.412069][ T5793]  hci_le_conn_complete_evt+0x187/0x440
[  188.417668][ T5793]  ? hci_remote_host_features_evt+0x160/0x160
[  188.423791][ T5793]  hci_event_packet+0x795/0x1210
[  188.427149][ T5887] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  188.428769][ T5793]  ? bis_list+0x290/0x290
[  188.440622][ T5793]  ? lockdep_hardirqs_on+0x98/0x150
[  188.445960][ T5793]  ? hci_send_to_monitor+0xd7/0x4f0
[  188.451214][ T5793]  hci_rx_work+0x43a/0xd80
[  188.455771][ T5793]  ? process_scheduled_works+0x957/0x15b0
[  188.461538][ T5793]  process_scheduled_works+0xa45/0x15b0
[  188.467250][ T5793]  ? assign_work+0x400/0x400
[  188.471891][ T5793]  ? assign_work+0x39e/0x400
[  188.476535][ T5793]  worker_thread+0xa55/0xfc0
[  188.481284][ T5793]  kthread+0x2fa/0x390
[  188.485394][ T5793]  ? pr_cont_work+0x560/0x560
[  188.490110][ T5793]  ? kthread_blkcg+0xd0/0xd0
[  188.494733][ T5793]  ret_from_fork+0x48/0x80
[  188.499303][ T5793]  ? kthread_blkcg+0xd0/0xd0
[  188.503933][ T5793]  ret_from_fork_asm+0x11/0x20
[  188.508756][ T5793]  </TASK>
[  188.527928][ T5793] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  188.547678][ T5793] Bluetooth: hci3: failed to register connection device
[  188.658953][ T5887] usb 4-1: config 0 has no interfaces?
[  188.664546][ T5887] usb 4-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  188.683826][ T5887] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.700260][ T5887] usb 4-1: config 0 descriptor??
[  188.715757][ T6625] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  190.295623][ T5875] usb 4-1: USB disconnect, device number 9
[  191.039783][ T6642] netlink: 4 bytes leftover after parsing attributes in process `syz.0.242'.
[  191.163444][ T6644] loop3: detected capacity change from 0 to 8
[  191.412633][ T6650] loop1: detected capacity change from 0 to 1024
[  191.432082][ T6650] EXT4-fs: Ignoring removed oldalloc option
[  191.472972][ T6650] EXT4-fs: Ignoring removed orlov option
[  192.939882][ T6650] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  193.019128][ T6650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.675007][ T6663] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.246: Allocating blocks 481-513 which overlap fs metadata
[  195.312792][ T5795] Bluetooth: hci3: command 0x0406 tx timeout
[  195.319691][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  195.327137][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  195.372528][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.478762][ T6682] loop2: detected capacity change from 0 to 8
[  197.838196][ T6687] loop1: detected capacity change from 0 to 256
[  198.453217][ T6693] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  198.603065][ T6695] netlink: 4 bytes leftover after parsing attributes in process `syz.0.253'.
[  198.624077][ T6695] bridge_slave_1: left allmulticast mode
[  198.630348][ T6695] bridge_slave_1: left promiscuous mode
[  198.637416][ T6695] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.652156][ T6695] bridge_slave_0: left allmulticast mode
[  198.657999][ T6695] bridge_slave_0: left promiscuous mode
[  198.664934][ T6695] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.679095][ T6699] loop2: detected capacity change from 0 to 1024
[  198.702502][ T6699] EXT4-fs: Ignoring removed oldalloc option
[  198.728613][ T6699] EXT4-fs: Ignoring removed orlov option
[  198.760410][ T6699] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  198.806365][ T6699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.488612][ T6707] Driver unsupported XDP return value 0 on prog  (id 26) dev N/A, expect packet loss!
[  199.753378][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.444147][ T6718] loop3: detected capacity change from 0 to 8
[  202.964209][ T6736] netlink: 4 bytes leftover after parsing attributes in process `syz.3.271'.
[  203.003954][ T6740] loop2: detected capacity change from 0 to 256
[  203.124863][ T6736] bridge_slave_1: left allmulticast mode
[  203.141287][ T6736] bridge_slave_1: left promiscuous mode
[  203.147923][ T6736] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.177110][ T6740] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  203.944145][ T5795] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  204.004536][ T6736] bridge_slave_0: left allmulticast mode
[  204.032182][ T6736] bridge_slave_0: left promiscuous mode
[  204.064808][ T6736] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.395099][ T6736] syz.3.271 (6736) used greatest stack depth: 20880 bytes left
[  204.748503][ T6754] loop1: detected capacity change from 0 to 1024
[  204.800045][ T6754] EXT4-fs: Ignoring removed oldalloc option
[  204.844688][ T6754] EXT4-fs: Ignoring removed orlov option
[  204.997622][ T6754] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  205.219199][ T6754] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.949393][ T6760] loop2: detected capacity change from 0 to 8
[  207.101926][ T5795] Bluetooth: hci1: command 0x0406 tx timeout
[  207.365533][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.710385][ T6773] ipt_REJECT: TCP_RESET invalid for non-tcp
[  207.934325][ T6777] loop2: detected capacity change from 0 to 1024
[  207.983145][ T6777] EXT4-fs: Ignoring removed mblk_io_submit option
[  208.335873][   T27] usb 4-1: new low-speed USB device number 10 using dummy_hcd
[  208.338630][ T6777] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.455326][ T6777] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  208.534600][ T6777] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  208.557613][   T27] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  208.591046][ T6786] loop1: detected capacity change from 0 to 4096
[  208.599788][   T27] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  208.635596][ T6777] EXT4-fs (loop2): This should not happen!! Data will be lost
[  208.635596][ T6777] 
[  208.695756][   T27] usb 4-1: New USB device found, idVendor=056a, idProduct=0084, bcdDevice= 0.00
[  208.695792][ T6777] EXT4-fs (loop2): Total free blocks count 0
[  208.713536][ T6777] EXT4-fs (loop2): Free/Dirty block details
[  208.719869][ T6777] EXT4-fs (loop2): free_blocks=68451041280
[  208.725956][ T6777] EXT4-fs (loop2): dirty_blocks=16
[  208.732455][ T6777] EXT4-fs (loop2): Block reservation details
[  208.738910][ T6777] EXT4-fs (loop2): i_reserved_data_blocks=1
[  208.740382][ T6786] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.935404][   T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.047746][   T27] usb 4-1: config 0 descriptor??
[  210.938352][ T6781] netlink: 28 bytes leftover after parsing attributes in process `syz.3.283'.
[  211.061380][   T27] usbhid 4-1:0.0: can't add hid device: -71
[  211.080138][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.089385][   T27] usbhid: probe of 4-1:0.0 failed with error -71
[  211.093817][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.111115][   T27] usb 4-1: USB disconnect, device number 10
[  211.397187][ T6800] netlink: 16 bytes leftover after parsing attributes in process `syz.1.291'.
[  211.447168][ T6800] netlink: 8 bytes leftover after parsing attributes in process `syz.1.291'.
[  211.495075][ T6800] sit1: entered allmulticast mode
[  211.637097][ T5851] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  213.207301][ T5851] usb 3-1: Using ep0 maxpacket: 32
[  213.269201][ T5851] usb 3-1: config 0 has no interfaces?
[  213.296166][ T5851] usb 3-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95
[  213.327069][ T5851] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.347040][ T5851] usb 3-1: Product: syz
[  213.351282][ T5851] usb 3-1: Manufacturer: syz
[  213.393961][ T5851] usb 3-1: SerialNumber: syz
[  213.429725][ T5851] usb 3-1: config 0 descriptor??
[  213.662192][ T6798] Bluetooth: MGMT ver 1.22
[  213.691792][ T5851] usb 3-1: USB disconnect, device number 4
[  216.658436][ T6828] loop2: detected capacity change from 0 to 512
[  216.817875][ T6828] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  216.979893][ T6828] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2867: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  217.119425][ T6828] EXT4-fs (loop2): 1 truncate cleaned up
[  217.126491][ T6828] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.892506][ T5790] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #2: block 13: comm syz-executor: lblock 0 mapped to illegal pblock 13 (length 1)
[  218.965611][ T5790] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  219.002399][ T5790] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz-executor: mark_inode_dirty error
[  219.262947][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.403161][ T6844] loop1: detected capacity change from 0 to 1024
[  221.273186][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  221.291123][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  222.135282][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  222.144847][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  222.153278][ T5795] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  222.191265][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  223.256934][ T6875] loop3: detected capacity change from 0 to 1024
[  223.408122][ T6879] loop1: detected capacity change from 0 to 256
[  223.592081][ T5800] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  223.811481][ T6862] chnl_net:caif_netlink_parms(): no params data found
[  223.998320][ T6879] loop1: detected capacity change from 0 to 512
[  224.016843][ T6879] ext2: Unknown parameter 'smackfsroot'
[  224.065581][ T5903] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  224.168686][ T6862] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.218997][ T6862] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.226870][ T6862] bridge_slave_0: entered allmulticast mode
[  224.235771][ T6862] bridge_slave_0: entered promiscuous mode
[  224.246190][ T6862] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.254140][ T6862] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.261562][ T6862] bridge_slave_1: entered allmulticast mode
[  224.269839][ T6862] bridge_slave_1: entered promiscuous mode
[  224.297946][ T5795] Bluetooth: hci3: command tx timeout
[  224.353385][ T6862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.402860][ T6862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.546579][ T6862] team0: Port device team_slave_0 added
[  225.546861][ T6862] team0: Port device team_slave_1 added
[  225.671423][ T6862] batman_adv: batadv0: Adding interface: batadv_slave_0
[  225.687927][ T6862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.727001][ T6862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  225.749856][ T6862] batman_adv: batadv0: Adding interface: batadv_slave_1
[  225.767404][ T6862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.823567][ T6862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  225.915945][ T6862] hsr_slave_0: entered promiscuous mode
[  225.925414][ T6862] hsr_slave_1: entered promiscuous mode
[  225.940116][ T6862] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  225.954330][ T6862] Cannot create hsr debugfs directory
[  226.447186][ T5795] Bluetooth: hci3: command tx timeout
[  228.707027][ T5795] Bluetooth: hci3: command tx timeout
[  229.591059][ T6862] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  229.626613][ T6862] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  229.663507][ T6862] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  229.711724][ T6862] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  229.931006][ T6925] loop3: detected capacity change from 0 to 128
[  229.953066][ T6925] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  229.980456][ T6925] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  230.003666][ T6862] 8021q: adding VLAN 0 to HW filter on device bond0
[  230.049196][ T6862] 8021q: adding VLAN 0 to HW filter on device team0
[  230.070605][ T4504] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.077767][ T4504] bridge0: port 1(bridge_slave_0) entered forwarding state
[  230.096700][   T28] audit: type=1804 audit(1756497169.545:3): pid=6925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.326" name="/newroot/90/file0/bus" dev="loop3" ino=115 res=1 errno=0
[  230.117639][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.223052][ T4504] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.230242][ T4504] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.207308][ T5795] Bluetooth: hci3: command tx timeout
[  232.735579][ T6862] 8021q: adding VLAN 0 to HW filter on device batadv0
[  232.793886][ T6943] loop1: detected capacity change from 0 to 1024
[  234.308139][ T6958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'.
[  234.345263][ T6958] bridge_slave_1: left allmulticast mode
[  234.353516][ T6958] bridge_slave_1: left promiscuous mode
[  234.360894][ T6958] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.399312][ T6958] bridge_slave_0: left allmulticast mode
[  235.812651][ T6958] bridge_slave_0: left promiscuous mode
[  235.839322][ T6958] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.292629][ T6862] veth0_vlan: entered promiscuous mode
[  236.385002][ T6862] veth1_vlan: entered promiscuous mode
[  236.513314][ T6862] veth0_macvtap: entered promiscuous mode
[  236.539735][ T6862] veth1_macvtap: entered promiscuous mode
[  236.586410][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.609249][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.619469][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.630163][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.640438][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.651038][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.667216][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.682848][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.627676][ T6862] batman_adv: batadv0: Interface activated: batadv_slave_0
[  237.654706][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.688830][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.728525][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.771332][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.807343][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.837712][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.860270][ T6862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.893809][ T6862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.924844][ T6862] batman_adv: batadv0: Interface activated: batadv_slave_1
[  237.980548][ T6862] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.003331][ T6862] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.033487][ T6862] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.067081][ T6862] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.832235][ T1015] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.857254][ T1015] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.976424][ T3468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.006770][ T3468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.561652][ T6997] capability: warning: `syz.4.346' uses 32-bit capabilities (legacy support in use)
[  243.630382][ T7014] wg2: entered promiscuous mode
[  243.636168][ T7014] wg2: entered allmulticast mode
[  246.397658][ T7024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.350'.
[  248.580974][ T7040] loop3: detected capacity change from 0 to 8
[  248.626264][ T7040] SQUASHFS error: lzo decompression failed, data probably corrupt
[  248.677242][ T7040] SQUASHFS error: Failed to read block 0x91: -5
[  248.684823][ T7040] SQUASHFS error: Unable to read metadata cache entry [8f]
[  248.743461][ T7040] SQUASHFS error: Unable to read inode 0x11f
[  248.823395][ T7048] loop4: detected capacity change from 0 to 1024
[  248.878486][ T7048] EXT4-fs (loop4): Test dummy encryption mode enabled
[  248.920440][ T7048] EXT4-fs (loop4): stripe (9) is not aligned with cluster size (16), stripe is disabled
[  248.993347][ T7048] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.346642][ T7048] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  250.783125][ T7048] fscrypt (loop4): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  250.922712][ T6862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.814756][ T7099] loop1: detected capacity change from 0 to 256
[  252.832749][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.0.370'.
[  252.863553][ T7099] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  255.039544][ T5793] Bluetooth: hci3: command tx timeout
[  255.832228][ T7127] Zero length message leads to an empty skb
[  255.924049][ T7131] loop3: detected capacity change from 0 to 8
[  256.029961][ T7131] SQUASHFS error: Failed to read block 0x4de: -5
[  256.058440][ T7131] SQUASHFS error: Failed to read block 0x4de: -5
[  256.162096][   T28] audit: type=1800 audit(1756497195.535:4): pid=7131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.383" name="file1" dev="loop3" ino=5 res=0 errno=0
[  256.378531][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  256.387161][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  257.021190][ T7138] loop4: detected capacity change from 0 to 2048
[  257.120794][ T5875] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  257.149977][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.1.382'.
[  257.341632][ T5875] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  257.366391][ T5875] usb 5-1: config 220 has an invalid descriptor of length 175, skipping remainder of the config
[  257.379993][ T5875] usb 5-1: config 220 has no interface number 2
[  257.387424][ T5875] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  257.412549][ T5875] usb 5-1: config 220 interface 0 has no altsetting 0
[  257.424803][ T7154] loop3: detected capacity change from 0 to 512
[  257.462302][ T7154] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  257.471362][ T5875] usb 5-1: config 220 interface 76 has no altsetting 0
[  257.503646][ T5875] usb 5-1: config 220 interface 1 has no altsetting 0
[  257.524990][ T5875] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  257.535853][ T5875] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.548918][ T5875] usb 5-1: Product: syz
[  257.556233][ T5875] usb 5-1: Manufacturer: syz
[  257.600393][ T5875] usb 5-1: SerialNumber: syz
[  257.606018][ T7154] EXT4-fs (loop3): Unsupported encryption level 249
[  257.902605][ T5875] usb 5-1: selecting invalid altsetting 0
[  257.927245][ T5875] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  258.058464][ T5875] usb 5-1: No valid video chain found.
[  258.079800][ T5875] usb 5-1: selecting invalid altsetting 0
[  258.085865][ T5875] usbtest: probe of 5-1:220.1 failed with error -22
[  258.099864][ T5875] usb 5-1: USB disconnect, device number 2
[  366.626854][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  366.633886][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5792/1:b..l
[  366.642086][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=22181, q=315 ncpus=2)
[  366.649886][    C1] task:syz-executor    state:R  running task     stack:21384 pid:5792  ppid:5783   flags:0x00004000
[  366.661521][    C1] Call Trace:
[  366.664800][    C1]  <TASK>
[  366.667731][    C1]  __schedule+0x14d2/0x44d0
[  366.672250][    C1]  ? mark_lock+0x94/0x320
[  366.676573][    C1]  ? asan.module_dtor+0x20/0x20
[  366.681452][    C1]  ? preempt_schedule+0xab/0xc0
[  366.686333][    C1]  preempt_schedule_common+0x82/0xc0
[  366.691653][    C1]  preempt_schedule+0xab/0xc0
[  366.696427][    C1]  ? schedule_preempt_disabled+0x20/0x20
[  366.702063][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  366.707115][    C1]  preempt_schedule_thunk+0x1a/0x30
[  366.712324][    C1]  _raw_spin_unlock+0x3a/0x40
[  366.717006][    C1]  ? copy_page_range+0x2b4b/0x3600
[  366.722304][    C1]  copy_page_range+0x2b7c/0x3600
[  366.727265][    C1]  ? pfn_valid+0x450/0x450
[  366.731700][    C1]  ? mas_wr_store_entry+0x151/0x340
[  366.736917][    C1]  ? mas_store+0x34d/0x500
[  366.741504][    C1]  ? mas_empty_area_rev+0x1880/0x1880
[  366.746984][    C1]  ? up_write+0x1c3/0x410
[  366.751330][    C1]  ? anon_vma_interval_tree_verify+0x150/0x150
[  366.757485][    C1]  copy_mm+0x112a/0x1c20
[  366.761739][    C1]  ? copy_signal+0x680/0x680
[  366.766409][    C1]  ? lockdep_init_map_type+0xa1/0x880
[  366.771793][    C1]  ? __init_rwsem+0x122/0x160
[  366.776468][    C1]  ? copy_signal+0x556/0x680
[  366.781144][    C1]  copy_process+0x16d3/0x3d70
[  366.785826][    C1]  ? copy_process+0x945/0x3d70
[  366.790596][    C1]  ? __pidfd_prepare+0x140/0x140
[  366.795526][    C1]  ? vma_end_read+0x18/0x170
[  366.800115][    C1]  kernel_clone+0x21b/0x840
[  366.804705][    C1]  ? create_io_thread+0x140/0x140
[  366.809831][    C1]  __x64_sys_clone+0x18c/0x1e0
[  366.814625][    C1]  ? __ia32_sys_vfork+0x100/0x100
[  366.819667][    C1]  ? lock_chain_count+0x20/0x20
[  366.824582][    C1]  ? lock_chain_count+0x20/0x20
[  366.829432][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  366.834632][    C1]  do_syscall_64+0x55/0xb0
[  366.839070][    C1]  ? clear_bhb_loop+0x40/0x90
[  366.843827][    C1]  ? clear_bhb_loop+0x40/0x90
[  366.848515][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  366.854498][    C1] RIP: 0033:0x7ff938185453
[  366.858995][    C1] RSP: 002b:00007ffc45d3ed98 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  366.867420][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff938185453
[  366.875427][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  366.883428][    C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[  366.891414][    C1] R10: 000055556272f7d0 R11: 0000000000000246 R12: 0000000000000000
[  366.899395][    C1] R13: 0000555562742590 R14: 000000000003ecf4 R15: 00007ffc45d3ef30
[  366.907385][    C1]  </TASK>
[  366.910401][    C1] rcu: rcu_preempt kthread starved for 10281 jiffies! g22181 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  366.921775][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  366.931826][    C1] rcu: RCU grace-period kthread stack dump:
[  366.937724][    C1] task:rcu_preempt     state:R  running task     stack:26280 pid:17    ppid:2      flags:0x00004000
[  366.948511][    C1] Call Trace:
[  366.951803][    C1]  <TASK>
[  366.954755][    C1]  __schedule+0x14d2/0x44d0
[  366.959300][    C1]  ? asan.module_dtor+0x20/0x20
[  366.964157][    C1]  ? enqueue_timer+0x4ab/0x530
[  366.968918][    C1]  ? __mod_timer+0x984/0xdb0
[  366.973509][    C1]  schedule+0xbd/0x170
[  366.977577][    C1]  schedule_timeout+0x160/0x280
[  366.982603][    C1]  ? console_conditional_schedule+0x40/0x40
[  366.988520][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  366.994427][    C1]  ? update_process_times+0x1b0/0x1b0
[  366.999817][    C1]  ? prepare_to_swait_event+0x339/0x360
[  367.005382][    C1]  rcu_gp_fqs_loop+0x302/0x1560
[  367.010330][    C1]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[  367.016597][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  367.021794][    C1]  ? rcu_gp_init+0x1510/0x1510
[  367.026555][    C1]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  367.032554][    C1]  ? finish_swait+0xc7/0x1d0
[  367.037162][    C1]  rcu_gp_kthread+0x99/0x380
[  367.041774][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  367.046909][    C1]  ? __kthread_parkme+0x7a/0x1c0
[  367.051867][    C1]  ? __kthread_parkme+0x162/0x1c0
[  367.056926][    C1]  kthread+0x2fa/0x390
[  367.060993][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  367.066135][    C1]  ? kthread_blkcg+0xd0/0xd0
[  367.070823][    C1]  ret_from_fork+0x48/0x80
[  367.075573][    C1]  ? kthread_blkcg+0xd0/0xd0
[  367.080160][    C1]  ret_from_fork_asm+0x11/0x20
[  367.084932][    C1]  </TASK>
[  367.087966][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  367.094300][    C1] Sending NMI from CPU 1 to CPUs 0:
[  367.099599][    C0] NMI backtrace for cpu 0
[  367.099617][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0
[  367.099631][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  367.099638][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  367.099664][    C0] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d a3 36 3a 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[  367.099677][    C0] RSP: 0018:ffffffff8ca07d80 EFLAGS: 000002c6
[  367.099691][    C0] RAX: f55ae8b255f68300 RBX: ffffffff8161923b RCX: f55ae8b255f68300
[  367.099702][    C0] RDX: 0000000000000001 RSI: ffffffff8aaaba20 RDI: ffffffff8afc7040
[  367.099713][    C0] RBP: ffffffff8ca07eb8 R08: ffff8880b8e36d4b R09: 1ffff110171c6da9
[  367.099723][    C0] R10: dffffc0000000000 R11: ffffed10171c6daa R12: ffffffff8e4a8f28
[  367.099734][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1952670
[  367.099743][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  367.099756][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  367.099766][    C0] CR2: 00007f9c9ed0fbcb CR3: 0000000075c22000 CR4: 00000000003506f0
[  367.099782][    C0] Call Trace:
[  367.099789][    C0]  <TASK>
[  367.099794][    C0]  default_idle+0x13/0x20
[  367.099815][    C0]  default_idle_call+0x6c/0xa0
[  367.099836][    C0]  do_idle+0x1eb/0x510
[  367.099856][    C0]  ? idle_inject_timer_fn+0x60/0x60
[  367.099873][    C0]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  367.099894][    C0]  cpu_startup_entry+0x43/0x60
[  367.099910][    C0]  rest_init+0x2e2/0x300
[  367.099923][    C0]  ? time_init+0x40/0x40
[  367.099944][    C0]  arch_call_rest_init+0xe/0x10
[  367.099959][    C0]  start_kernel+0x459/0x4e0
[  367.099976][    C0]  x86_64_start_reservations+0x2a/0x30
[  367.099996][    C0]  x86_64_start_kernel+0x60/0x60
[  367.100016][    C0]  secondary_startup_64_no_verify+0x179/0x17b
[  367.100043][    C0]  </TASK>